Session Replay isn't enabled by default, and requires setup beyond the standard Amplitude instrumentation.
This article covers the installation of Session Replay using the Browser SDK plugin. If your site is already instrumented with Amplitude, use this option. If you use a provider other than Amplitude for in-product analytics, choose the standalone implementation. For more information about the Browser SDK, see
Browser SDK 2.
Amplitude built Session Replay to minimize impact on the performance of web pages on which it's installed by:
Session Replay captures changes to a page's Document Object Model (DOM), including elements in the shadow DOM, then replays these changes to build a video-like replay. For example, at the start of a session, Session Replay captures a full snapshot of the page's DOM. As the user interacts with the page, Session Replay captures each change to the DOM as a diff. When you watch the replay of a session, Session Replay applies each diff back to the original DOM in sequential order, to construct the replay. Session replays have no maximum length.
Use the latest version of the Session Replay Plugin above version 1.8.1. For more information, see the change log on GitHub.
The Session Replay Plugin requires that:
Session Replay supports the same set of browsers as Amplitude's SDKs. For more information, see Browser Compatibility.
Session Replay may not support all browser extensions or DOM elements introduced by browser extensions.
Session Replay supports Shadow DOM, but there may be exceptions depending on the frameworks your site uses.
Install the plugin with npm or yarn.
1npm install @amplitude/plugin-session-replay-browser --save
1yarn add @amplitude/plugin-session-replay-browser
Configure your application code.
1import * as amplitude from '@amplitude/analytics-browser';2import { sessionReplayPlugin } from '@amplitude/plugin-session-replay-browser';3 4 // Create and Install Session Replay Plugin5const sessionReplayTracking = sessionReplayPlugin();6amplitude.add(sessionReplayTracking);7 8// Your existing initialization logic with Browser SDK9amplitude.init(API_KEY);
You can also add the code directly to the <head>
of your site. With this method, be sure that the Browser SDK isn't initialized elsewhere in your application. If you initialize the Browser SDK more than once, you may see mismatches in Device ID or Session ID.
1<script src="https://cdn.amplitude.com/libs/analytics-browser-2.9.0-min.js.gz"></script>2<script src="https://cdn.amplitude.com/libs/plugin-session-replay-browser-1.4.0-min.js.gz"></script>3<script>4const sessionReplayTracking = window.sessionReplay.plugin();5window.amplitude.add(sessionReplayTracking);6window.amplitude.init(API_KEY)7</script>
Session Replay instrumentation happens in the context of an Amplitude Project. Your replay quota is defined on the Organization level. As a result, you may have multiple Session Replay implementations, across multiple projects each with their own sample rate, that pull from the same quota.
The Session Replay plugin scripts load asynchronously when you add them to the <head>
tag of your page. As a result, this implementation isn't compatible with Google Tag Manager. For more information, see Session Replay Implementation with Google Tag Manager.
Name | Type | Required | Default | Description |
---|---|---|---|---|
sampleRate |
number |
No | 0 |
Use this option to control how many sessions to select for replay collection. The number should be a decimal between 0 and 1, for example 0.4 , representing the fraction of sessions to have randomly selected for replay collection. Over a large number of sessions, 0.4 would select 40% of those sessions. This field isn't required because Session Replay supports Remote Configuration of settings including Sample Rate. |
Session Replay enables session tracking by default. This ensures that Session Replay captures Session Start and Session End events. If you didn't capture these events before you implement Session Replay, expect an increase in event volume. For more information about session tracking, see Browser SDK 2.0 | Tracking Sessions.
1amplitude.init(API_KEY, USER, {2 defaultTracking: {3 sessions: true4 }5});
1amplitude.init(API_KEY, USER, {2 defaultTracking: false3});
Beginning with plugin version 1.1.0, Session Replay no longer requires Session Start
and Session End
events, but does capture them by default. To disable capture of these events, set forceSessionTracking: false
:
1const sessionReplayTracking = window.sessionReplay.plugin({2 forceSessionTracking: false,3 sampleRate: 1, // 100% sample rate, should reduce for production traffic.4});
Amplitude requires at least one event in any captured session to enable playback of the replay. Amplitude recommends that you leave Session Tracking enabled, as that triggers [Amplitude] Session Start
at the beginning of the session. If you disable session tracking, configure another event to fire early in the session for best results.
