https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707065#M11765 <P>Hey&nbsp;<a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/268899">@user487596</a>,&nbsp;how are you?<BR /><BR />You can use REST API endpoints, like this example using curl locally on your Splunk instance:</P><P>&nbsp;</P><LI-CODE lang="markup">curl -k -u &lt;username&gt;:&lt;password&gt; \ https://localhost:8089/servicesNS/nobody/&lt;app&gt;/storage/passwords \ -d name=user1 -d realm=realm1 -d password=password1</LI-CODE><P>&nbsp;</P><P>&nbsp;</P><P>In your code, use a <STRONG>prepare</STRONG> method to retrieve your key:</P><P>&nbsp;</P><LI-CODE lang="markup">def prepare(self): global API_KEY for passwd in self.service.storage_passwords: if passwd.realm == "&lt;you_realm_key&gt;": API_KEY = passwd.clear_password if API_KEY is None or API_KEY == "defaults_empty": self.error_exit(None, "No API key found.")</LI-CODE><P>&nbsp;</P><P>&nbsp;</P><P>Documentation can be found&nbsp;<A href="https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/secretstorage/secretstoragerest/" target="_self">here</A>&nbsp;</P> Tue, 17 Dec 2024 17:35:49 GMT luizlimapg 2024-12-17T17:35:49Z https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707064#M11764 <P>Hi folks! I want to create a custom&nbsp;GeneratingCommand that makes a simple API request, but how do I save the API key in passwords.conf?</P><P>I have a default/setup.xml file with the following content:</P><P>&nbsp;</P><LI-CODE lang="python">&lt;setup&gt; &lt;block title="Add API key(s)" endpoint="storage/passwords" entity="_new"&gt; &lt;input field="password"&gt; &lt;label&gt;API key&lt;/label&gt; &lt;type&gt;password&lt;/type&gt; &lt;/input&gt; &lt;/block&gt; &lt;/setup&gt;</LI-CODE><P>&nbsp;</P><P>But when I configure the app, the password (API key) is not saved in the app folder (passwords.conf).<BR />And if I need to add several api keys, how can I assign names to them and get information from the storage? I doubt this code will work:</P><P>&nbsp;</P><LI-CODE lang="python">try: app = "app-name" settings = json.loads(sys.stdin.read()) config = settings['configuration'] entities = entity.getEntities(['admin', 'passwords'], namespace=app, owner='nobody', sessionKey=settings['session_key']) i, c = entities.items()[0] api_key = c['clear_password'] #user, = c['username'], c['clear_password'] except Exception as e: yield {"_time": time.time(), "_raw": str(e)} self.logger.fatal("ERROR Unexpected error: %s" % e)</LI-CODE><P>&nbsp;</P><P>&nbsp;</P> Tue, 17 Dec 2024 16:53:10 GMT https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707064#M11764 user487596 2024-12-17T16:53:10Z https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707065#M11765 <P>Hey&nbsp;<a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/268899">@user487596</a>,&nbsp;how are you?<BR /><BR />You can use REST API endpoints, like this example using curl locally on your Splunk instance:</P><P>&nbsp;</P><LI-CODE lang="markup">curl -k -u &lt;username&gt;:&lt;password&gt; \ https://localhost:8089/servicesNS/nobody/&lt;app&gt;/storage/passwords \ -d name=user1 -d realm=realm1 -d password=password1</LI-CODE><P>&nbsp;</P><P>&nbsp;</P><P>In your code, use a <STRONG>prepare</STRONG> method to retrieve your key:</P><P>&nbsp;</P><LI-CODE lang="markup">def prepare(self): global API_KEY for passwd in self.service.storage_passwords: if passwd.realm == "&lt;you_realm_key&gt;": API_KEY = passwd.clear_password if API_KEY is None or API_KEY == "defaults_empty": self.error_exit(None, "No API key found.")</LI-CODE><P>&nbsp;</P><P>&nbsp;</P><P>Documentation can be found&nbsp;<A href="https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/secretstorage/secretstoragerest/" target="_self">here</A>&nbsp;</P> Tue, 17 Dec 2024 17:35:49 GMT https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707065#M11765 luizlimapg 2024-12-17T17:35:49Z https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707133#M11766 <P><a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/267805">@luizlimapg</a>&nbsp;, thanks for your reply. Is there any confirmation after curl or ways to check if password is added successfully, is there any other way to add a password?</P><P>&nbsp;</P><P>&nbsp;</P><LI-CODE lang="python">Enter host password for user 'user': curl: (35) error:1408F10B:SSL routines:ssl3_get_record:wrong version number</LI-CODE><P>&nbsp;</P><P>&nbsp;</P><P>I found that this is possible using the same curl, but i got an error:</P><P>&nbsp;</P><LI-CODE lang="markup">curl -k -u user https://localhost:8089/servicesNS/nobody/app/storage/passwords/ curl: (35) error:1408F10B:SSL routines:ssl3_get_record:wrong version number</LI-CODE><P>&nbsp;</P><P>&nbsp;</P> Wed, 18 Dec 2024 10:02:11 GMT https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707133#M11766 user487596 2024-12-18T10:02:11Z https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707159#M11767 <P><a href="https://community.splunk.com/t5/user/viewprofilepage/user-id/268899">@user487596</a>,&nbsp;an easier way to manipulate passwords is by using the Splunkbase app: <A href="https://splunkbase.splunk.com/app/4013" target="_self">https://splunkbase.splunk.com/app/4013</A></P> Wed, 18 Dec 2024 14:24:50 GMT https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707159#M11767 luizlimapg 2024-12-18T14:24:50Z https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707199#M11769 <P>Thanks, interesting app.</P><P>If anyone knows how to fix the curl issue or maybe use search for creation secrets, please share.</P><P>By the way, the function you suggest implementing doesn't work for me, I used the code from that function inside generate() and it works, at least I can extract the API key, but for some reason I can't make a request...</P> Wed, 18 Dec 2024 18:10:24 GMT https://community.splunk.com/t5/Splunk-Dev/custom-command-secret/m-p/707199#M11769 user487596 2024-12-18T18:10:24Z