# restmap.conf # ucc-gen [admin:trackme] match = / members = trackme_account, trackme_emails, trackme_settings, trackme_vtenants [admin_external:trackme_account] handlertype = python python.version = python3 handlerfile = trackme_rh_account.py handleractions = edit, list, remove, create handlerpersistentmode = true [admin_external:trackme_vtenants] handlertype = python python.version = python3 handlerfile = trackme_rh_vtenants.py handleractions = edit, list, remove, create handlerpersistentmode = true [admin_external:trackme_emails] handlertype = python python.version = python3 handlerfile = trackme_rh_emails.py handleractions = edit, list, remove, create handlerpersistentmode = true [admin_external:trackme_settings] handlertype = python python.version = python3 handlerfile = trackme_rh_settings.py handleractions = edit, list handlerpersistentmode = true # # TrackMe REST API # # TrackMe configuration Handler # These endpoints are used for various purposes such as accessing application wide configuration parameters from a programmatic manner # least privileges: the trackmeuseroperations capability is required to access these endpoints # there are no update performed by none of these endpoints, therefore no write permissions are required [script:trackme_rest_handler_configuration] match = /trackme/v2/configuration script = trackme_rest_handler_configuration.py scripttype = persist handler = trackme_rest_handler_configuration.TrackMeHandlerConfigurationRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 [script:trackme_rest_handler_configuration_admin] match = /trackme/v2/configuration/admin script = trackme_rest_handler_configuration_admin.py scripttype = persist handler = trackme_rest_handler_configuration_admin.TrackMeHandlerConfigurationAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe Alert handler - for user operations [script:trackme_rest_handler_alerting_user] match = /trackme/v2/alerting script = trackme_rest_handler_alerting_user.py scripttype = persist handler = trackme_rest_handler_alerting_user.TrackMeHandlerAlertingReadOps_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Alert handler - for write operations [script:trackme_rest_handler_alerting_admin] match = /trackme/v2/alerting/admin script = trackme_rest_handler_alerting_admin.py scripttype = persist handler = trackme_rest_handler_alerting_admin.TrackMeHandlerAlertingWriteOps_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe Acknowledgment Handler - for user operations [script:trackme_rest_handler_ack_user] match = /trackme/v2/ack script = trackme_rest_handler_ack_user.py scripttype = persist handler = trackme_rest_handler_ack_user.TrackMeHandlerAckReadOps_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Acknowledgment Handler - for power operations [script:trackme_rest_handler_ack_power] match = /trackme/v2/ack/write script = trackme_rest_handler_ack_power.py scripttype = persist handler = trackme_rest_handler_ack_power.TrackMeHandlerAckWriteOps_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Virtual Tenant Handler - for user operations [script:trackme_rest_handler_vtenants_user] match = /trackme/v2/vtenants script = trackme_rest_handler_vtenants_user.py scripttype = persist handler = trackme_rest_handler_vtenants_user.TrackMeHandlerVtenantsRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Virtual Tenant Handler - for power operations [script:trackme_rest_handler_vtenants_power] match = /trackme/v2/vtenants/write script = trackme_rest_handler_vtenants_power.py scripttype = persist handler = trackme_rest_handler_vtenants_power.TrackMeHandlerVtenantsWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Virtual Tenant Handler - for admin operations [script:trackme_rest_handler_vtenants_admin] match = /trackme/v2/vtenants/admin script = trackme_rest_handler_vtenants_admin.py scripttype = persist handler = trackme_rest_handler_vtenants_admin.TrackMeHandlerVtenantsAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe Data Sources Handler - for user operations [script:trackme_rest_handler_splk_dsm_user] match = /trackme/v2/splk_dsm script = trackme_rest_handler_splk_dsm_user.py scripttype = persist handler = trackme_rest_handler_splk_dsm_user.TrackMeHandlerSplkDsmRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Data Sources Handler - for power operations [script:trackme_rest_handler_splk_dsm_power] match = /trackme/v2/splk_dsm/write script = trackme_rest_handler_splk_dsm_power.py scripttype = persist handler = trackme_rest_handler_splk_dsm_power.TrackMeHandlerSplkDsmWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Data Hosts Handler - for user ooperations [script:trackme_rest_handler_splk_dhm_user] match = /trackme/v2/splk_dhm script = trackme_rest_handler_splk_dhm_user.py scripttype = persist handler = trackme_rest_handler_splk_dhm_user.TrackMeHandlerSplkDhmRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Data