admingit
/
Splunk_Deploiement
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1cb542666a'
${ noResults }
Splunk_Deploiement/apps/trackme/default/restmap.conf

1063 lines
41 KiB
Raw Blame History

# restmap.conf
# ucc-gen
[admin:trackme]
match = /
members = trackme_account, trackme_emails, trackme_settings, trackme_vtenants
[admin_external:trackme_account]
handlertype = python
python.version = python3
handlerfile = trackme_rh_account.py
handleractions = edit, list, remove, create
handlerpersistentmode = true
[admin_external:trackme_vtenants]
handlertype = python
python.version = python3
handlerfile = trackme_rh_vtenants.py
handleractions = edit, list, remove, create
handlerpersistentmode = true
[admin_external:trackme_emails]
handlertype = python
python.version = python3
handlerfile = trackme_rh_emails.py
handleractions = edit, list, remove, create
handlerpersistentmode = true
[admin_external:trackme_settings]
handlertype = python
python.version = python3
handlerfile = trackme_rh_settings.py
handleractions = edit, list
handlerpersistentmode = true
#
# TrackMe REST API
#
# TrackMe configuration Handler
# These endpoints are used for various purposes such as accessing application wide configuration parameters from a programmatic manner
# least privileges: the trackmeuseroperations capability is required to access these endpoints
# there are no update performed by none of these endpoints, therefore no write permissions are required
[script:trackme_rest_handler_configuration]
match = /trackme/v2/configuration
script = trackme_rest_handler_configuration.py
scripttype = persist
handler = trackme_rest_handler_configuration.TrackMeHandlerConfigurationRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
[script:trackme_rest_handler_configuration_admin]
match = /trackme/v2/configuration/admin
script = trackme_rest_handler_configuration_admin.py
scripttype = persist
handler = trackme_rest_handler_configuration_admin.TrackMeHandlerConfigurationAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe Alert handler - for user operations
[script:trackme_rest_handler_alerting_user]
match = /trackme/v2/alerting
script = trackme_rest_handler_alerting_user.py
scripttype = persist
handler = trackme_rest_handler_alerting_user.TrackMeHandlerAlertingReadOps_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Alert handler - for write operations
[script:trackme_rest_handler_alerting_admin]
match = /trackme/v2/alerting/admin
script = trackme_rest_handler_alerting_admin.py
scripttype = persist
handler = trackme_rest_handler_alerting_admin.TrackMeHandlerAlertingWriteOps_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe Acknowledgment Handler - for user operations
[script:trackme_rest_handler_ack_user]
match = /trackme/v2/ack
script = trackme_rest_handler_ack_user.py
scripttype = persist
handler = trackme_rest_handler_ack_user.TrackMeHandlerAckReadOps_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Acknowledgment Handler - for power operations
[script:trackme_rest_handler_ack_power]
match = /trackme/v2/ack/write
script = trackme_rest_handler_ack_power.py
scripttype = persist
handler = trackme_rest_handler_ack_power.TrackMeHandlerAckWriteOps_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Virtual Tenant Handler - for user operations
[script:trackme_rest_handler_vtenants_user]
match = /trackme/v2/vtenants
script = trackme_rest_handler_vtenants_user.py
scripttype = persist
handler = trackme_rest_handler_vtenants_user.TrackMeHandlerVtenantsRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Virtual Tenant Handler - for power operations
[script:trackme_rest_handler_vtenants_power]
match = /trackme/v2/vtenants/write
script = trackme_rest_handler_vtenants_power.py
scripttype = persist
handler = trackme_rest_handler_vtenants_power.TrackMeHandlerVtenantsWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Virtual Tenant Handler - for admin operations
[script:trackme_rest_handler_vtenants_admin]
match = /trackme/v2/vtenants/admin
script = trackme_rest_handler_vtenants_admin.py
scripttype = persist
handler = trackme_rest_handler_vtenants_admin.TrackMeHandlerVtenantsAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe Data Sources Handler - for user operations
[script:trackme_rest_handler_splk_dsm_user]
match = /trackme/v2/splk_dsm
script = trackme_rest_handler_splk_dsm_user.py
scripttype = persist
handler = trackme_rest_handler_splk_dsm_user.TrackMeHandlerSplkDsmRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Data Sources Handler - for power operations
