Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Regarding Storage Passwords Issue For Non-Admin Users

nisu
Explorer
‎07-03-2020 02:03 AM

Hi Team, 

We are using Add-on builder in our Add-on and used Additional Settings tab for configuring username and password.

While configuring app, it is storing username and passwords in passwords.conf using storage/passwords endpoint.

Our customer is having group of Admins and group of Non-admin(normal user) who is using the app. 

Problem Statement: Custom commands are not working for Non-Admin users.

Root Cause: In Custom commands, we are doing a get call on storage/passwords and reading the password and we are using that password in API call. Non-Admin users are not able to read the passwords from storage/passwords.

 

Below is the code snippet we are using to read the password:

entities = entity.getEntities(
["admin", "passwords"],
namespace=APP_NAME,
owner="nobody",
sessionKey=session_key,
search=APP_NAME,
count=-1,
)
 
Can someone help here?
0 Karma
Reply
Get Updates on the Splunk Community!

🔐 Trust at Every Hop: How mTLS in Splunk Enterprise 10.0 Makes Security Simpler

From Idea to Implementation: Why Splunk Built mTLS into Splunk Enterprise 10.0  mTLS wasn’t just a checkbox ...

Observe and Secure All Apps with Splunk

  Join Us for Our Next Tech Talk: Observe and Secure All Apps with SplunkAs organizations continue to innovate ...

Splunk Decoded: Business Transactions vs Business IQ

It’s the morning of Black Friday, and your e-commerce site is handling 10x normal traffic. Orders are flowing, ...