Hosts Handler - for power ooperations [script:trackme_rest_handler_splk_dhm_power] match = /trackme/v2/splk_dhm/write script = trackme_rest_handler_splk_dhm_power.py scripttype = persist handler = trackme_rest_handler_splk_dhm_power.TrackMeHandlerSplkDhmWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Metric Hosts Handler - for user operations [script:trackme_rest_handler_splk_mhm_user] match = /trackme/v2/splk_mhm script = trackme_rest_handler_splk_mhm_user.py scripttype = persist handler = trackme_rest_handler_splk_mhm_user.TrackMeHandlerSplkMhmRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Metric Hosts Handler - for power operations [script:trackme_rest_handler_splk_mhm_power] match = /trackme/v2/splk_mhm/write script = trackme_rest_handler_splk_mhm_power.py scripttype = persist handler = trackme_rest_handler_splk_mhm_power.TrackMeHandlerSplkMhmWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Maintenance mode Handler - Retricted for admin operations [script:trackme_rest_handler_maintenance] match = /trackme/v2/maintenance script = trackme_rest_handler_maintenance.py scripttype = persist handler = trackme_rest_handler_maintenance.TrackMeHandlerMaintenance_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe Maintenance Knowldge DataBase Handler - user operations [script:trackme_rest_handler_maintenance_kdb_user] match = /trackme/v2/maintenance_kdb script = trackme_rest_handler_maintenance_kdb_user.py scripttype = persist handler = trackme_rest_handler_maintenance_kdb_user.TrackMeHandlerMaintenanceKdbRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Maintenance Knowldge DataBase Handler - admin operations [script:trackme_rest_handler_maintenance_kdb_admin] match = /trackme/v2/maintenance_kdb/admin script = trackme_rest_handler_maintenance_kdb_admin.py scripttype = persist handler = trackme_rest_handler_maintenance_kdb_admin.TrackMeHandlerMaintenanceKdbAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe Bank Holidays Handler - for user operations (read-only) [script:trackme_rest_handler_bank_holidays_user] match = /trackme/v2/bank_holidays script = trackme_rest_handler_bank_holidays_user.py scripttype = persist handler = trackme_rest_handler_bank_holidays_user.TrackMeHandlerBankHolidaysRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Bank Holidays Handler - for admin operations [script:trackme_rest_handler_bank_holidays_admin] match = /trackme/v2/bank_holidays/admin script = trackme_rest_handler_bank_holidays_admin.py scripttype = persist handler = trackme_rest_handler_bank_holidays_admin.TrackMeHandlerBankHolidaysAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe BlockList Handler - for user operations [script:trackme_rest_handler_splk_blocklist_user] match = /trackme/v2/splk_blocklist script = trackme_rest_handler_splk_blocklist_user.py scripttype = persist handler = trackme_rest_handler_splk_blocklist_user.TrackMeHandlerSplkBlocklistRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe BlockList Handler - for power operations [script:trackme_rest_handler_splk_blocklist_power] match = /trackme/v2/splk_blocklist/write script = trackme_rest_handler_splk_blocklist_power.py scripttype = persist handler = trackme_rest_handler_splk_blocklist_power.TrackMeHandlerSplkBlocklistWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Elastic Sources Handler - for user operations [script:trackme_rest_handler_splk_elastic_sources_user] match = /trackme/v2/splk_elastic_sources script = trackme_rest_handler_splk_elastic_sources_user.py scripttype = persist handler = trackme_rest_handler_splk_elastic_sources_user.TrackMeHandlerSplkElasticSourcesRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Elastic Sources Handler - for admin operations [script:trackme_rest_handler_splk_elastic_sources_admin] match = /trackme/v2/splk_elastic_sources/admin script = trackme_rest_handler_splk_elastic_sources_admin.py scripttype = persist handler = trackme_rest_handler_splk_elastic_sources_admin.TrackMeHandlerSplkElasticSourcesAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe Logical Groups Handler - for user operations [script:trackme_rest_handler_splk_logical_groups_user] match = /trackme/v2/splk_logical_groups script = trackme_rest_handler_splk_logical_groups_user.py scripttype = persist handler = trackme_rest_handler_splk_logical_groups_user.TrackMeHandlerSplkLogicalGroupsRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Logical Groups Handler - for power operations [script:trackme_rest_handler_splk_logical_groups_power] match = /trackme/v2/splk_logical_groups/write script = trackme_rest_handler_splk_logical_groups_power.py scripttype = persist handler = trackme_rest_handler_splk_logical_groups_power.TrackMeHandlerSplkLogicalGroupsWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Data Sampling custom models