Remove authority from URLs sent to Sentry

[adinauer]

📜 Description

Remove authority from URLs that are sent to Sentry, e.g. as span descriptions, breadcrumbs or requests.

💡 Motivation and Context

Fixes #2365

💚 How did you test it?

📝 Checklist

• I reviewed the submitted code
• I added tests to verify the changes
• I updated the docs if needed
• No breaking changes

🔮 Next steps

[github-actions]

	Messages
📖	Do not forget to update Sentry-docs with your feature once the pull request gets approved.

Generated by 🚫 dangerJS against 5254e47

[github-actions]

Performance metrics 🚀

	Plain	With Sentry	Diff
Startup time	355.57 ms	390.90 ms	35.33 ms
Size	1.73 MiB	2.33 MiB	620.61 KiB

Previous results on branch: feat/remove-sensitive-data-from-urls

Startup times

Revision	Plain	With Sentry	Diff
8fb596c	355.54 ms	438.55 ms	83.01 ms
46ba0df	346.57 ms	350.41 ms	3.84 ms
593148d	368.38 ms	413.20 ms	44.82 ms
15cc296	315.33 ms	419.94 ms	104.61 ms

App size

Revision	Plain	With Sentry	Diff
8fb596c	1.73 MiB	2.33 MiB	620.61 KiB
46ba0df	1.73 MiB	2.33 MiB	621.15 KiB
593148d	1.73 MiB	2.33 MiB	621.15 KiB
15cc296	1.73 MiB	2.33 MiB	620.61 KiB

[codecov]

Codecov Report

Base: 80.12% // Head: 80.18% // Increases project coverage by +0.05% 🎉

Coverage data is based on head (5254e47) compared to base (9ab45a7).
Patch coverage: 87.39% of modified lines in pull request are covered.

Additional details and impacted files

@@             Coverage Diff              @@
##               main    #2366      +/-   ##
============================================
+ Coverage     80.12%   80.18%   +0.05%     
- Complexity     3919     3943      +24     
============================================
  Files           322      323       +1     
  Lines         14796    14896     +100     
  Branches       1951     1966      +15     
============================================
+ Hits          11856    11944      +88     
- Misses         2171     2178       +7     
- Partials        769      774       +5     

Impacted Files	Coverage Δ
...racing/SentrySpanClientHttpRequestInterceptor.java	0.00% <0.00%> (ø)
...racing/SentrySpanClientHttpRequestInterceptor.java	0.00% <0.00%> (ø)
.../io/sentry/apollo3/SentryApollo3HttpInterceptor.kt	79.77% <75.00%> (ø)
sentry/src/main/java/io/sentry/Breadcrumb.java	85.95% <85.71%> (-0.10%)	⬇️
sentry/src/main/java/io/sentry/util/UrlUtils.java	90.90% <90.90%> (ø)
...in/java/io/sentry/openfeign/SentryFeignClient.java	94.36% <100.00%> (+0.16%)	⬆️
...arta/SentryRequestHttpServletRequestProcessor.java	94.73% <100.00%> (+0.61%)	⬆️
...vlet/SentryRequestHttpServletRequestProcessor.java	94.73% <100.00%> (+0.61%)	⬆️
...o/sentry/spring/jakarta/SentryRequestResolver.java	94.73% <100.00%> (+0.29%)	⬆️
.../spring/jakarta/webflux/SentryRequestResolver.java	71.42% <100.00%> (+1.42%)	⬆️
... and 3 more

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[cleptric]

Just checked how the query and fragment are now set on the span/breadcrumb, LGTM!

[markushi]

Nice one, I like the extensive tests!

[markushi]

l: Can't you use java built-in URL class here instead?
I haven't tried it but

• Url.getPath should reflect url with query/ref
• Url.getRef should return the fragment
• Url.getQuery for the query params

[adinauer]

I guess you could reconstruct the base URL from parts retrieved from URL but imo that wouldn't be any better than the current code.

[markushi]

Alright, then let's keep it this way. I just checked a few exotic URLs (like example.com/?/path/?query=param) and your solution provides better output than the URL api 👍

[markushi]

l: I'm wondering if parse() or parseUrl() would suit better here

[adinauer]

No preference here. Can rename it if you want.

[markushi]

Yeah I think it would fit better, but I'm definitely nit-picking here - if it's too much effort to refactor leave it as is 😅

[adinauer]

Updated

[markushi]

I guess we could mark this as @ApiStatus.Internal right?

[adinauer]

Done