GA - obfuscate ip and user names

src/NuGetGallery/App_Code/ViewHelpers.cshtml

@@ -1,4 +1,5 @@
 @using System.Web.Mvc
+@using System.Web.Routing
 @using System.Web.Mvc.Html
 @using Microsoft.Web.Helpers
 @using NuGetGallery
@@ -353,13 +354,17 @@
             var cookieService = DependencyResolver.Current.GetService<ICookieComplianceService>();
             if (cookieService.CanWriteNonEssentialCookies(Request))
             {
+		var obfuscatedRequest = ObfuscationHelper.ObfuscateRequestUrl(new HttpContextWrapper(HttpContext.Current), RouteTable.Routes);
                 <script>
                     (function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
                     (i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
                     m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
                     })(window,document,'script','https://www.google-analytics.com/analytics.js','ga');
 
                     ga('create', '@propertyId', 'auto');
+		    ga('set', 'anonymizeIp', true);
+                    ga('set', 'page', '@obfuscatedRequest');
+                    ga('set', 'title', '');
                     ga('send', 'pageview');
                 </script>
             }

src/NuGetGallery/Helpers/ObfuscationHelper.cs

@@ -0,0 +1,27 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using System.Web;
+using System.Web.Routing;
+
+namespace NuGetGallery.Helpers
+{
+    public class ObfuscationHelper
+    {
+        public static string ObfuscateRequestUrl(HttpContextBase httpContext, RouteCollection routes)
+        {
+            if (httpContext == null || httpContext.Request == null || httpContext.Request.Url == null || routes == null)
+            {
+                return string.Empty;
+            }
+
+            var route = routes.GetRouteData(httpContext)?.Route as Route;
+            if (route == null)
+            {
+                return string.Empty;
+            }
+            return route.ObfuscateUrlPath(httpContext.Request.Url.AbsolutePath.TrimStart('/'));
+        }
+    }
+}

src/NuGetGallery/NuGetGallery.csproj

@@ -802,6 +802,7 @@
     <Compile Include="Filters\UIAuthorizeAttribute.cs" />
     <Compile Include="GlobalSuppressions.cs" />
     <Compile Include="Helpers\GravatarHelper.cs" />
+    <Compile Include="Helpers\ObfuscationHelper.cs" />
     <Compile Include="Helpers\PermissionsHelpers.cs" />
     <Compile Include="Helpers\RegexEx.cs" />
     <Compile Include="Helpers\RouteUrlTemplate.cs" />

tests/NuGetGallery.Facts/Helpers/ObfuscationHelperFacts.cs

@@ -0,0 +1,72 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the Apache License, Version 2.0. See License.txt in the project root for license information.
+
+using System;
+using System.Web;
+using System.Web.Routing;
+using Moq;
+using Xunit;
+
+namespace NuGetGallery.Helpers
+{
+    public class ObfuscationHelperFacts
+    {
+        public class TheObfuscateCurrentRequestUrlFacts
+        {
+            private const string _relativeTestPath = "profiles/user1";
+            private RouteCollection _currentRoutes;
+
+            public TheObfuscateCurrentRequestUrlFacts()
+            {
+                if (_currentRoutes == null)
+                {
+                    _currentRoutes = new RouteCollection();
+                    Routes.RegisterApiV2Routes(_currentRoutes);
+                    Routes.RegisterUIRoutes(_currentRoutes);
+                }
+            }
+
+            [Fact]
+            public void NullContext()
+            {
+                // Assert + Assert
+                var result = ObfuscationHelper.ObfuscateRequestUrl(null, _currentRoutes);
+                Assert.Equal("", result);
+            }
+
+            [Fact]
+            public void NullRoutes()
+            {
+                //Arrange 
+                var context = GetMockedHttpContext();
+
+                // Assert + Assert
+                var result = ObfuscationHelper.ObfuscateRequestUrl(context, null);
+                Assert.Equal("", result);
+            }
+
+            [Fact]
+            public void ValidData()
+            {
+                //Arrange 
+                var context = GetMockedHttpContext();
+
+                // Assert + Assert
+                var result = ObfuscationHelper.ObfuscateRequestUrl(context, _currentRoutes);
+                Assert.Equal("profiles/ObfuscatedUserName", result);
+            }
+
+            private HttpContextBase GetMockedHttpContext()
+            {
+                var context = new Mock<HttpContextBase>();
+                var request = new Mock<HttpRequestBase>();
+                context.Setup(ctx => ctx.Request).Returns(request.Object);
+
+                request.Setup(req => req.Url).Returns(new Uri($"https://localhost/{_relativeTestPath}"));
+                request.Setup(req => req.AppRelativeCurrentExecutionFilePath).Returns($"~/{_relativeTestPath}");
+                return context.Object;
+            }
+        }
+    }
+}
+

tests/NuGetGallery.Facts/NuGetGallery.Facts.csproj

@@ -413,6 +413,7 @@
     <Compile Include="Extensions\OrganizationExtensionsFacts.cs" />
     <Compile Include="Filters\UIAuthorizeAttributeFacts.cs" />
     <Compile Include="Framework\MemberDataHelper.cs" />
+    <Compile Include="Helpers\ObfuscationHelperFacts.cs" />
     <Compile Include="Infrastructure\Authentication\ApiKeyV3Facts.cs" />
     <Compile Include="Infrastructure\Authentication\ApiKeyV4Facts.cs" />
     <Compile Include="Infrastructure\Authentication\V3HasherTests.cs" />