[script:trackme_rest_handler_splk_dsm_power]
match = /trackme/v2/splk_dsm/write
script = trackme_rest_handler_splk_dsm_power.py
scripttype = persist
handler = trackme_rest_handler_splk_dsm_power.TrackMeHandlerSplkDsmWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Data Hosts Handler - for user ooperations
[script:trackme_rest_handler_splk_dhm_user]
match = /trackme/v2/splk_dhm
script = trackme_rest_handler_splk_dhm_user.py
scripttype = persist
handler = trackme_rest_handler_splk_dhm_user.TrackMeHandlerSplkDhmRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Data Hosts Handler - for power ooperations
[script:trackme_rest_handler_splk_dhm_power]
match = /trackme/v2/splk_dhm/write
script = trackme_rest_handler_splk_dhm_power.py
scripttype = persist
handler = trackme_rest_handler_splk_dhm_power.TrackMeHandlerSplkDhmWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Metric Hosts Handler - for user operations
[script:trackme_rest_handler_splk_mhm_user]
match = /trackme/v2/splk_mhm
script = trackme_rest_handler_splk_mhm_user.py
scripttype = persist
handler = trackme_rest_handler_splk_mhm_user.TrackMeHandlerSplkMhmRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Metric Hosts Handler - for power operations
[script:trackme_rest_handler_splk_mhm_power]
match = /trackme/v2/splk_mhm/write
script = trackme_rest_handler_splk_mhm_power.py
scripttype = persist
handler = trackme_rest_handler_splk_mhm_power.TrackMeHandlerSplkMhmWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Maintenance mode Handler - Retricted for admin operations
[script:trackme_rest_handler_maintenance]
match = /trackme/v2/maintenance
script = trackme_rest_handler_maintenance.py
scripttype = persist
handler = trackme_rest_handler_maintenance.TrackMeHandlerMaintenance_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe Maintenance Knowldge DataBase Handler - user operations
[script:trackme_rest_handler_maintenance_kdb_user]
match = /trackme/v2/maintenance_kdb
script = trackme_rest_handler_maintenance_kdb_user.py
scripttype = persist
handler = trackme_rest_handler_maintenance_kdb_user.TrackMeHandlerMaintenanceKdbRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Maintenance Knowldge DataBase Handler - admin operations
[script:trackme_rest_handler_maintenance_kdb_admin]
match = /trackme/v2/maintenance_kdb/admin
script = trackme_rest_handler_maintenance_kdb_admin.py
scripttype = persist
handler = trackme_rest_handler_maintenance_kdb_admin.TrackMeHandlerMaintenanceKdbAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe Bank Holidays Handler - for user operations (read-only)
[script:trackme_rest_handler_bank_holidays_user]
match = /trackme/v2/bank_holidays
script = trackme_rest_handler_bank_holidays_user.py
scripttype = persist
handler = trackme_rest_handler_bank_holidays_user.TrackMeHandlerBankHolidaysRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Bank Holidays Handler - for admin operations
[script:trackme_rest_handler_bank_holidays_admin]
match = /trackme/v2/bank_holidays/admin
script = trackme_rest_handler_bank_holidays_admin.py
scripttype = persist
handler = trackme_rest_handler_bank_holidays_admin.TrackMeHandlerBankHolidaysAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe BlockList Handler - for user operations
[script:trackme_rest_handler_splk_blocklist_user]
match = /trackme/v2/splk_blocklist
script = trackme_rest_handler_splk_blocklist_user.py
scripttype = persist
handler = trackme_rest_handler_splk_blocklist_user.TrackMeHandlerSplkBlocklistRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe BlockList Handler - for power operations
[script:trackme_rest_handler_splk_blocklist_power]
match = /trackme/v2/splk_blocklist/write
script = trackme_rest_handler_splk_blocklist_power.py
scripttype = persist
handler = trackme_rest_handler_splk_blocklist_power.TrackMeHandlerSplkBlocklistWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Elastic Sources Handler - for user operations
[script:trackme_rest_handler_splk_elastic_sources_user]
match = /trackme/v2/splk_elastic_sources
script = trackme_rest_handler_splk_elastic_sources_user.py
scripttype = persist
handler = trackme_rest_handler_splk_elastic_sources_user.TrackMeHandlerSplkElasticSourcesRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Elastic Sources Handler - for admin operations
[script:trackme_rest_handler_splk_elastic_sources_admin]
match = /trackme/v2/splk_elastic_sources/admin
script = trackme_rest_handler_splk_elastic_sources_admin.py
scripttype = persist
