Replaced because of a data scrubbing rule in the settings of the project X | Sentry Community | Page 1

hexed hamlet May 27, 2025, 3:56 PM

#

what i see POST [Filtered] [401]
what it's POST https://auth.mywebsite.app.br/v1/auth/refresh [401]
how to add a safe field to not block this url

brisk runeBOT May 27, 2025, 3:56 PM

#

Hi @hexed hamlet. I'm happy to dig into this for you! I'll check my internal sources for answers to your question! :wave:

#

Sentry’s data scrubbing rules will filter out any field or value that matches sensitive keywords like "auth", "password", "token", etc., which is why your URL containing /auth/ is being replaced with [Filtered] in your event data. This is default behavior to protect potentially sensitive information, but you can override it for specific fields by adding them to the Safe Fields list in your project’s Security & Privacy settings.

How to add a Safe Field to prevent scrubbing of your URL:

Go to your Sentry project.
Navigate to Settings → Security & Privacy.
Scroll down to the Data Scrubbing section.
Find the Safe Fields option.
Add the exact field path where your URL appears (for example, if it’s in extra.url, add extra.url as a safe field).

To specifically select a field, use the full path (e.g., extra.url). If you just add url, it will mark all url fields as safe. For more fine-grained control, use the full path as shown in your event payload. You can use wildcards if needed for arrays or nested objects.
Safe Fields documentation

Example:
If your event payload looks like this:

{
  "extra": {
    "url": "<https://auth.mywebsite.app.br/v1/auth/refresh">
  }
}

Add extra.url to the Safe Fields.

Note:

If the URL appears in a different field (e.g., in breadcrumbs or a custom field), use the appropriate path.
If the field is in breadcrumbs, be aware that only the message and data in breadcrumbs are used for data scrubbing, and Safe Fields may not always prevent scrubbing in breadcrumbs due to known limitations Known Limitations.

#

This should prevent Sentry from filtering out your URL in future events, allowing you to see the full value instead of [Filtered] Why am I seeing "[Filtered]" in my event data?.

If you continue to see `[Filtered]`, check the raw JSON of the event in Sentry (using the `{ }` button) to confirm which field is being scrubbed and why. The `_meta` section will show the scrubbing rule applied How do I find out exactly what is scrubbing my data?.

Note: you can ask me a follow up question by @ mentioning me again :speech_balloon:

#

@hexed hamlet Our robots are still learning and improving, please let us know if this response was correct by reacting below.

hexed hamlet May 27, 2025, 3:59 PM

#

on json it said @password:filter

#

@brisk rune

brisk runeBOT May 27, 2025, 3:59 PM

#

Let me check the knowledge base for you again. One moment! :books:

#Replaced because of a data scrubbing rule in the settings of the project X

If you continue to see [Filtered], check the raw JSON of the event in Sentry (using the { } button) to confirm which field is being scrubbed and why. The _meta section will show the scrubbing rule applied How do I find out exactly what is scrubbing my data?.

Note: you can ask me a follow up question by @ mentioning me again :speech_balloon:

If you continue to see `[Filtered]`, check the raw JSON of the event in Sentry (using the `{ }` button) to confirm which field is being scrubbed and why. The `_meta` section will show the scrubbing rule applied How do I find out exactly what is scrubbing my data?.