Comments (2)
guyrt
commented on August 15, 2024
This looks like it could raise security issues if we aren't careful: sentry adds local context info which may contain PII. As long as we set up scrubbing correctly, we're good. But it's worth keeping in mind, especially since it's easy to forget to update scrub keys (he says, from unfortunate experience).
I'm happy to work on this, but other question for clarification is whether we want to use a shared sentry or make this part of the config for new hosters. If so, it's yet another thing to set up. Thoughts?
from system800.
oelachqar
commented on August 15, 2024
Agreed regarding the security risk, which makes me think that we have the same issue with flower logging, we should fix that as well...
If it's easy to make sentry "optional", maybe we can create our own account and use it for our own development to help find bugs more quickly. Hosters who are interested can provide their own keys and sentry account while the others can just ignore it
from system800.
Related Issues (20)
- [celery] Make sure timezones are consistent HOT 1
- [celery][security] Configure message signing
- [celery][security] Configure redis over TLS
- [celery][security] Limit redis access via firewall (network security group)
- [api][prod] Add proper response headers and settings
- [celery][prod] configure redis storage and retention policy HOT 1
- [api][prod] Configure nginx and gunicorn
- [celery][prod] Deploy flower and secure access
- [celery][prod] Configure gunicorn and celery workers for best performance
- extract info unit tests are failing HOT 1
- [api] check that critical environment values are set before exposing API
- Make sure we use utc time in token expiration HOT 1
- [celery] retry backoff is not working
- [prod][celery][twilio] retry on request errors in twilio
- [celery][azure] Investigate root cause of worker deployment issues
- [prod] Create deployment branch and setup continuous deployment
- Obtain SSL certs and enforce connection over https
- [api][bug] Handle ain parameter null in /process endpoint HOT 1
- [api] callback_url validation is too strict in /process endpoint HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from system800.