Handler - for user operations [script:trackme_rest_handler_splk_data_sampling_user] match = /trackme/v2/splk_data_sampling script = trackme_rest_handler_splk_data_sampling_user.py scripttype = persist handler = trackme_rest_handler_splk_data_sampling_user.TrackMeHandlerSplkDataSamplingRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Data Sampling custom models Handler - for power operations [script:trackme_rest_handler_splk_data_sampling_power] match = /trackme/v2/splk_data_sampling/write script = trackme_rest_handler_splk_data_sampling_power.py scripttype = persist handler = trackme_rest_handler_splk_data_sampling_power.TrackMeHandlerSplkDataSamplingWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Tag policies Handler - for user operations [script:trackme_rest_handler_splk_tag_policies_user] match = /trackme/v2/splk_tag_policies script = trackme_rest_handler_splk_tag_policies_user.py scripttype = persist handler = trackme_rest_handler_splk_tag_policies_user.TrackMeHandlerSplkTagPoliciesRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Tag policies Handler - for power operations [script:trackme_rest_handler_splk_tag_policies_power] match = /trackme/v2/splk_tag_policies/write script = trackme_rest_handler_splk_tag_policies_power.py scripttype = persist handler = trackme_rest_handler_splk_tag_policies_power.TrackMeHandlerSplkTagPoliciesWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe priority policies Handler - for user operations [script:trackme_rest_handler_splk_priority_policies_user] match = /trackme/v2/splk_priority_policies script = trackme_rest_handler_splk_priority_policies_user.py scripttype = persist handler = trackme_rest_handler_splk_priority_policies_user.TrackMeHandlerSplkPriorityPoliciesRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe priority policies Handler - for power operations [script:trackme_rest_handler_splk_priority_policies_power] match = /trackme/v2/splk_priority_policies/write script = trackme_rest_handler_splk_priority_policies_power.py scripttype = persist handler = trackme_rest_handler_splk_priority_policies_power.TrackMeHandlerSplkPriorityPoliciesWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe sla policies Handler - for user operations [script:trackme_rest_handler_splk_sla_policies_user] match = /trackme/v2/splk_sla_policies script = trackme_rest_handler_splk_sla_policies_user.py scripttype = persist handler = trackme_rest_handler_splk_sla_policies_user.TrackMeHandlerSplkSlaPoliciesRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe sla policies Handler - for power operations [script:trackme_rest_handler_splk_sla_policies_power] match = /trackme/v2/splk_sla_policies/write script = trackme_rest_handler_splk_sla_policies_power.py scripttype = persist handler = trackme_rest_handler_splk_sla_policies_power.TrackMeHandlerSplkSlaPoliciesWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Lagging classes Handler - for user operations [script:trackme_rest_handler_splk_lagging_classes_user] match = /trackme/v2/splk_lagging_classes script = trackme_rest_handler_splk_lagging_classes_user.py scripttype = persist handler = trackme_rest_handler_splk_lagging_classes_user.TrackMeHandlerSplkLaggingClassesRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Lagging classes Handler - for power operations [script:trackme_rest_handler_splk_lagging_classes_power] match = /trackme/v2/splk_lagging_classes/write script = trackme_rest_handler_splk_lagging_classes_power.py scripttype = persist handler = trackme_rest_handler_splk_lagging_classes_power.TrackMeHandlerSplkLaggingClassesWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Smart Status Handler [script:trackme_rest_handler_splk_smart_status] match = /trackme/v2/splk_smart_status script = trackme_rest_handler_splk_smart_status.py scripttype = persist handler = trackme_rest_handler_splk_smart_status.TrackMeHandlerSplkSmartStatus_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Backup and Restore Handler - retricted to admin operations [script:trackme_rest_handler_backup_and_restore] match = /trackme/v2/backup_and_restore script = trackme_rest_handler_backup_and_restore.py scripttype = persist handler = trackme_rest_handler_backup_and_restore.TrackMeHandlerBackupAndRestore_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe Identity Cards Handler - for user operations [script:trackme_rest_handler_splk_identity_cards_user] match = /trackme/v2/splk_identity_cards script = trackme_rest_handler_splk_identity_cards_user.py scripttype = persist handler = trackme_rest_handler_splk_identity_cards_user.TrackMeHandlerSplkIdentityCardsRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Identity Cards Handler - for power operations [script:trackme_rest_handler_splk_identity_cards_power] match = /trackme/v2/splk_identity_cards/write script = trackme_rest_handler_splk_identity_cards_power.py