Block internal users thourgh the FS API init

New
Avatar
Leonardo Santos

Hello FS community 👋

I'm facing an issue and would like a solution for blocking user sessions through the API. I believe I can use a solution by using the FullStory API with the init function and utilizing the devMode property to block sessions in the production environment and for internal users. I'd like to understand the impact of this approach and whether it is a secure method, as I haven't found any other points discussing this.

Can anyone provide insights or advice on this?

function initService(user, environment) {
  const devMode = user.email.includes('internal') || environment !== 'production'

  init({ orgId: 'fakeOrg', devMode })
}

https://www.npmjs.com/package/@fullstory/browser#init

https://www.npmjs.com/package/@fullstory/browser#configuration-options

 

Thank you!

0

Comments

1 comment

  • Avatar
    Gemma Atkins

    Hi @Leonardo Santos 👋 Thanks for reaching out!

    Typically, the best way to block your internal traffic will be to block your company’s IP address(es) under Settings > Data Capture and Privacy > Data Capture. You can learn more about blocking sessions by IP address here.

    If blocking by IP address isn't an option for your team, you could consider leveraging our FS.shutdown and FS.restart APIs to conditionally deploy your recording snippet (To identify your internal users before the fs.js script loads onto the page).

    If this brings up any further questions, please let us know. 🙂

    0

Please sign in to leave a comment.

Didn't find what you were looking for?

New post