topic Re: How to save sensitive data (JWT token) in add-on which splunk cloud would allow in Splunk Dev https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550018#M9843 <P>It is not static. It needs to be used for each poll. It will need to be updated when it expires. About every 15mins. Is there anyway the endpoint you mentioned can be written?</P> Fri, 30 Apr 2021 14:01:11 GMT cool_cat 2021-04-30T14:01:11Z How to save sensitive data (JWT token) in add-on which splunk cloud would allow https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/549982#M9841 <P>Hi all,&nbsp;</P><P>I am just learning Splunk because the need for applying our addon to be cloud vetted ( therefore I really don't know much splunk development yet, but need to get this done soon) . It is an addon to connect to our server and pulling in logs. Each pull would have to auth first, therefore we save token locally so only need auth once for certain interval ( lifetime of the token). But that won't do for cloud based addon. (Vetting report says "&nbsp;<SPAN>Storing authentication token in checkpoint which is not allowed in Splunk cloud. Please don't store such sensitive information")</SPAN></P><P>Any other way I can save token for addon functionality purpose? . I heard mentioning of&nbsp;storage/passwords endpoint, is that only for user credential or it can be used for saving application token as well?</P><P>&nbsp;</P><P>Thanks in advance! I searched whole day, still not clear the direction.&nbsp;</P> Fri, 30 Apr 2021 10:26:12 GMT https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/549982#M9841 cool_cat 2021-04-30T10:26:12Z Re: How to save sensitive data (JWT token) in add-on which splunk cloud would allow https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550017#M9842 <P>If token is static then you can use storage/passwords endpoint to store token and in your script read token from same endpoint.</P> Fri, 30 Apr 2021 13:58:59 GMT https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550017#M9842 harsmarvania57 2021-04-30T13:58:59Z Re: How to save sensitive data (JWT token) in add-on which splunk cloud would allow https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550018#M9843 <P>It is not static. It needs to be used for each poll. It will need to be updated when it expires. About every 15mins. Is there anyway the endpoint you mentioned can be written?</P> Fri, 30 Apr 2021 14:01:11 GMT https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550018#M9843 cool_cat 2021-04-30T14:01:11Z Re: How to save sensitive data (JWT token) in add-on which splunk cloud would allow https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550020#M9844 <P>Yes you can update the token on storage/passwords endpoint but you need to code that in your script.</P> Fri, 30 Apr 2021 14:02:26 GMT https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550020#M9844 harsmarvania57 2021-04-30T14:02:26Z Re: How to save sensitive data (JWT token) in add-on which splunk cloud would allow https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550021#M9845 <P>That is good to know! Is there any chance you can point me some sample code on how to achieve that? I am really just start to learn splunk development.&nbsp;</P> Fri, 30 Apr 2021 14:05:40 GMT https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550021#M9845 cool_cat 2021-04-30T14:05:40Z Re: How to save sensitive data (JWT token) in add-on which splunk cloud would allow https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550024#M9846 <P>Have a look at code in <A href="https://github.com/splunk/TA-VaultSync/tree/master/bin" target="_blank">https://github.com/splunk/TA-VaultSync/tree/master/bin</A> , you'll get idea.</P> Fri, 30 Apr 2021 14:07:38 GMT https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550024#M9846 harsmarvania57 2021-04-30T14:07:38Z Re: How to save sensitive data (JWT token) in add-on which splunk cloud would allow https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550025#M9847 <P>Thank you so much!</P> Fri, 30 Apr 2021 14:08:50 GMT https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550025#M9847 cool_cat 2021-04-30T14:08:50Z Re: How to save sensitive data (JWT token) in add-on which splunk cloud would allow https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550026#M9848 <P>You're welcome!</P> Fri, 30 Apr 2021 14:09:56 GMT https://community.splunk.com/t5/Splunk-Dev/How-to-save-sensitive-data-JWT-token-in-add-on-which-splunk/m-p/550026#M9848 harsmarvania57 2021-04-30T14:09:56Z