The Session Replay SDK offers three ways to mask user input, text, and other HTML elements.
Element | Description |
---|---|
<input> |
Session Replay masks all text input fields by default. When a users enters text into an input field, Session Replay captures asterisks in place of text. To unmask a text input, add the class .amp-unmask . For example: <input class="amp-unmask"> . |
text | To mask text within non-input elements, add the class .amp-mask . For example, <p class="amp-mask">Text</p> . When masked, Session Replay captures masked text as a series of asterisks. |
non-text elements | To block a non-text element, add the class .amp-block . For example, <div class="amp-block"></div> . Session Replay replaces blocked elements with a placeholder of the same dimensions. |
Session Replay supports setting a masking level on the Session Replay Settings screen in Amplitude. This includes Light, Medium, and Conservative settings.
Session Replay settings also enable remote masking overrides. These enable users in your organization to configure or update masking after implementation.
In the event of a conflict, Session Replay defers to the remote setting. For example:
.selector-1 | .selector-2 | .selector-3 | |
---|---|---|---|
Local setting | mask |
-- | mask |
Remote setting | unmask |
unmask |
-- |
Result | unmask |
unmask |
mask |
In this example, .selector-1
has a local setting and a remote setting. The result follows the remote setting, and overrides the setting in the SDK or plugin implementation.
Session Replay's configuration supports many types of CSS Selector. Specify an element tag (h1
or textarea
), a class name (.hidden
) or a data attribute.
Data attributes may be useful if your class names change often due to hashing. To use data attributes, add a custom attribute like data-amp-unmask
or data-amp-mask
to any HTML element. For example, <textarea data-amp-unmask></textarea>
, then enclose the attribute in square brackets when you specify the selector, [data-amp-unmask]
.
If remote configuration is enabled, and fails to load, Session Replay doesn't capture any sessions. This ensures that Amplitude respects any privacy settings you define in the Admin interface, and you don't accidentally capture sensitive data.
The Session Replay plugin follows the Browser SDK's optOut
setting, and doesn't support user opt-outs on its own.
Session Replay is available to Amplitude Customers who use the EU data center. Set the serverZone
configuration option to EU
during initialization. For example:
1// For European users, set the serverZone to "EU"2await sessionReplay.init(AMPLITUDE_API_KEY, {3 serverZone: "EU", 4}).promise;
By default, Session Replay captures 0% of sessions for replay. If you used Amplitude's new account snippet to instrument, sample rate defaults to 1
(100% of sessions) to enable easier testing. Update the sample rate from the Session Replay settings page or use the sampleRate
configuration option to set the percentage of total sessions that Session Replay captures. For example:
1// This configuration samples 1% of all sessions2await sessionReplay.init(AMPLITUDE_API_KEY, {3 sampleRate: 0.01 4}).promise;
To set the sampleRate
consider the monthly quota on your Session Replay plan. For example, if your monthly quota is 2,500,000 sessions, and you average 3,000,000 monthly sessions, your quota is 83% of your average sessions. In this case, to ensure sampling lasts through the month, set sampleRate
to .83
or lower.
Keep the following in mind as you consider your sample rate:
.01
. If this value doesn't capture enough replays, raise the rate over the course of a few days. For ways to monitor the number of session replays captured, see View the number of captured sessions.Session Replay supports remote sampling rate settings. This enables users in your organization to configure or update the sampling rate of your project after implementation, without a code change. In the event of a conflict, Session Replay defaults to the remote setting. For more information, see Account Settings.
Once enabled, Session Replay runs on your site until either:
amplitude.remove(sessionReplayTracking.name)
These examples assume you use the variable sessionReplayTracking
in your initialization code.
Call amplitude.remove('sessionReplayTracking')
before a user navigates to a restricted area of your site to disable replay collection while the user is in that area.
To restart replay collection, call amplitude.add('sessionReplayTracking')
to re-add the plugin.
