-
Notifications
You must be signed in to change notification settings - Fork 427
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for Splunk authentication tokens to third party REST API #1147
Conversation
Pinging @elastic/security-external-integrations (Team:Security-External Integrations) |
2370e7b
to
0af09b3
Compare
💚 Build Succeeded
Expand to view the summary
Build stats
Test stats 🧪
Trends 🧪 |
packages/apache/manifest.yml
Outdated
@@ -46,20 +46,57 @@ policy_templates: | |||
- name: username | |||
type: text | |||
title: Splunk REST API Username | |||
description: | |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
In my opinion I would go an even simpler route and only specify in the token that it "Cannot be used with username and password".
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks, that's better. If this looks good I'll update all the other third party screens to match.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM 🚢
3ad0fa7
to
ab39923
Compare
- aws - nginx - system - windows - winlog - zeek
ab39923
to
a9e3ae4
Compare
…lastic#1147) * Add support for Splunk authentication tokens to third party REST API - apache - aws - nginx - system - windows - winlog - zeek Relates elastic#1135
…lastic#1147) * Add support for Splunk authentication tokens to third party REST API - apache - aws - nginx - system - windows - winlog - zeek Relates elastic#1135
What does this PR do?
Adds support for Splunk Authentication tokens to third party
REST API source.
Checklist
changelog.yml
file.- [ ] If I'm introducing a new feature, I have modified the Kibana version constraint in my package'smanifest.yml
file to point to the latest Elastic stack release (e.g.^7.13.0
).How to test this PR locally
https://docs.splunk.com/Documentation/Splunk/8.2.0/Security/CreateAuthTokens
https://docs.splunk.com/Documentation/Splunk/8.2.0/RESTUM/RESTusing
Need to make tokens then try configuring tokens and ingesting data
Related issues
Screenshots