Automated Session Tracking #5060

simon-id · 2024-12-27T12:40:06Z

What does this PR do?

Adds instrumentation for express-session to get sessionIDs, send them to the WAF, feed them into our fingerprinting algorithm, and potentially block bad actors.

ST PR: DataDog/system-tests#3755

IlyasShabi · 2025-02-24T10:39:18Z

packages/dd-trace/src/appsec/index.js

+    return
+  }
+
+  const isSdkCalled = rootSpan.context()._tags['usr.session_id']


You can use USER_SESSION_ID

no this is a tag, not an address, and we have hardcoded tags all around, we've never properly took the time to enum the tags used in appsec, not really a fan of doing it in this PR particularly

simon-id added 30 commits September 11, 2024 13:46

instrument passport

81f6ab5

lint

023828c

update config

98090fb

add new RC capability

5cc7274

Merge branch 'master' into new_user_collection

3343878

add RC handler

4e127de

fix require path

b4daf8f

add setCollectionMode()

5f85b8e

use setCollectionMode() in appsec index

1b074ad

DRY up passport strategies instrumentation

cbc8cf3

simplify passport strategies instrumentations

729241d

simplify instrumentation

6ffc21f

note for later

4433baa

add blocking to login

cf39858

Merge branch 'master' into new_user_collection

2da5bef

add abortController in listener

d8bed47

cleanup

5105006

update typings

65c680b

cleanup

23f965d

RC config update

b5b336a

push everything

53a7791

simplify passport strategies instrumentation

2b7d2e6

fixes

24c2828

simplify code

cdb89f6

cleanup

32edfae

revert some changes

50b3605

delete passport.js

b5aa0d4

Update packages/datadog-instrumentations/src/passport-utils.js

1f30a3c

update verify subscriber

9fee2bc

rollback config changes

be3115a

simon-id added 7 commits February 20, 2025 01:15

use address constant

84f0845

update set_user tests

ddb81b6

cleanup

b1044f4

do not call sessionid tracking if the sdk was called with sessionid

79096ac

cleanup index tests

036e19e

update index tests

8c66547

Merge branch 'master' into appsec_session_id

6e7bca7

simon-id added semver-minor asm-waf labels Feb 20, 2025

test for express-session

2155458

simon-id marked this pull request as ready for review February 24, 2025 08:30

simon-id requested review from a team as code owners February 24, 2025 08:30

simon-id added 2 commits February 24, 2025 09:41

whoops now here are the tests

00a4b5c

cleanup

38dc765

IlyasShabi reviewed Feb 24, 2025

View reviewed changes

uurien previously approved these changes Feb 24, 2025

View reviewed changes

IlyasShabi previously approved these changes Feb 25, 2025

View reviewed changes

revert RC changes to help fix conflict

cc3b74d

simon-id dismissed stale reviews from IlyasShabi and uurien via cc3b74d February 25, 2025 18:42

simon-id added 2 commits February 25, 2025 19:42

Merge branch 'master' into appsec_session_id

265e7b3

readd RC changes

dbc642e

uurien approved these changes Feb 26, 2025

View reviewed changes

simon-id merged commit 2c9ab13 into master Feb 26, 2025
392 of 394 checks passed

simon-id deleted the appsec_session_id branch February 26, 2025 09:34

watson mentioned this pull request Feb 27, 2025

v5.39.0 proposal #5337

Merged

watson pushed a commit that referenced this pull request Feb 27, 2025

Automated Session Tracking (#5060)

818447a

watson pushed a commit that referenced this pull request Feb 27, 2025

Automated Session Tracking (#5060)

8894cd1

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Automated Session Tracking #5060

Automated Session Tracking #5060

simon-id commented Dec 27, 2024 •

edited

Loading

IlyasShabi Feb 24, 2025

simon-id Feb 24, 2025

Automated Session Tracking #5060

Automated Session Tracking #5060

Conversation

simon-id commented Dec 27, 2024 • edited Loading

What does this PR do?

IlyasShabi Feb 24, 2025

Choose a reason for hiding this comment

simon-id Feb 24, 2025

Choose a reason for hiding this comment

simon-id commented Dec 27, 2024 •

edited

Loading