Always wait for amplitude.add()
to finish before invoking amplitude.remove()
. If you don't, you may get an error in the console: TypeError: Cannot read properties of undefined (reading 'teardown')
. Use the promise
property to do this, as shown in either of these examples:
1await amplitude.add(sessionReplayTracking).promise;2await amplitude.remove(sesionReplayTracking.name).promise;
1const addPromise = amplitude.add(sessionReplayTracking).promise;2addPromise.then(() => {3 amplitude.remove(sessionReplayTracking.name).promise;4});
You can also use a feature flag product like Amplitude Experiment to create logic that enables or disables replay collection based on criteria like location. For example, you can create a feature flag that targets a specific user group, and add that to your initialization logic:
1import { sessionReplayPlugin } from "@amplitude/plugin-session-replay-browser"; 2 3// Your existing initialization logic with Browser SDK 4amplitude.init(API_KEY); 5 6if (nonEUCountryFlagEnabled) { 7 // Create and Install Session Replay Plugin 8 const sessionReplayTracking = sessionReplayPlugin({ 9 sampleRate: 0.5,10 });11 amplitude.add(sessionReplayTracking);12}
Session replay uses existing Amplitude tools and APIs to handle privacy and deletion requests.
While privacy laws and regulations vary across states and countries, certain constants exist, including the requirements to disclose in a privacy notice the categories of personal information you are collecting, the purposes for its use, and the categories of third parties with which personal information is shared. When implementing a session replay tool, you should review your privacy notice to make sure your disclosures remain accurate and complete. And as a best practice, review your notice with legal counsel to make sure it complies with the constantly evolving privacy laws and requirements applicable to your business and personal information data practices.
If your Amplitude plan includes Session Replay, Amplitude retains raw replay data for 30 days from the date of ingestion.
Purchase extra retention time, up to a maximum of 12 months. For more information, contact Amplitude Support.
If you purchase extra session volume, Amplitude retains raw replay data for up to 12 months from the date of ingestion. If you need a more strict policy, contact Amplitude support to set the value to 30 days.
Changes to the retention period impact replays ingested after the change. Sessions captured and ingested before a retention period change retain the previous retention period.
Replays that are outside of the retention period aren't viewable in Amplitude.
The Amplitude DSAR API returns metadata about session replays, but not the raw replay data. All events that are part of a session replay include a [Amplitude] Session Replay ID
event property. This event provides information about the sessions collected for replay for the user, and includes all metadata collected with each event.
1{ 2 "amplitude_id": 123456789, 3 "app": 12345, 4 "event_time": "2020-02-15 01:00:00.123456", 5 "event_type": "first_event", 6 "server_upload_time": "2020-02-18 01:00:00.234567", 7 "device_id": "your device id", 8 "user_properties": { ... } 9 "event_properties": {10 "[Amplitude] Session Replay ID": "cb6ade06-cbdf-4e0c-8156-32c2863379d6/1699922971244"11 }12 "session_id": 1699922971244,13}
Session Replay uses Amplitude's User Privacy API to handle deletion requests. Successful deletion requests remove all session replays for the specified user.
When you delete the Amplitude project on which you use Session Replay, Amplitude deletes that replay data.
Session Replay uses the same block filter available in the Amplitude app. Session Replay doesn't block traffic based on event or user properties.
Session Replay doesn't set cookies on the user's browser. Instead, it relies on a browser storage option called IndexedDB. This option enables continuous replay collection during a session in which the user navigates browser tabs or closes and reopens a tab. The SDK cleans up the data it stores in IndexedDB and shouldn't impact the user's disk space.
If a user opts out of all cookies on your site, use the optOut
configuration option to disable replay collection for that user.
Session Replay doesn't use cookies directly, and has no impact on cookie size.
Browser SDK uses cookies for session management.
To ensure that IndexedDB is initialized and working properly:
Review CSP headers to ensure they're not overly restrictive. Ensure default-src
and script-src
directives allow necessary sources.
Perform IndexedDB operations are within the same origin. Cross-origin restrictions can block IndexedDB operations.
Confirm that users use a modern browser that supports IndexedDB. Amplitude recommends the latest versions of Chrome, Firefox, Safari, Edge, or Opera.
