sentry-security-basics
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
ChineseSentry Security Basics
Sentry安全基础
Prerequisites
前提条件
- Security requirements documented
- Compliance standards identified (GDPR, SOC 2, HIPAA)
- Sensitive data patterns known
- Access control needs defined
- 已记录安全要求
- 已确定合规标准(GDPR、SOC 2、HIPAA)
- 已知晓敏感数据模式
- 已定义访问控制需求
Instructions
操作步骤
- Enable server-side data scrubbing in project settings
- Configure client-side scrubbing in beforeSend for user data and request bodies
- Add sensitive field patterns for passwords, tokens, and API keys
- Store DSN in environment variables, never hardcode
- Set sendDefaultPii to false in SDK configuration
- Configure team permissions with principle of least privilege
- Create API tokens with minimal required scopes
- Rotate DSN keys and disable old ones after deployment
- Enable audit logging for compliance tracking
- Complete security checklist and document compliance status
- 在项目设置中启用服务器端数据清理
- 在beforeSend中配置客户端清理,处理用户数据和请求体
- 添加针对密码、令牌和API密钥的敏感字段模式
- 将DSN存储在环境变量中,切勿硬编码
- 在SDK配置中设置sendDefaultPii为false
- 遵循最小权限原则配置团队权限
- 创建具有最小必要权限范围的API令牌
- 部署后轮换DSN密钥并禁用旧密钥
- 启用审计日志以进行合规跟踪
- 完成安全检查清单并记录合规状态
Output
输出结果
- Data scrubbing configured
- DSN secured in environment variables
- Access controls implemented
- Security checklist completed
- 已配置数据清理
- DSN已安全存储在环境变量中
- 已实施访问控制
- 已完成安全检查清单
Error Handling
错误处理
See for comprehensive error handling.
{baseDir}/references/errors.md请查看获取全面的错误处理方法。
{baseDir}/references/errors.mdExamples
示例
See for detailed examples.
{baseDir}/references/examples.md请查看获取详细示例。
{baseDir}/references/examples.md