Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[#291] Apply simple sentry DNS to CSP in order to allow error reporting #292

Merged
merged 3 commits into from
Feb 27, 2024
Merged

[#291] Apply simple sentry DNS to CSP in order to allow error reporting #292

merged 3 commits into from
Feb 27, 2024

Conversation

placek
Copy link
Contributor

@placek placek commented Feb 26, 2024

This PR successfully updated the Content Security Policy (CSP) settings across beta, dev, staging, and test environments in the Traefik configuration, ensuring Sentry's error reporting capabilities are fully functional without being blocked.

By specifically adding Sentry's domain without the ingest subdomain to the CSP's connect-src directive, the changes enable comprehensive error logging and monitoring, thereby improving the application's debuggability and reliability across various deployment stages.

@placek placek force-pushed the fix/291-dev-test-sentry-error-appears-in-conslelog branch from 056b410 to 5f33d20 Compare February 26, 2024 08:19
@placek placek linked an issue Feb 26, 2024 that may be closed by this pull request
[DEV, TEST] Sentry error appears in consle.log #291
Closed
3 tasks
@placek placek requested a review from adgud February 26, 2024 09:13
@placek placek self-assigned this Feb 26, 2024
@placek placek marked this pull request as ready for review February 26, 2024 09:14
@placek placek mentioned this pull request Feb 26, 2024
Closed
3 tasks
@placek
[#291] Allow Sentry error reporting in CSP settings across environments
566bbe9 
Updated CSP settings in Traefik configuration for beta, dev, staging,
and test environments to include Sentry's domain without the ingest
subdomain. This change permits Sentry error logging and reporting to
function correctly without being blocked by the CSP. The adjustment
ensures Sentry can capture and report runtime errors, facilitating
better monitoring and debugging capabilities across our development,
testing, and staging phases.

- Modified CSP `connect-src` directive to set
  `o4506155985141760.ingest.sentry.io` replacing old Sentry
  sources.
- Ensured that the updated settings adhere to our security policies by
  only allowing necessary and trusted sources.

This update addresses the need for comprehensive error reporting through
Sentry, enhancing our ability to quickly identify and resolve issues in
our application's environments.
@placek
Updated CHANGELOG.md to include recent enhancements
ca27ef6 
- Integrated OAuth for secure Slack deployment notifications #194.
- Streamlined build and deployment process for faster CD and reduced
  resource use #246.
- Allow Sentry error reporting in CSP settings across environments #291.
@placek
Add environment-specific warning to .env.example for clarity and safety
f389129 
This commit introduces a significant update to the `.env.example` file
within the `scripts/govtool` directory to enhance usability and prevent
configuration mistakes. Key changes include:

- Addition of Vim modeline at the beginning of the file (`# vim: set
  ft=bash`) to ensure that when editing the file with Vim, the correct
  filetype (bash) is automatically set. This facilitates syntax
  highlighting and other filetype-specific features, improving the editing
  experience.
- Introduction of a conditional warning mechanism that activates when
  the environment is not set to 'dev'. This mechanism employs bash
  scripting to alert to users, especially those working in
  non-development environments, to proceed with caution and be aware of
  their current configuration context. The warning message explicitly
  states the current environment value, reinforcing the need for
  attentiveness.

These enhancements are designed to minimize the risk of misconfiguration
by providing clear, environment-specific warnings and improving file
readability and editing support.
@placek placek force-pushed the fix/291-dev-test-sentry-error-appears-in-conslelog branch from ffea978 to f389129 Compare February 27, 2024 11:29
@placek placek merged commit 804f906 into develop Feb 27, 2024
@placek placek deleted the fix/291-dev-test-sentry-error-appears-in-conslelog branch February 27, 2024 11:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@MSzalowski MSzalowski MSzalowski approved these changes

@adgud adgud adgud approved these changes

@kickloop kickloop Awaiting requested review from kickloop

Assignees

@placek placek

Labels
🏗 Infrastructure
Projects
None yet
Milestone
Infrastructure management (DevOps)
Development

Successfully merging this pull request may close these issues.

[DEV, TEST] Sentry error appears in consle.log
3 participants
@placek @adgud @MSzalowski