I tried to do this, as did another person I spoke to privately on here, and we have determined it is not possible:  https://community.splunk.com/t5/Dashboards-Visualizations/400-Error-while-rendering-splunk-into-an-iframe/m-p/568621 Essentially the cookies are "3rd party cookies" as they are not from your site. I believe there is actually a setting in your browser you can change to allow these.    This worked for me a while ago. I am not sure if it works currently as I do not have Splunk in an iframe anymore.  When I told my manager this, they immediately dropped the ask and stopped the idea of the iframe.   ... View more

One other thing to note is you may need to change your "MAX_TIMESTAMP_LOOKAHEAD" in the props.conf since the default is 128. Wouldnt explain why it works in default vs local, but something to consider. ... View more

If I understand this correctly, this is for this add-on: https://splunkbase.splunk.com/app/3757   Which sourcetype are you seeing _time issues with? Each sourcetype has a different method of getting _time (some use "createdDateTime", others use CURRENT). ... View more

Extremely late to the party, but I was also having this same issue. Figured I'd answer here in case anyone else was wondering. I was thinking of trying to get the input name and appending it to the checkpoint. This, of course, cannot be found in the documentation of the AOB from what I've seen. Here's what I've ended up doing. If you call "helper.get_input_stanza()", it will give you a dictionary of a single dictionary. The key for that dictionary is your inputs name. So you could just do a "list(helper.get_input_stanza().keys())[0]". That dictionary looks like this: HOWEVER! This does not look the same in the AOB. You should still be able to use that .keys()[0] in the code, but the output will look different.  So I guess be forewarned if you want to try to access name/disabled in your code. Hopefully this helps, and I will be using this in my custom add-ons now as well too. I now use this function: def get_input_name(helper): return list(helper.get_input_stanza().keys())[0] Another thing to note that is if you change your input's name, it will lose that checkpoint value. So there may be duplication there. ... View more

This is through the add-on builder.  When I send the metric through to a normal index, it looks like this: And my code for generating it looks like this: data = { 'metric_name:tests_performed:testing': 4 } event = helper.new_event(source=helper.get_input_type(), index='test-metrics', sourcetype=helper.get_sourcetype(), data=json.dumps(data)) ew.write_event(event)   Where index test-metrics is an index I have set up with the metrics type ... View more

I am also currently having this issue. Has anyone found some sort of work around?  ... View more

Okay, so I now realize it isn't only an issue with splunk. If signing into the iFrame from splunk on chrome, it fails, and it also displays that "No Cookie Support Detected". However, if I do it from firefox, the issue no longer shows up. I believe this is due to how the browsers render these iframes? Is there anyway to resolve this in chrome? ... View more

Hey efav, so my company doesn't want a dashboard being embeded, they want the entire application. By that I mean they want to be able to access search and reporting from the iframe, the settings for a user, etc. So that wouldn't work since it's only for 1 dashboard. I made a topic previously trying to ask if I could change the style of some "_Layout"-esque file, but the consensus seemed to be no. ... View more

Thats a great idea Jhan. I needed it to be site/application wide though. Is there an xml file I can edit to change the layout on every page? Sort of like a _Layout.cshtml in asp.net? ... View more

Hey Ismo, Thanks for the reply. I believe my company is actually currently doing that, so the navbar at the top looks correct. Its just that we want a sidebar on the left. Or is there some js file I can edit that will run on page load, where I can modify the html? I could add it through that if needed (though I'd rather not write the html in the javascript) ... View more