letro/letro-android
1
0
Fork 0
Code Issues Pull Requests Actions 6 Packages Projects Releases Wiki Activity

Make sure we don't upload any user ids in tags either

Browse Source
This commit is contained in:
Jorge Martín
2025-12-17 13:09:23 +01:00
committed by Jorge Martin Espinosa
parent 515f7f4946
commit 165032ea02
1 changed files with 7 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
services/analyticsproviders/sentry/src/main/kotlin/io/element/android/services/analyticsproviders/sentry/SentryAnalyticsProvider.kt
View File

@@ -118,11 +118,15 @@ class SentryAnalyticsProvider(
@VisibleForTesting(otherwise = VisibleForTesting.PRIVATE)
internal fun prepareTransactionBeforeSend(transaction: SentryTransaction): SentryTransaction {
// Ensure we'll never upload any session ids
val possibleSessionIds = transaction.extras?.filter { (it.value as? String)?.startsWith("@") == true }.orEmpty()
for (invalidExtra in possibleSessionIds) {
// Ensure we'll never upload any session ids in extras or tags
val invalidExtras = transaction.extras?.filter { (it.value as? String)?.startsWith("@") == true }.orEmpty()
for (invalidExtra in invalidExtras) {
transaction.removeExtra(invalidExtra.key)
}
val invalidTags = transaction.tags?.filter { it.value.startsWith("@") }.orEmpty()
for (invalidTag in invalidExtras) {
transaction.removeTag(invalidTag.key)
}
val sessionId = appNavigationStateService.appNavigationState.value.navigationState.currentSessionId()
if (sessionId != null) {