feat(release-health): Enable session tracking by default

[ahmedetefy]

This PR adds session tracking by default, through removing auto_session_tracking from experimental options to proper ones with session_mode defaulting to application but then switches to request in the middleware

Changes:

• Moved session_mode from SessionFlusher (sessions.py) to Session (session.py)
• Hub.start_session takes a session_mode that defaults to application
• auto_session_tracking context manager takes an optional session_mode
• Moved auto_session_tracking experimental flag to a proper option that defaults to True
• Removed session_mode experimental option

[Swatinem]

I do have one concern, since we default to application mode, which means no pre-aggregation, currently the auto_session_tracking resource manager only checks for the auto_session_tracking flag, but not for the mode.

Why is this relevant: The wsgi integration does auto_session_tracking, so if someone has not correctly configured the SDK, that integration will generate tons of individual session updates.

[Swatinem]

second concern is around application mode sessions: currently there is no code that starts/stops one. what I think is missing is actually calling start_session in the sdk init.

[mitsuhiko]

Do we need this flag? I thought we might be able to auto detect within the integration. Is that not the case?

[ahmedetefy]

Do we need this flag? I thought we might be able to auto-detect within the integration. Is that not the case?

I am assuming you are talking about the auto_session_tracking flag, right?

And in that case, I am not entirely sure but it seems like it relies on the options passed on init?
https://github.com/getsentry/sentry-python/blob/master/sentry_sdk/sessions.py#L21-L47

and in regards to the session_mode that @Swatinem is referring to, afaik it is auto-detected in Rust but doesn't seem like it is in Python
https://github.com/getsentry/sentry-python/blob/master/sentry_sdk/client.py#L108

Am I missing something here?

[mitsuhiko]

This looks good.

[levrik]

Sadly I couldn't find any documentation about what this auto session tracking actually is so I'm a bit afraid of upgrading to the latest Sentry SDK. What exactly is this feature?

[rhcarvalho]

What exactly is this feature?

@levrik this feature tracks Release Health by sending session updates with healthy/unhealthy counts.

[anderoonies]

Hello!

We recently made a big upgrade from <1.0 to 1.5.7 and I believe we ran into an issue related to this—from APM, it looks like sessions were being updated frequently, which was causing some performance issues downstream, I believe due to user_agent reads on cached sessions (https://docs.djangoproject.com/en/2.2/topics/http/sessions/#using-cached-sessions).

You mentioned:

Why is this relevant: The wsgi integration does auto_session_tracking, so if someone has not correctly configured the SDK, that integration will generate tons of individual session updates.

Can you clarify the misconfiguration here? Is it an incorrect session_mode?
We've tried to disable auto_session_tracking, but we're still seeing a high # of cache gets and the sentry_patched_wsgi_handler is a big % of wall time

Thank you!

UPDATE:
Sorry for any alarm, it looks like session tracking wasn't causing our issue. Looks like a bad interaction with Cachalot, I'll see if I can isolate what's wrong but I don't believe it's because of this. Again, sorry for alarm!