cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
donaldson8
New Member
Member since: ‎09-13-2013
‎06-05-2020
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎09-13-2013
View All

Access /services/receivers/stream endpoint through...

by in Getting Data In
‎08-29-2019 09:46 AM
‎08-29-2019 09:46 AM
We're running a Splunk indexer behind an Nginx proxy in order to apply HSTS headers. However, we recently noticed that this is silently preventing us from sending data to the /services/receivers/stream endpoint through the Python SDK (.attach and .attached_socket functions). Is there any way to continue using the streaming receivers behind a proxy? ... View more

Re: Python SDK: How to create a user that can only...

by in Splunk Dev
‎05-18-2016 10:33 AM
‎05-18-2016 10:33 AM
We have a similar use case, and are running into the same problem, on 6.4.0. I have a user with a role that grants the below capabilities, but has no allowed indexes for search (only for testing, in real life, it would be able to search a subset of the available indexes): change_own_password edit_tcp output_file schedule_rtsearch search This role inherits from no other roles, and the user has no other roles. When authenticated as this user, I get no search results, and cannot use the collect command to write into any index, as is expected (or, when I have indexes allowed for the associated role, I can only use collect to write into the indexes that I am permitted to search). However, using the Splunk Python SDK (via clientInstance.index[<index_name>].submit() ) or the REST API (via /services/receivers/{simple,streaming} ), while authenticated as this user, I am able to write into any index, regardless of which indexes I am permitted to search. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM