Log session answers to rollbar

[rjlynch]

Some of the errors in rollbar are tricky to debug as we don't know what
answers the claimant provided. This commit adds a mechanism for flagging
attributes as PII and updates the ClaimsController to include the non
pii attributes in the Rollbar scope such that they are available in
Rollbar.

Here are two errors in rollbar showing the additional params sent over https://app.rollbar.com/a/dfe-digital/fix/item/dfe-claims/1530#occurrences

We couldn't reuse the config/analytics_blocklist.yml list for scrubbing pi as journey sessions store all answers in the answers db column and we just block the whole column. I think tacking on pii: true to the attribute definition isn't too much overhead and may end up being useful in other contexts.

[github-actions]

Deployments

Journey	URL
Additional Payments	https://claim-additional-payments-for-teaching-review-3478-web.test.teacherservices.cloud/additional-payments/claim
Student Loans	https://claim-additional-payments-for-teaching-review-3478-web.test.teacherservices.cloud/student-loans/claim
Further Education	https://claim-additional-payments-for-teaching-review-3478-web.test.teacherservices.cloud/further-education-payments/landing-page
Early Years Payment	https://claim-additional-payments-for-teaching-review-3478-web.test.teacherservices.cloud/early-years-payment/landing-page
Relocation Payments	https://claim-additional-payments-for-teaching-review-3478-web.test.teacherservices.cloud/get-a-teacher-relocation-payment/landing-page
Admin	https://claim-additional-payments-for-teaching-review-3478-web.test.teacherservices.cloud/admin

[asmega]

can we add some basic coverage for this method?

[rjlynch]

Done 👍

[slorek]

There is already some config here https://github.com/DFE-Digital/claim-additional-payments-for-teaching/blob/master/app/models/claim.rb#L20 from when the Claim object was built during the journey. It might be that this is now redundant or could be considered as part of this change. I think the list of filtered attributes should be managed in one place.

[rjlynch]

There is already some config here https://github.com/DFE-Digital/claim-additional-payments-for-teaching/blob/master/app/models/claim.rb#L20 from when the Claim object was built during the journey. It might be that this is now redundant or could be considered as part of this change. I think the list of filtered attributes should be managed in one place.

@slorek I've opted to remove the Claim::FILTER_PARAMS code and replace it with the approach in this pr.
I think the FILTER_PARAM approach is harder to keep updated.
There was a test that all attributes on the Claim are present in the FILTER_PARAM list but this test didn't catch PII that's written to the eligibility, or not persisted at all (eg EY's provider_email_address wasn't in Claim::FILTER_PARAMS).
I've changed the code since you reviewed to reuse the Journey::SessionAnswers logic for filtering the request parameters too.
Also I've made declaring pii on an attribute non optional which should avoid us missing flagging any new pii fields.
If you think there's a better approach or a way to keep using Claim::FILTER_PARAMS please let me know 👍