Sentry unable to scrub sensitive infomation in in case of raw body #948

rishabhsairawat · 2020-01-17T10:42:20Z

I have mentioned the password as a sensitive field in the configuration. But In case of invalid JSON, the sentry is sending the password as plain-text to server.

ActionDispatch::Http::Parameters::ParseError: 822: unexpected token at '{
"username":"abc.pqr",
"role": "admin"
"password": "Abc@123"
}'

The text was updated successfully, but these errors were encountered:

thtonon · 2020-02-18T13:04:59Z

Any news on this issue? I'm having the same problem

st0012 · 2020-08-14T09:32:35Z

thanks for reporting this issue, I've opened #984 for solving it. would you mind using

gem 'sentry-raven', github: "getsentry/raven-ruby", branch: "fix-#948"

to give it a try?

st0012 added this to Needs triage in 3.x Aug 6, 2020

st0012 mentioned this issue Aug 14, 2020

Improve SanitizeData processor #984

Merged

st0012 added this to the 3.0.1 milestone Aug 14, 2020

st0012 added the Type: Bug label Aug 14, 2020

st0012 self-assigned this Aug 14, 2020

st0012 moved this from Needs triage to High priority in 3.x Aug 14, 2020

st0012 closed this as completed in #984 Aug 19, 2020

3.x automation moved this from High priority to Closed Aug 19, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Sentry unable to scrub sensitive infomation in in case of raw body #948

Sentry unable to scrub sensitive infomation in in case of raw body #948

rishabhsairawat commented Jan 17, 2020

thtonon commented Feb 18, 2020

st0012 commented Aug 14, 2020

Sentry unable to scrub sensitive infomation in in case of raw body #948

Sentry unable to scrub sensitive infomation in in case of raw body #948

Comments

rishabhsairawat commented Jan 17, 2020

thtonon commented Feb 18, 2020

st0012 commented Aug 14, 2020