Splunk Dev

How to fix "check for expansive permissions " Failure Appinspect

Marco
Communicator

Hello, I ran my app against appinspect and received the following failure: check_for_expansive_permissions 

A posix world-writable file was found. File: appserver/static/images/

 

Given I developed my app in a windows environment, I created a Linux box that was running Splunk and changed then permissions manually. Then Packaged the app using Splunk's Slim Package command.  This got rid of the Failure but didn't allow me to submit my app to Splunkbase because Splunk was "Unable to Extract Package".

can anyone point me in the right direction? 

-Marco C.

Labels (4)

jokertothequinn
Path Finder

Hi,

I was able to resolve the issue.

The issue: You are probably trying to perform vetting in a windows environment. This is causing the file & directories to have improper accesses which do not comply with the App inspect procedures in splunk as they are built around NIX OS.

Solution:

1. Dowload CYGWIN (https://www.cygwin.com/setup-x86_64.exe), and install it in your windows machine, and open CYGWIN.

2. Go into /cygdrive/<your app location> and run the following commands:
find <your app> -type f -exec chmod 644 '{}' \;
find <your app> -type d -exec chmod 700 '{}' \;

(Make sure to check the permissions by running the command: ls -lR)

3. Create the .spl file also by using cygwin terminal: tar -zvcf <your_app_name.spl> <app_name>

4. Now try vetting procedure, I did it using postman, and this time it worked.

0 Karma

VatsalJagani
SplunkTrust
SplunkTrust

@Marco, @jokertothequinn , @manasbellani - What is your file/folder permission looks like? Please check on linux machine with below command.

ls -l

 

I hope this helps!!! Kindly upvote if it does!!!

0 Karma

manasbellani
Explorer

Hi @Marco, I was actually having the exact same issue. I packaged the app as .spl via the splunk package app command. When I uploaded the file to Splunkbase, I got the expansive permission error even though the files locally did not have write access to any user, except Administrator.

Would appreciate if anyone knew what is the fix for this issue?

Thanks.

0 Karma

jokertothequinn
Path Finder

Hi,

 

were you able to resolve it?

0 Karma
Get Updates on the Splunk Community!

Automatic Discovery Part 1: What is Automatic Discovery in Splunk Observability Cloud ...

If you’ve ever deployed a new database cluster, spun up a caching layer, or added a load balancer, you know it ...

Real-Time Fraud Detection: How Splunk Dashboards Protect Financial Institutions

Financial fraud isn't slowing down. If anything, it's getting more sophisticated. Account takeovers, credit ...

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...

 Are you tired of troubleshooting delays caused by siloed frontend, application, and network data? We've got a ...