Sentry Org Auth Token
Description
General
- Documentation: https://docs.sentry.io/api/auth/
- Summary: Sentry is a tool to help developers monitor errors. Tokens are used to authenticate requests to the API. This detector aims at finding organization auth tokens.
- IPs allowlist: This feature is not available.
- Scopes: Multiple scopes can be chosen when creating tokens. These are described in the Permissions and Scopes page of the documentation.
Revoke the secret
Tokens can be revoked from the user's dashboard.
Check for suspicious activity
This feature is not described in the documentation.
Details for Sentry org auth token
Family: Api
Category: Monitoring
Company: Sentry
High recall: False
Validity check available: True
On-premise instances exist: True
Only valid secrets raise an alert: False
Minimum number of matches: 1
Occurrences found for one million commits: 0.45
Prefixed: False
PreValidators:
- type: ContentWhitelistPreValidator
patterns:
- sntrys_eyjpyxqioje3mt
Examples
- text: sntrys_eyJpYXQiOjE3MTE0Mzc0000000000000LCJ1cmwiOiJodHRwczovL3NlbnRyeS5pbyIsInJlZ2lvbl91cmwiOiJodHRwczovL3VzLnNlbnRyeS5pbyIsIm9yZyI6ImJsb2NrY2hhaW5mb3Jld000000=_MYmTc+U6jIGGQzOwEvxby9DU9enfEEEEEEEEEEEEEEE
apikey: sntrys_eyJpYXQiOjE3MTE0Mzc0000000000000LCJ1cmwiOiJodHRwczovL3NlbnRyeS5pbyIsInJlZ2lvbl91cmwiOiJodHRwczovL3VzLnNlbnRyeS5pbyIsIm9yZyI6ImJsb2NrY2hhaW5mb3Jld000000=_MYmTc+U6jIGGQzOwEvxby9DU9enfEEEEEEEEEEEEEEE
# Fat-fingered secret
- text: Xsntrys_eyJpYXQiOjE3MTE0Mzc0000000000000LCJ1cmwiOiJodHRwczovL3NlbnRyeS5pbyIsInJlZ2lvbl91cmwiOiJodHRwczovL3VzLnNlbnRyeS5pbyIsIm9yZyI6ImJsb2NrY2hhaW5mb3Jld000000=_MYmTc+U6jIGGQzOwEvxby9DU9enfEEEEEEEEEEEEEEE
apikey: sntrys_eyJpYXQiOjE3MTE0Mzc0000000000000LCJ1cmwiOiJodHRwczovL3NlbnRyeS5pbyIsInJlZ2lvbl91cmwiOiJodHRwczovL3VzLnNlbnRyeS5pbyIsIm9yZyI6ImJsb2NrY2hhaW5mb3Jld000000=_MYmTc+U6jIGGQzOwEvxby9DU9enfEEEEEEEEEEEEEEE
