add a sentry capture for when eboutic basket regex validation fails. (#504)

Co-authored-by: Théo DURR <git@theodurr.fr>
2024-11-20 05:03:23 +00:00 · 2022-12-11 10:56:02 +01:00 · 2022-12-11 10:56:02 +01:00 · 8fb0897160
commit 8fb0897160
parent 6a0a8e8ab4
2 changed files with 9 additions and 0 deletions
--- a/.gitignore
+++ b/.gitignore
@ -7,6 +7,7 @@ db.sqlite3
 pyrightconfig.json
 dist/
 .vscode/
+.idea/
 env/
 doc/html
 data/
--- a/eboutic/forms.py
+++ b/eboutic/forms.py
@ -28,6 +28,7 @@ import typing

 from django.http import HttpRequest
 from django.utils.translation import gettext as _
+from sentry_sdk import capture_message

 from eboutic.models import get_eboutic_products

@ -104,6 +105,13 @@ class BasketForm:
        # check that the json is not nested before parsing it to make sure
        # malicious user can't ddos the server with deeply nested json
        if not BasketForm.json_cookie_re.match(basket):
+            # As the validation of the cookie goes through a rather boring regex,
+            # we can regularly have to deal with subtle errors that we hadn't forecasted,
+            # so we explicitly lay a Sentry message capture here.
+            capture_message(
+                "Eboutic basket regex checking failed to validate basket json",
+                level="error",
+            )
            self.error_messages.add(_("The request was badly formatted."))
            return
        try: