https://community.splunk.com/t5/Splunk-Search/How-can-I-make-those-authentication-credentials-editable-through/m-p/642277#M222487 <P>Hello,</P><P>&nbsp; I'm afraid, I have a similar problem. I developed an <STRONG>external lookup</STRONG> in Python which makes an API call using a password authentication.</P><P>When I submitted my app to Splunkbase, the result was:</P><P>&nbsp;</P><LI-CODE lang="markup"> check_for_secret_disclosure Password is being stored in plain text. Client's secret must be stored in encrypted format. You can use this reference for manage secret storage https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/secretstorage/ File: appserver/static/javascript/views/app.js Line: 95</LI-CODE><P>&nbsp;</P><P>There is no problem to write the password in passwords.conf. I followed the example in <A href="https://github.com/splunk/splunk-app-examples/tree/master/setup_pages/weather_app_example" target="_blank" rel="noopener">Weather App Example</A></P><P>The problem starts when I need to <STRONG>read </STRONG>the password from the Python external lookup script! Splunk <A href="https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/secretstorage/secretstoragepython" target="_blank" rel="noopener">general documentation</A> suggests to use a <A href="https://haydz.github.io/2021/01/02/Python-Connect-Splunk.html" target="_blank" rel="noopener">client.connect</A></P><P><EM>Client.connect</EM> need a Splunk user authentication, so another secret. I can find a method to read the secret as the <EM><SPAN class=""><SPAN class="">splunklib</SPAN></SPAN>.<SPAN class=""><SPAN class="">searchcommands</SPAN></SPAN></EM> allows.</P><P>I have Splunk Enterprise, so I could leave the API password clear, but I would like to use the <EM>secretstorage</EM> as suggested.</P><P>How can I fix this problem?</P><P>&nbsp;</P><P>Thank you very much</P><P>Kind Regards</P><P>Marco</P> Thu, 04 May 2023 11:04:42 GMT sistemistiposta 2023-05-04T11:04:42Z https://community.splunk.com/t5/Splunk-Search/How-can-I-make-those-authentication-credentials-editable-through/m-p/526973#M148735 <P>I have a Python script in an External Lookup app which makes REST GET calls to a third party endpoint which requires basic authentication (username/password).</P> <P>How can I make those authentication credentials editable through a graphical interface/dashboard in Splunk?</P> <P>This answer states that there is no way to pass authentication into External Lookup scripts:&nbsp;<A href="https://community.splunk.com/t5/Splunk-Search/Pros-and-Cons-External-lookup-script-vs-custom-search-command/m-p/15922" target="_blank" rel="noopener">https://community.splunk.com/t5/Splunk-Search/Pros-and-Cons-External-lookup-script-vs-custom-search-command/m-p/15922</A></P> <P>I am aware of the possibility to create a setup page (<A href="https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/setuppage/" target="_blank" rel="noopener">https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/setuppage/</A>) for my app so credentials can be written into a custom conf file in the "&lt;app_name&gt;/local" folder and then parsed by the Python script but the credentials would be readable due to being&nbsp; written in plaintext. Is there a way to obfuscate the credentials but then easily use them through Python?</P> Thu, 04 May 2023 13:50:04 GMT https://community.splunk.com/t5/Splunk-Search/How-can-I-make-those-authentication-credentials-editable-through/m-p/526973#M148735 JerryLives 2023-05-04T13:50:04Z https://community.splunk.com/t5/Splunk-Search/How-can-I-make-those-authentication-credentials-editable-through/m-p/642277#M222487 <P>Hello,</P><P>&nbsp; I'm afraid, I have a similar problem. I developed an <STRONG>external lookup</STRONG> in Python which makes an API call using a password authentication.</P><P>When I submitted my app to Splunkbase, the result was:</P><P>&nbsp;</P><LI-CODE lang="markup"> check_for_secret_disclosure Password is being stored in plain text. Client's secret must be stored in encrypted format. You can use this reference for manage secret storage https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/secretstorage/ File: appserver/static/javascript/views/app.js Line: 95</LI-CODE><P>&nbsp;</P><P>There is no problem to write the password in passwords.conf. I followed the example in <A href="https://github.com/splunk/splunk-app-examples/tree/master/setup_pages/weather_app_example" target="_blank" rel="noopener">Weather App Example</A></P><P>The problem starts when I need to <STRONG>read </STRONG>the password from the Python external lookup script! Splunk <A href="https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/secretstorage/secretstoragepython" target="_blank" rel="noopener">general documentation</A> suggests to use a <A href="https://haydz.github.io/2021/01/02/Python-Connect-Splunk.html" target="_blank" rel="noopener">client.connect</A></P><P><EM>Client.connect</EM> need a Splunk user authentication, so another secret. I can find a method to read the secret as the <EM><SPAN class=""><SPAN class="">splunklib</SPAN></SPAN>.<SPAN class=""><SPAN class="">searchcommands</SPAN></SPAN></EM> allows.</P><P>I have Splunk Enterprise, so I could leave the API password clear, but I would like to use the <EM>secretstorage</EM> as suggested.</P><P>How can I fix this problem?</P><P>&nbsp;</P><P>Thank you very much</P><P>Kind Regards</P><P>Marco</P> Thu, 04 May 2023 11:04:42 GMT https://community.splunk.com/t5/Splunk-Search/How-can-I-make-those-authentication-credentials-editable-through/m-p/642277#M222487 sistemistiposta 2023-05-04T11:04:42Z