-
-
Notifications
You must be signed in to change notification settings - Fork 219
/
Copy pathSystemWebRequestEventProcessor.cs
133 lines (116 loc) · 4.74 KB
/
SystemWebRequestEventProcessor.cs
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
using System;
using System.Collections.Generic;
using System.Security.Claims;
using System.Web;
using Sentry.Extensibility;
using Sentry.Protocol;
using Sentry.Reflection;
namespace Sentry.AspNet.Internal
{
internal class SystemWebRequestEventProcessor : ISentryEventProcessor
{
private static readonly SdkVersion SdkVersion =
typeof(SystemWebRequestEventProcessor).Assembly.GetNameAndVersion();
private readonly SentryOptions _options;
internal IRequestPayloadExtractor PayloadExtractor { get; }
public SystemWebRequestEventProcessor(IRequestPayloadExtractor payloadExtractor, SentryOptions options)
{
_options = options ?? throw new ArgumentNullException(nameof(options));
PayloadExtractor = payloadExtractor ?? throw new ArgumentNullException(nameof(payloadExtractor));
}
public SentryEvent? Process(SentryEvent? @event)
{
var context = HttpContext.Current;
if (context is null || @event is null)
{
return @event;
}
try
{
// During Application initialization we might have an event to send but no HTTP Request.
// Request getter throws and doesn't seem there's a way to query for it.
_ = context.Request;
}
catch (HttpException)
{
_options.DiagnosticLogger?.LogDebug("HttpException not available to retrieve context.");
return @event;
}
@event.Request.Method = context.Request.HttpMethod;
@event.Request.Url = context.Request.Url.AbsoluteUri;
try
{
// ReSharper disable once ConstantConditionalAccessQualifier
@event.Request.QueryString = context.Request.QueryString?.ToString();
}
catch (NullReferenceException)
{
// Ignored since it can throw on WCF on the first event.
// See #390
_options.DiagnosticLogger?.LogDebug("Ignored NRE thrown on System.Web.HttpContext.Request.QueryString");
}
foreach (var key in context.Request.Headers.AllKeys)
{
if (!_options.SendDefaultPii
// Don't add headers which might contain PII
&& (key == "Cookie"
|| key == "Authorization"))
{
continue;
}
@event.Request.Headers[key] = context.Request.Headers[key];
}
if (_options?.SendDefaultPii == true)
{
if (@event.User.Username == Environment.UserName)
{
// if SendDefaultPii is true, Sentry SDK will send the current logged on user
// which doesn't make sense in a server apps
@event.User.Username = null;
}
@event.User.IpAddress = context.Request.UserHostAddress;
if (context.User.Identity is { } identity)
{
@event.User.Username = identity.Name;
@event.User.Other.Add("IsAuthenticated", identity.IsAuthenticated.ToString());
}
if (context.User is ClaimsPrincipal claimsPrincipal)
{
if (claimsPrincipal.FindFirst(ClaimTypes.NameIdentifier) is { } claim)
{
@event.User.Id = claim.Value;
}
}
}
@event.ServerName = Environment.MachineName;
// Move 'runtime' under key 'server-runtime' as User-Agent parsing done at
// Sentry will represent the client's
if (@event.Contexts.TryRemove(Runtime.Type, out var runtime))
{
@event.Contexts["server-runtime"] = runtime;
}
if (@event.Contexts.TryRemove(Protocol.OperatingSystem.Type, out var os))
{
@event.Contexts["server-os"] = os;
}
var body = PayloadExtractor.ExtractPayload(new SystemWebHttpRequest(context.Request));
if (body != null)
{
@event.Request.Data = body;
}
if (@event.Sdk.Version is null && @event.Sdk.Name is null)
{
@event.Sdk.Name = "sentry.dotnet.aspnet";
@event.Sdk.Version = SdkVersion.Version;
}
if (SdkVersion.Version != null)
{
@event.Sdk.AddPackage(
$"nuget:{SdkVersion.Name}",
SdkVersion.Version
);
}
return @event;
}
}
}