All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

APP Exporter: option to merge local configs

klee310
Communicator
‎03-30-2015 11:54 PM

Any chance I can control whether the app/appname/local/ changes are merged with the export?

I am frequently developing with fake/ sample data on my local machine - so thats what I define in my local/macros.conf - but I wouldn't want those configs to overwrite my real-environment on production

If this can't be done quickly/easily on the (by the way, awesome) user-interface - can you at least tell me how to do in quick-and-dirty from your source-code?

Tags (1)
Reply
1 Solution
Solved! Jump to solution
Solution

martin_mueller
SplunkTrust
SplunkTrust
‎03-31-2015 02:26 AM

I'm afraid it's not that simple. Underneath the (thanks!) user interface I'm using Splunk's REST API, namely the apps/.../package endpoint: http://docs.splunk.com/Documentation/Splunk/6.2.2/RESTREF/RESTapps#GET_apps.2Flocal.2F.7Bname.7D.2Fp...
That does the actual packaging of the app, including the merging of .conf files in local... there are no parameters you can pass to the endpoint in the docs, so you can't influence this behaviour.

I see two ways you can avoid this: Either you move your sample data macros to a different app and share them globally (or import that app into the other?), or you keep them in the same app but only share them privately. Both ways would let you use those macros in the app and would avoid them being exported.

View solution in original post

Reply
Solved! Jump to solution
Solution

martin_mueller
SplunkTrust
SplunkTrust
‎03-31-2015 02:26 AM

I'm afraid it's not that simple. Underneath the (thanks!) user interface I'm using Splunk's REST API, namely the apps/.../package endpoint: http://docs.splunk.com/Documentation/Splunk/6.2.2/RESTREF/RESTapps#GET_apps.2Flocal.2F.7Bname.7D.2Fp...
That does the actual packaging of the app, including the merging of .conf files in local... there are no parameters you can pass to the endpoint in the docs, so you can't influence this behaviour.

I see two ways you can avoid this: Either you move your sample data macros to a different app and share them globally (or import that app into the other?), or you keep them in the same app but only share them privately. Both ways would let you use those macros in the app and would avoid them being exported.

Reply
Solved! Jump to solution

martin_mueller
SplunkTrust
SplunkTrust
‎03-31-2015 06:32 AM

Changing the role-based permissions isn't enough, you need to change sharing for that object from app/global to private.

0 Karma
Reply
Solved! Jump to solution

klee310
Communicator
‎03-31-2015 05:50 AM

Thanks martin for the quick reply. I like the second option; keep in the same app and make them private.

Great app by the way. Thank you very much for sharing!

0 Karma
Reply
Solved! Jump to solution

klee310
Communicator
‎03-31-2015 05:58 AM

nope, i'm afraid the second option doesn't work - or maybe I'm testing it incorrectly. Anyways, the way I tested it was by setting the permission on one of the macros to admin [read/write] only (as opposed to the original - everyone, read/write); but then I tried to perform the app-export, and the private macro still gets written out - perhaps this has to do with the account I'm using to perform the export - I guess I could try using another regular account to perform the export, but I'm thinking that will be too much trouble; so maybe I'll simply just have to remember this limitation and manually update the spl file afterwards

0 Karma
Reply
Get Updates on the Splunk Community!

Routing logs with Splunk OTel Collector for Kubernetes

The Splunk Distribution of the OpenTelemetry (OTel) Collector is a product that provides a way to ingest ...

Welcome to the Splunk Community!

(view in My Videos) We're so glad you're here! The Splunk Community is place to connect, learn, give back, and ...

Tech Talk | Elevating Digital Service Excellence: The Synergy of Splunk RUM & APM

Elevating Digital Service Excellence: The Synergy of Real User Monitoring and Application Performance ...