chore: Masking user data in mixpanel session recordings

app/client/cypress/support/Pages/DataSources.ts

@@ -147,7 +147,7 @@ export class DataSources {
     option +
     "']";
   _queryTableResponse =
-    "//div[@data-guided-tour-id='query-table-response']//div[@class='tbody']//div[@class ='td']";
+    "//div[@data-guided-tour-id='query-table-response']//div[@class='tbody']//div[@class ='td mp-mask']";
   _queryResponseHeader = (header: string) =>
     "//div[@data-guided-tour-id='query-table-response']//div[@class='table']//div[@role ='columnheader']//span[text()='" +
     header +

app/client/src/PluginActionEditor/components/PluginActionResponse/components/Table.tsx

@@ -311,7 +311,11 @@ function Table(props: TableProps) {
           {/* eslint-disable-next-line @typescript-eslint/no-explicit-any */}
           {row.cells.map((cell: any, cellIndex: number) => {
             return (
-              <div {...cell.getCellProps()} className="td" key={cellIndex}>
+              <div
+                {...cell.getCellProps()}
+                className="td mp-mask"
+                key={cellIndex}
+              >
                 <CellWrapper>{cell.render("Cell")}</CellWrapper>
               </div>
             );
@@ -344,7 +348,7 @@ function Table(props: TableProps) {
               {headerGroups.map((headerGroup: any, index: number) => (
                 <div
                   {...headerGroup.getHeaderGroupProps()}
-                  className="tr"
+                  className="tr mp-mask"
                   key={index}
                 >
                   {headerGroup.headers.map(

app/client/src/ce/entities/FeatureFlag.ts

@@ -49,6 +49,11 @@ export const FEATURE_FLAG = {
   release_gs_all_sheets_options_enabled:
     "release_gs_all_sheets_options_enabled",
   ab_premium_datasources_view_enabled: "ab_premium_datasources_view_enabled",
+  kill_session_recordings_enabled: "kill_session_recordings_enabled",
+  config_mask_session_recordings_enabled:
+    "config_mask_session_recordings_enabled",
+  config_user_session_recordings_enabled:
+    "config_user_session_recordings_enabled",
 } as const;
 
 export type FeatureFlag = keyof typeof FEATURE_FLAG;
@@ -91,6 +96,9 @@ export const DEFAULT_FEATURE_FLAG_VALUE: FeatureFlags = {
   release_table_html_column_type_enabled: false,
   release_gs_all_sheets_options_enabled: false,
   ab_premium_datasources_view_enabled: false,
+  kill_session_recordings_enabled: false,
+  config_user_session_recordings_enabled: true,
+  config_mask_session_recordings_enabled: true,
 };
 
 export const AB_TESTING_EVENT_KEYS = {

app/client/src/ce/sagas/userSagas.tsx

@@ -74,6 +74,7 @@ import type {
 } from "reducers/uiReducers/usersReducer";
 import { selectFeatureFlags } from "ee/selectors/featureFlagsSelectors";
 import { getFromServerWhenNoPrefetchedResult } from "sagas/helper";
+import type { SessionRecordingConfig } from "utils/Analytics/mixpanel";
 
 export function* getCurrentUserSaga(action?: {
   payload?: { userProfile?: ApiResponse };
@@ -107,9 +108,42 @@ export function* getCurrentUserSaga(action?: {
   }
 }
 
+function* getSessionRecordingConfig() {
+  const featureFlags: FeatureFlags = yield select(selectFeatureFlags);
+
+  // This is a tenant level flag to kill session recordings
+  // If this is true, we do not do any session recordings
+  if (featureFlags.kill_session_recordings_enabled) {
+    return {
+      enabled: false,
+      mask: false,
+    };
+  }
+
+  // This is a user level flag to control session recordings for a user
+  // If this is false, we do not do any session recordings
+  if (!featureFlags.config_user_session_recordings_enabled) {
+    return {
+      enabled: false,
+      mask: false,
+    };
+  }
+
+  // Now we know that both tenant and user level flags are not blocking session recordings
+  return {
+    enabled: true,
+    // Check if we need to mask the session recordings from feature flags
+    mask: featureFlags.config_mask_session_recordings_enabled,
+  };
+}
+
 function* initTrackers(currentUser: User) {
   try {
-    yield call(AnalyticsUtil.initialize, currentUser);
+    const sessionRecordingConfig: SessionRecordingConfig = yield call(
+      getSessionRecordingConfig,
+    );
+
+    yield call(AnalyticsUtil.initialize, currentUser, sessionRecordingConfig);
   } catch (e) {
     log.error(e);
   }

app/client/src/ce/utils/AnalyticsUtil.tsx

@@ -6,7 +6,9 @@ import type { EventName } from "ee/utils/analyticsUtilTypes";
 import type { EventProperties } from "@segment/analytics-next";
 
 import SegmentSingleton from "utils/Analytics/segment";
-import MixpanelSingleton from "utils/Analytics/mixpanel";
+import MixpanelSingleton, {
+  type SessionRecordingConfig,
+} from "utils/Analytics/mixpanel";
 import SentryUtil from "utils/Analytics/sentry";
 import SmartlookUtil from "utils/Analytics/smartlook";
 import TrackedUser from "ee/utils/Analytics/trackedUser";
@@ -25,7 +27,10 @@ export enum AnalyticsEventType {
 let blockErrorLogs = false;
 let segmentAnalytics: SegmentSingleton | null = null;
 
