Solved: Can REST API be used to execute a Bash script on S...

jingqin · ‎04-03-2018

I have a Bash script on my deployment server to add server into the serverclass.conf. Could I execute the bash script from a client using the Splunk REST API?

damien_chillet · ‎04-03-2018

You could execute a bash script using the Splunk REST API.

You would have to develop a custom search command "runscript" which would run the script and use the API to run a search ("| runscript").

Link to Splunk Dev on how to create custom search commands: http://dev.splunk.com/view/python-sdk/SP-CAAAEU2
A good recent app example that use custom search command to run btool: https://splunkbase.splunk.com/app/3923/

View solution in original post

damien_chillet · ‎04-03-2018

You could execute a bash script using the Splunk REST API.

You would have to develop a custom search command "runscript" which would run the script and use the API to run a search ("| runscript").

Link to Splunk Dev on how to create custom search commands: http://dev.splunk.com/view/python-sdk/SP-CAAAEU2
A good recent app example that use custom search command to run btool: https://splunkbase.splunk.com/app/3923/

jingqin · ‎04-03-2018

Emm.....but I would like to execute it from another server instead of search query. How can i achieve it?

damien_chillet · ‎04-03-2018

Well, if you define the command on the deployment server you can simply run something like the following from the client:

curl -d search="| runscript" https://deployment.server:8089/services/search/jobs -u admin:change

jingqin · ‎04-09-2018

is that work for bash script? I only see python script in the document...

Can REST API be used to execute a Bash script on Splunk server?

Introducing the 2024 SplunkTrust!

Introducing the 2024 Splunk MVPs!

Splunk Custom Visualizations App End of Life