Keep the following limitations in mind as you implement Session Replay:
<object>
tags including plugins like Flash, Silverlight, or Java. Session replay supports <object type="image">
<iframe>
elements from a different originSession Replay supports attaching to a single instance of the Amplitude SDK. If you have more than one instance instrumented in your application, make sure to start Session Replay on the instance that most relates to your project.
1<script>2 const sessionReplayTracking = window.sessionReplay.plugin();3 const instance = window.amplitude.createInstance();4 instance.add(sessionReplayTracking);5 instance.init(API_KEY);6<script>
For more information about individual statuses and errors, see the Session Replay Ingestion Monitor.
When Amplitude captures a replay, it doesn't download and store CSS files or other static assets that are part of your application or site. Session Replay stores references to these files, and uses those references while it reconstructs the replay. In some situations, the styling present in the replay may differ from your application for the following reasons:
To help resolve CSS loading issues:
localhost
.stylesheet.css?93f8b89
.app.amplitude.com
or app.eu.amplitude.com
to the list of domains that your server's CORS configuration permits.The Session Replay Plugin enables session tracking by default. If you instrument events outside of the Browser SDK, Amplitude doesn't tag those events as part of the session replay. This means you can't use tools like Funnel, Segmentation, or Journeys charts to find session replays. You can find session replays with the User Sessions chart or through User Lookup.
If you use a method other than the Browser SDK to instrument your events, consider using the Session Replay Standalone SDK
In some scenarios, the length of a replay may exceed the time between the [Amplitude] Start Session
and [Amplitude] End Session
events. This happens when a user closes their browser or browser tab and [Amplitude] End Session
occurs, but the Browser SDK and Session Replay plugin haven't yet processed it. When the user visits that page again, the SDK and plugin process the event and send it to Amplitude, along with the replay. You can verify this scenario occurs if you see a discrepancy between the End Session Client Event Time
and the Client Upload Time
.
Session replays may not appear in Amplitude due to:
The Session Replay SDK and plugin capture only the page that's in focus. When you develop locally with the browser console open, focus states may not work as expected. If you don't see replays in Amplitude, try to enable debugMode
. In this mode, Session Replay ignores the focus handle and enables extra debugging information.
1const sessionReplayTracking = window.sessionReplay.plugin({2 debugMode: true, 3 sampleRate: 1,4 });
When you add the Session Replay script to your site, visit a page on which the Session Replay SDK is running, and open your browser's developer tools.
Check for any error messages in the JavaScript console that contain the text Content Security Policy
. For example, Refused to connect to 'https://api-secure.amplitude.com/sessions/track' because it violates the document's Content Security Policy
.
To resolve this error, update your site's content security policy to allow connection to Amplitude's APIs.
Browser extensions or network security policy may block the Session Replay SDK. Check your browser's developer tools to see if requests fail, and if so, add an exception for the blocked domains.
Session Replay requires that at least one event in the user's session has the [Amplitude] Session Replay ID
property. The Browser SDK Session Start
and Session End
events include this property by default. If you instrument your events with any SDK other than the Amplitude Browser SDK 2, use the Session Replay Standalone SDK and ensure you tag your events with the necessary event properties.
For local testing, you can force a Session Start event to ensure that Session Replay functions.
AMP_
.[Amplitude] Session Replay ID
property. After processing, the Play Session button should appear for that session.As mentioned above, the default sampleRate
for Session Replay is 0
. Update the rate to a higher number. For more information see, Sampling rate.
Session replay doesn't require that all events in a session have the [Amplitude] Session Replay ID
property, only that one event in the session has it. Reasons why [Amplitude] Session Replay ID
may not be present in an event include:
getSessionReplayProperties()
doesn't return the [Amplitude] Session Replay ID
property. This is because Session Replay hasn't begun the capture, since the user hasn't interacted with the page. This should lead to a decrease in the amount of inactivity that a replay captures.In general, replays should be available within minutes of ingestion. Delays or errors may be the result of one or more of the following:
Thanks for your feedback!
September 19th, 2024
Need help? Contact Support
Visit Amplitude.com
Have a look at the Amplitude Blog
Learn more at Amplitude Academy
© 2024 Amplitude, Inc. All rights reserved. Amplitude is a registered trademark of Amplitude, Inc.