Splunk Dev

How to pass Splunk Cloud verification for my Python script using the HTTP requests module?

guarisma
Contributor

My script works great On-Premise, but Splunk Cloud rejects it

I use the requests module to do HTTPS requests like this one

response = requests.post(url, auth=(user, pwd), headers=headers ,data=data)

In Splunk Cloud it gets rejected because it thinks it might be insecure, when passing parameters to the requests module, I must do parameter=

Possible insecure HTTP Connection. Match: requests.post Positional arguments, ["?"]; Keyword arguments, {"auth": "?", "headers": "?", "data": "?"} File: bin/alert_event.py Line Number: 46

I don't know how to fix this.

Anyone knows how to pass this test?

Labels (1)
0 Karma

lpuentes
New Member

Hello,

were you able to solve the problem? The same is happening to me.

Thanks. 

0 Karma

livehybrid
Super Champion

Before calling requests.post, add something like:

if not url.startswith("https"):
    logger.critical("URL must be HTTPS")
    exit(1)

This way when they vet your app they can see that a non-https url couldnt be used.  

0 Karma
Get Updates on the Splunk Community!

Updated Data Type Articles, Anniversary Celebrations, and More on Splunk Lantern

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

A Prelude to .conf25: Your Guide to Splunk University

Heading to Boston this September for .conf25? Get a jumpstart by arriving a few days early for Splunk ...

4 Ways the Splunk Community Helps You Prepare for .conf25

.conf25 is right around the corner, and whether you’re a first-time attendee or a seasoned Splunker, the ...