scripttype = persist handler = trackme_rest_handler_splk_identity_cards_power.TrackMeHandlerSplkIdentityCardsWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe hybrid tracker Handler - for user operations [script:trackme_rest_handler_splk_hybrid_trackers_user] match = /trackme/v2/splk_hybrid_trackers script = trackme_rest_handler_splk_hybrid_trackers_user.py scripttype = persist handler = trackme_rest_handler_splk_hybrid_trackers_user.TrackMeHandlerSplkHybridTrackerRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe hybrid tracker Handler - for admin operations [script:trackme_rest_handler_splk_hybrid_trackers_admin] match = /trackme/v2/splk_hybrid_trackers/admin script = trackme_rest_handler_splk_hybrid_trackers_admin.py scripttype = persist handler = trackme_rest_handler_splk_hybrid_trackers_admin.TrackMeHandlerSplkHybridTrackerAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe replica tracker Handler - for user operations [script:trackme_rest_handler_splk_replica_trackers_user] match = /trackme/v2/splk_replica_trackers script = trackme_rest_handler_splk_replica_trackers_user.py scripttype = persist handler = trackme_rest_handler_splk_replica_trackers_user.TrackMeHandlerSplkReplicaTrackerRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe replica tracker Handler - for admin operations [script:trackme_rest_handler_splk_replica_trackers_admin] match = /trackme/v2/splk_replica_trackers/admin script = trackme_rest_handler_splk_replica_trackers_admin.py scripttype = persist handler = trackme_rest_handler_splk_replica_trackers_admin.TrackMeHandlerSplkReplicaTrackerAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe FLX tracking Handler - for user operations [script:trackme_rest_handler_splk_flx_user] match = /trackme/v2/splk_flx script = trackme_rest_handler_splk_flx_user.py scripttype = persist handler = trackme_rest_handler_splk_flx_user.TrackMeHandlerSplkFlxTrackingRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe FLX tracking Handler - for power operations [script:trackme_rest_handler_splk_flx_power] match = /trackme/v2/splk_flx/write script = trackme_rest_handler_splk_flx_power.py scripttype = persist handler = trackme_rest_handler_splk_flx_power.TrackMeHandlerSplkFlxTrackingWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe FLX tracking Handler - for admin operations [script:trackme_rest_handler_splk_flx_admin] match = /trackme/v2/splk_flx/admin script = trackme_rest_handler_splk_flx_admin.py scripttype = persist handler = trackme_rest_handler_splk_flx_admin.TrackMeHandlerSplkFlxTrackingAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe FQM tracking Handler - for user operations [script:trackme_rest_handler_splk_fqm_user] match = /trackme/v2/splk_fqm script = trackme_rest_handler_splk_fqm_user.py scripttype = persist handler = trackme_rest_handler_splk_fqm_user.TrackMeHandlerSplkFqmTrackingRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe FQM tracking Handler - for power operations [script:trackme_rest_handler_splk_fqm_power] match = /trackme/v2/splk_fqm/write script = trackme_rest_handler_splk_fqm_power.py scripttype = persist handler = trackme_rest_handler_splk_fqm_power.TrackMeHandlerSplkFqmTrackingWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe FQM tracking Handler - for admin operations [script:trackme_rest_handler_splk_fqm_admin] match = /trackme/v2/splk_fqm/admin script = trackme_rest_handler_splk_fqm_admin.py scripttype = persist handler = trackme_rest_handler_splk_fqm_admin.TrackMeHandlerSplkFqmTrackingAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe WLK Handler - for user operations [script:trackme_rest_handler_splk_wlk_user] match = /trackme/v2/splk_wlk script = trackme_rest_handler_splk_wlk_user.py scripttype = persist handler = trackme_rest_handler_splk_wlk_user.TrackMeHandlerSplkWlkRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe WLK Handler - for power operations [script:trackme_rest_handler_splk_wlk_power] match = /trackme/v2/splk_wlk/write script = trackme_rest_handler_splk_wlk_power.py scripttype = persist handler = trackme_rest_handler_splk_wlk_power.TrackMeHandlerSplkWlkWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe WLK Handler - for admin operations [script:trackme_rest_handler_splk_wlk_admin] match = /trackme/v2/splk_wlk/admin script = trackme_rest_handler_splk_wlk_admin.py scripttype = persist handler = trackme_rest_handler_splk_wlk_admin.TrackMeHandlerSplkWlkAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # TrackMe Audit Handler [script:trackme_rest_handler_audit] match = /trackme/v2/audit script = trackme_rest_handler_audit.py scripttype = persist handler = trackme_rest_handler_audit.TrackMeHandlerAudit_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Splk Outliers Engine - for user operations [script:trackme_rest_handler_splk_outliers_engine_user] match = /trackme/v2/splk_outliers_engine script = trackme_rest_handler_splk_outliers_engine_user.py scripttype = persist handler = trackme_rest_handler_splk_outliers_engine_user.TrackMeHandlerSplkOutliersEngineRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Splk Outliers Engine - for power operations [script:trackme_rest_handler_splk_outliers_engine_power] match = /trackme/v2/splk_outliers_engine/write script = trackme_rest_handler_splk_outliers_engine_power.py scripttype = persist handler = trackme_rest_handler_splk_outliers_engine_power.TrackMeHandlerSplkOutliersEngineWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # Licensing management - for user operations [script:trackme_rest_handler_licensing_user] match = /trackme/v2/licensing script = trackme_rest_handler_licensing_user.py scripttype = persist handler = trackme_rest_handler_licensing_user.TrackMeHandlerLicensingRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # Licensing management - for admin operations [script:trackme_rest_handler_licensing_admin] match = /trackme/v2/licensing/admin script = trackme_rest_handler_licensing_admin.py scripttype = persist handler = trackme_rest_handler_licensing_admin.TrackMeHandlerLicensingAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # Splunk SOAR integration - for user operations [script:trackme_rest_handler_splk_soar_user] match = /trackme/v2/splk_soar script = trackme_rest_handler_splk_soar_user.py scripttype = persist handler = trackme_rest_handler_splk_soar_user.TrackMeHandlerSplkSoarRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # Splunk SOAR integration - for admin operations [script:trackme_rest_handler_splk_soar_admin] match = /trackme/v2/splk_soar/admin script = trackme_rest_handler_splk_soar_admin.py scripttype = persist handler = trackme_rest_handler_splk_soar_admin.TrackMeHandlerSplkSoarAdmin_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeadminoperations python.version = python3 # Manage Splunk permanently deleted entities - for user operations [script:trackme_rest_handler_splk_deleted_entities_user] match = /trackme/v2/splk_deleted_entities script = trackme_rest_handler_splk_deleted_entities_user.py scripttype = persist handler = trackme_rest_handler_splk_deleted_entities_user.TrackMeHandlerSplkDeletedEntitiesRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # Manage Splunk permanently deleted entities - for power operations [script:trackme_rest_handler_splk_deleted_entities_power] match = /trackme/v2/splk_deleted_entities/write script = trackme_rest_handler_splk_deleted_entities_power.py scripttype = persist handler = trackme_rest_handler_splk_deleted_entities_power.TrackMeHandlerSplkDeletedEntitiesPower_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Component Handler - for user operations [script:trackme_rest_handler_component_user] match = /trackme/v2/component script = trackme_rest_handler_component_user.py scripttype = persist handler = trackme_rest_handler_component_user.TrackMeHandlerComponentRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Component Handler - for power operations [script:trackme_rest_handler_component_power] match = /trackme/v2/component/write script = trackme_rest_handler_component_power.py scripttype = persist handler = trackme_rest_handler_component_power.TrackMeHandlerComponentPower_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Disruption Handler - for user operations [script:trackme_rest_handler_splk_disruption_user] match = /trackme/v2/splk_disruption script = trackme_rest_handler_splk_disruption_user.py scripttype = persist handler = trackme_rest_handler_splk_disruption_user.TrackMeHandlerSplkDisruptionRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Disruption Handler - for power operations [script:trackme_rest_handler_splk_disruption_power] match = /trackme/v2/splk_disruption/write script = trackme_rest_handler_splk_disruption_power.py scripttype = persist handler = trackme_rest_handler_splk_disruption_power.TrackMeHandlerSplkDisruptionWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3 # TrackMe Notes Handler - for user operations [script:trackme_rest_handler_notes_user] match = /trackme/v2/notes script = trackme_rest_handler_notes_user.py scripttype = persist handler = trackme_rest_handler_notes_user.TrackMeHandlerNotesRead_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmeuseroperations python.version = python3 # TrackMe Notes Handler - for power operations [script:trackme_rest_handler_notes_power] match = /trackme/v2/notes/write script = trackme_rest_handler_notes_power.py scripttype = persist handler = trackme_rest_handler_notes_power.TrackMeHandlerNotesWrite_v2 requireAuthentication = true output_modes = json passPayload = true passHttpHeaders = true passHttpCookies = true passSystemAuth = true capability = trackmepoweroperations python.version = python3