-async function initialize(user: User) {
+async function initialize(
+  user: User,
+  sessionRecordingConfig: SessionRecordingConfig,
+) {
   SentryUtil.init();
   await SmartlookUtil.init();
 
@@ -34,7 +39,7 @@ async function initialize(user: User) {
   await segmentAnalytics.init();
 
   // Mixpanel needs to be initialized after Segment
-  await MixpanelSingleton.getInstance().init();
+  await MixpanelSingleton.getInstance().init(sessionRecordingConfig);
 
   // Identify the user after all services are initialized
   await identifyUser(user);

app/client/src/components/editorComponents/CodeEditor/PeekOverlayPopup/PeekOverlayPopup.tsx

@@ -157,6 +157,7 @@ export function PeekOverlayPopUpContent(
       >
         {(dataType === "object" || dataType === "array") && jsData !== null && (
           <JsonWrapper
+            className="mp-mask"
             onClick={objectCollapseAnalytics}
             style={{
               minHeight: "20px",

app/client/src/components/editorComponents/Debugger/LogItem/LogItem.tsx

@@ -311,7 +311,7 @@ export function LogItem(props: LogItemProps) {
           })}
           {props.state && (
             <JsonWrapper
-              className="t--debugger-log-state"
+              className="t--debugger-log-state mp-mask"
               onClick={(e) => e.stopPropagation()}
             >
               <ReactJson src={props.state} {...reactJsonProps} />
@@ -325,7 +325,7 @@ export function LogItem(props: LogItemProps) {
               if (typeof logDatum === "object") {
                 return (
                   <JsonWrapper
-                    className="t--debugger-console-log-data"
+                    className="t--debugger-console-log-data mp-mask"
                     key={Math.random()}
                     onClick={(e) => e.stopPropagation()}
                   >
@@ -334,7 +334,7 @@ export function LogItem(props: LogItemProps) {
                 );
               } else {
                 return (
-                  <span className="debugger-label" key={Math.random()}>
+                  <span className="debugger-label mp-mask" key={Math.random()}>
                     {`${logDatum} `}
                   </span>
                 );

app/client/src/components/editorComponents/ReadOnlyEditor.tsx

@@ -40,6 +40,7 @@ function ReadOnlyEditor(props: Props) {
     isReadOnly: true,
     isRawView: props.isRawView,
     border: CodeEditorBorder.NONE,
+    className: "mp-mask",
   };
 
   return <LazyCodeEditor {...editorProps} />;

app/client/src/pages/AppViewer/AppPage/AppPage.tsx

@@ -53,7 +53,11 @@ export function AppPage(props: AppPageProps) {
       ref={pageViewWrapperRef}
       sidebarWidth={sidebarWidth}
     >
-      <PageView data-testid="t--app-viewer-page" width={width}>
+      <PageView
+        className="mp-mask"
+        data-testid="t--app-viewer-page"
+        width={width}
+      >
         {widgetsStructure.widgetId &&
           renderAppsmithCanvas(widgetsStructure as WidgetProps)}
       </PageView>

app/client/src/pages/Editor/Canvas.tsx

@@ -92,7 +92,7 @@ const Canvas = (props: CanvasProps) => {
         <Wrapper
           $enableMainCanvasResizer={!!props.enableMainCanvasResizer}
           background={isAnvilLayout ? "" : backgroundForCanvas}
-          className={`relative t--canvas-artboard ${paddingBottomClass} ${marginHorizontalClass} ${getViewportClassName(
+          className={`relative t--canvas-artboard mp-mask ${paddingBottomClass} ${marginHorizontalClass} ${getViewportClassName(
             canvasWidth,
           )}`}
           data-testid={"t--canvas-artboard"}

app/client/src/utils/Analytics/mixpanel.ts

@@ -4,6 +4,11 @@ import { getAppsmithConfigs } from "ee/configs";
 import SegmentSingleton from "./segment";
 import type { ID } from "@segment/analytics-next";
 
+export interface SessionRecordingConfig {
+  enabled: boolean;
+  mask: boolean;
+}
+
 class MixpanelSingleton {
   private static instance: MixpanelSingleton;
   private mixpanel: OverridedMixpanel | null = null;
@@ -17,13 +22,21 @@ class MixpanelSingleton {
   }
 
   // Segment needs to be initialized before Mixpanel
-  public async init(): Promise<boolean> {
+  public async init({
+    enabled,
+    mask,
+  }: SessionRecordingConfig): Promise<boolean> {
     if (this.mixpanel) {
       log.warn("Mixpanel is already initialized.");
 
       return true;
     }
 
+    // Do not initialize Mixpanel if session recording is disabled
+    if (!enabled) {
+      return false;
+    }
+
     try {
       const { default: loadedMixpanel } = await import("mixpanel-browser");
       const { mixpanel } = getAppsmithConfigs();
@@ -32,6 +45,8 @@ class MixpanelSingleton {
         this.mixpanel = loadedMixpanel;
         this.mixpanel.init(mixpanel.apiKey, {
           record_sessions_percent: 100,
+          record_block_selector: mask ? ".mp-block" : "",
+          record_mask_text_selector: mask ? ".mp-mask" : "",
         });
 
         await this.addSegmentMiddleware();