I am following this blog http://www.georgestarcher.com/splunk-stored-encrypted-credentials/ to delete and create a new encrypted credential (storing api key). But the script fails to delete the existing credential and following error is thrown, HTTP 403 forbidden: cannot delete the key. Please help me in solving this issue ... View more

I am trying to store credentials in encrypted form as suggested in http://www.georgestarcher.com/splunk-stored-encrypted-credentials/ and https://wiki.splunk.com/Community:40GUIDevelopment . I am authenticating through session key to list and store storage-passwords and i am getting session key through cherrypy (cherrypy.session.get('sessionKey')). The only issue i am facing right now is when i try to update an existing credential e.g: api key, I am getting error. The script is failing to delete the existing credential. And if it is not deleted, we cannot create a new credential with the same name (updating credential). Any help would be appreciated ... View more

I am working on an app which stores api key in passwords.conf in encrypted form using setup.xml. But now i want to make the app cloud compatible and i need to remove setup.xml. So, I have implemented setup view page for app configuration where user will provide the api key. Now I have no idea how to store that key as encrypted without setup.xml. I have used this link for setup view implementation which is javascript based https://github.com/splunk/splunk-app-examples/tree/master/setup_pages/developer_guidance_setup_page   Any help/guidance would be appreciated. ... View more

User can configure my app anytime he likes with setup.xml. But to make the app compatible with cloud I have to remove the setup.xml and implement setup view. Setup views force the user to configure app once, when it is installed and after that no configuration is required. So user will be able to configure it once but not afterwards. But i want the same setup.xml functionality along with setup view implementation. Can anyone help, guide or share anything. ... View more

My app is working fine with advanced xml but as per requirements of splunk 8.0 I have to shift to simple xml. This search works fine  <searchTemplate>| script base64 __EXECUTE__ "$input$" "$operation$"</searchTemplate> where base64 refers to a python script path and it takes two arguments as input e.g "abc" "encode".  Output is displayed using <searchPostProcess> table answer | rename answer as Answer</searchPostProcess> If i replace <searchTemplate> and <searchPostProcess> with just <search>, the script is not executed and no results are displayed. Please help me figuring out how to accomplish get the desired output with <search>. ... View more