securenow 7.2.0 → 7.2.1

package/app-config.js

@@ -157,6 +157,30 @@ function resolveAll() {
   };
 }
 
+// Decide whether to append a per-worker UUID suffix to service.name.
+//
+// The dashboard filters traces with an exact match on service.name
+// (`resource_string_service$$name IN (...)`), so when appId IS the routing
+// UUID (customer is logged in → credentials file provides app.key), the
+// suffix guarantees a miss. Per-worker disambiguation still happens via
+// service.instance.id, which is never used for filtering.
+//
+// Precedence:
+//   1. Explicit opts.noUuid (caller passed it)                  — wins
+//   2. Explicit SECURENOW_NO_UUID env var (0/1/true/false)      — wins
+//   3. appKey resolved (logged-in, appId is routing UUID)       → true
+//   4. Otherwise (pre-login, appId = package.json#name)         → false
+function resolveNoUuid(opts = {}) {
+  if (opts.noUuid !== undefined && opts.noUuid !== null) return !!opts.noUuid;
+
+  const raw = process.env.SECURENOW_NO_UUID;
+  if (raw !== undefined && raw !== '') {
+    return /^(1|true)$/i.test(String(raw).trim());
+  }
+
+  return !!resolveAppKey();
+}
+
 module.exports = {
   FREE_TRIAL_INSTANCE,
   resolveAppKey,
@@ -165,6 +189,7 @@ module.exports = {
   resolveApiKey,
   resolveInstance,
   resolveAll,
+  resolveNoUuid,
   loadCredentials,
   loadLocalCredentials,
   loadGlobalCredentials,

package/cli/diagnostics.js

@@ -8,12 +8,20 @@ const config = require('./config');
 // ── Config resolution (mirrors tracing.js priority order) ──
 
 function resolvedConfig() {
-  const serviceName =
-    process.env.OTEL_SERVICE_NAME ||
-    process.env.SECURENOW_APPID ||
-    '(auto-generated)';
+  // Mirror the SDK's resolution: env → credentials file → package.json#name.
+  // Doing it here means `securenow doctor` reports what the SDK will actually
+  // send — critical for diagnosing "my traces don't show up" (the common
+  // cause is a service.name mismatch with the dashboard's exact-match filter).
+  const appConfig = require('../app-config');
+  const resolvedApp = appConfig.resolveAll();
+  const noUuid = appConfig.resolveNoUuid();
+
+  const baseName = (process.env.OTEL_SERVICE_NAME || resolvedApp.appId || '').trim().replace(/^['"]|['"]$/g, '') || null;
+  const serviceName = baseName
+    ? (noUuid ? baseName : `${baseName}-<uuid-per-worker>`)
+    : '(auto-generated)';
   const instance =
-    process.env.SECURENOW_INSTANCE || 'https://freetrial.securenow.ai:4318';
+    resolvedApp.instance || 'https://freetrial.securenow.ai:4318';
   const tracesEndpoint =
     process.env.OTEL_EXPORTER_OTLP_TRACES_ENDPOINT ||
     (process.env.OTEL_EXPORTER_OTLP_ENDPOINT
@@ -297,7 +305,7 @@ function env(_args, flags) {
     SECURENOW_API_URL: cfg.apiUrl,
     SECURENOW_LOGGING_ENABLED: cfg.loggingEnabled ? '1' : '0',
     SECURENOW_CAPTURE_BODY: cfg.captureBody ? '1' : '0',
-    SECURENOW_NO_UUID: process.env.SECURENOW_NO_UUID || '0',
+    SECURENOW_NO_UUID: process.env.SECURENOW_NO_UUID || `(auto: ${require('../app-config').resolveNoUuid() ? '1' : '0'})`,
     SECURENOW_FIREWALL_TCP: process.env.SECURENOW_FIREWALL_TCP || '0',
     SECURENOW_FIREWALL_IPTABLES: process.env.SECURENOW_FIREWALL_IPTABLES || '0',
     SECURENOW_FIREWALL_CLOUD: process.env.SECURENOW_FIREWALL_CLOUD || null,

package/nextjs.js

@@ -150,7 +150,10 @@ function registerSecureNow(options = {}) {
 
     const rawBase = (options.serviceName || resolvedApp.appId || '').trim().replace(/^['"]|['"]$/g, '');
     const baseName = rawBase || null;
-    const noUuid = options.noUuid ?? (String(env('SECURENOW_NO_UUID')) === '1' || String(env('SECURENOW_NO_UUID')).toLowerCase() === 'true');
+    // Default: auto-disable suffix when logged in (appId is the routing UUID
+    // and the dashboard does exact match). opts.noUuid or SECURENOW_NO_UUID
+    // override.
+    const noUuid = appConfig.resolveNoUuid({ noUuid: options.noUuid });
 
     // service.name
     let serviceName;

package/nuxt-server-plugin.mjs

@@ -83,10 +83,10 @@ export default defineNitroPlugin((nitroApp) => {
   // ── Naming ──
   const rawBase = (opts.serviceName || resolvedApp.appId || '').trim().replace(/^['"]|['"]$/g, '');
   const baseName = rawBase || null;
-  const noUuid =
-    opts.noUuid ??
-    (String(env('SECURENOW_NO_UUID')) === '1' ||
-      String(env('SECURENOW_NO_UUID')).toLowerCase() === 'true');
+  // Default: auto-disable per-worker suffix when logged in (appId is the
+  // routing UUID and the dashboard does exact match). opts.noUuid or
+  // SECURENOW_NO_UUID override.
+  const noUuid = appConfig.resolveNoUuid({ noUuid: opts.noUuid });
 
   let serviceName;
   if (baseName) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "securenow",
-  "version": "7.2.0",
+  "version": "7.2.1",
   "description": "OpenTelemetry instrumentation for Node.js, Next.js, and Nuxt - Send traces and logs to any OTLP-compatible backend",
   "type": "commonjs",
   "main": "register.js",

package/tracing.js

@@ -10,7 +10,11 @@
  *
  * Env:
  *   SECURENOW_APPID=logical-name              # or OTEL_SERVICE_NAME=logical-name
- *   SECURENOW_NO_UUID=1                       # one service.name across all workers
+ *   SECURENOW_NO_UUID=1|0                     # override. Default: auto — 1 when
+ *                                              logged in (appId is routing UUID,
+ *                                              dashboard does exact match),
+ *                                              0 pre-login (use suffix to
+ *                                              distinguish PM2 cluster workers).
  *   SECURENOW_INSTANCE=http://host:4318       # OTLP/HTTP base (default https://freetrial.securenow.ai:4318)
  *   OTEL_EXPORTER_OTLP_ENDPOINT=...           # alternative base
  *   OTEL_EXPORTER_OTLP_TRACES_ENDPOINT=...    # full traces URL
@@ -288,7 +292,10 @@ const headers = parseHeaders(env('OTEL_EXPORTER_OTLP_HEADERS'));
 // -------- naming rules --------
 const rawBase = (resolvedApp.appId || '').trim().replace(/^['"]|['"]$/g, '');
 const baseName = rawBase || null;
-const noUuid   = String(env('SECURENOW_NO_UUID')) === '1' || String(env('SECURENOW_NO_UUID')).toLowerCase() === 'true';
+// Auto-disables the per-worker suffix when we resolved a routing UUID from
+// credentials — the dashboard does exact-match IN on service.name, so any
+// suffix breaks routing. Env SECURENOW_NO_UUID=0|1 still overrides.
+const noUuid   = appConfig.resolveNoUuid();
 const strict   = String(env('SECURENOW_STRICT')) === '1' || String(env('SECURENOW_STRICT')).toLowerCase() === 'true';
 const inPm2Cluster = !!(process.env.NODE_APP_INSTANCE || process.env.pm_id);
 

package/web-vite.mjs

@@ -52,7 +52,15 @@ const headers = parseHeaders(env('OTEL_EXPORTER_OTLP_HEADERS'));
 // ---- naming rules (mirrors tracing.js) ----
 const rawBase = (env('OTEL_SERVICE_NAME') || env('SECURENOW_APPID') || '').trim().replace(/^['"]|['"]$/g, '');
 const baseName = rawBase || null;
-const noUuid = String(env('SECURENOW_NO_UUID')) === '1' || String(env('SECURENOW_NO_UUID')).toLowerCase() === 'true';
+// Default to no suffix whenever a baseName is resolved: the dashboard filters
+// service.name by exact match, and browsers have no PM2 cluster problem
+// (each tab has its own service.instance.id). Explicit SECURENOW_NO_UUID=0
+// still re-enables the suffix if someone really wants it.
+const noUuidEnv = env('SECURENOW_NO_UUID');
+const noUuid =
+  (noUuidEnv !== undefined && noUuidEnv !== '')
+    ? /^(1|true)$/i.test(String(noUuidEnv).trim())
+    : !!baseName;
 const strict = String(env('SECURENOW_STRICT')) === '1' || String(env('SECURENOW_STRICT')).toLowerCase() === 'true';
 
 function uuidv4(): string {