handler = trackme_rest_handler_splk_elastic_sources_admin.TrackMeHandlerSplkElasticSourcesAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe Logical Groups Handler - for user operations
[script:trackme_rest_handler_splk_logical_groups_user]
match = /trackme/v2/splk_logical_groups
script = trackme_rest_handler_splk_logical_groups_user.py
scripttype = persist
handler = trackme_rest_handler_splk_logical_groups_user.TrackMeHandlerSplkLogicalGroupsRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Logical Groups Handler - for power operations
[script:trackme_rest_handler_splk_logical_groups_power]
match = /trackme/v2/splk_logical_groups/write
script = trackme_rest_handler_splk_logical_groups_power.py
scripttype = persist
handler = trackme_rest_handler_splk_logical_groups_power.TrackMeHandlerSplkLogicalGroupsWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Data Sampling custom models Handler - for user operations
[script:trackme_rest_handler_splk_data_sampling_user]
match = /trackme/v2/splk_data_sampling
script = trackme_rest_handler_splk_data_sampling_user.py
scripttype = persist
handler = trackme_rest_handler_splk_data_sampling_user.TrackMeHandlerSplkDataSamplingRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Data Sampling custom models Handler - for power operations
[script:trackme_rest_handler_splk_data_sampling_power]
match = /trackme/v2/splk_data_sampling/write
script = trackme_rest_handler_splk_data_sampling_power.py
scripttype = persist
handler = trackme_rest_handler_splk_data_sampling_power.TrackMeHandlerSplkDataSamplingWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Tag policies Handler - for user operations
[script:trackme_rest_handler_splk_tag_policies_user]
match = /trackme/v2/splk_tag_policies
script = trackme_rest_handler_splk_tag_policies_user.py
scripttype = persist
handler = trackme_rest_handler_splk_tag_policies_user.TrackMeHandlerSplkTagPoliciesRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Tag policies Handler - for power operations
[script:trackme_rest_handler_splk_tag_policies_power]
match = /trackme/v2/splk_tag_policies/write
script = trackme_rest_handler_splk_tag_policies_power.py
scripttype = persist
handler = trackme_rest_handler_splk_tag_policies_power.TrackMeHandlerSplkTagPoliciesWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe priority policies Handler - for user operations
[script:trackme_rest_handler_splk_priority_policies_user]
match = /trackme/v2/splk_priority_policies
script = trackme_rest_handler_splk_priority_policies_user.py
scripttype = persist
handler = trackme_rest_handler_splk_priority_policies_user.TrackMeHandlerSplkPriorityPoliciesRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe priority policies Handler - for power operations
[script:trackme_rest_handler_splk_priority_policies_power]
match = /trackme/v2/splk_priority_policies/write
script = trackme_rest_handler_splk_priority_policies_power.py
scripttype = persist
handler = trackme_rest_handler_splk_priority_policies_power.TrackMeHandlerSplkPriorityPoliciesWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe sla policies Handler - for user operations
[script:trackme_rest_handler_splk_sla_policies_user]
match = /trackme/v2/splk_sla_policies
script = trackme_rest_handler_splk_sla_policies_user.py
scripttype = persist
handler = trackme_rest_handler_splk_sla_policies_user.TrackMeHandlerSplkSlaPoliciesRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe sla policies Handler - for power operations
[script:trackme_rest_handler_splk_sla_policies_power]
match = /trackme/v2/splk_sla_policies/write
script = trackme_rest_handler_splk_sla_policies_power.py
scripttype = persist
handler = trackme_rest_handler_splk_sla_policies_power.TrackMeHandlerSplkSlaPoliciesWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Lagging classes Handler - for user operations
[script:trackme_rest_handler_splk_lagging_classes_user]
match = /trackme/v2/splk_lagging_classes
script = trackme_rest_handler_splk_lagging_classes_user.py
scripttype = persist
handler = trackme_rest_handler_splk_lagging_classes_user.TrackMeHandlerSplkLaggingClassesRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Lagging classes Handler - for power operations
[script:trackme_rest_handler_splk_lagging_classes_power]
match = /trackme/v2/splk_lagging_classes/write
script = trackme_rest_handler_splk_lagging_classes_power.py
scripttype = persist
handler = trackme_rest_handler_splk_lagging_classes_power.TrackMeHandlerSplkLaggingClassesWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Smart Status Handler
[script:trackme_rest_handler_splk_smart_status]
match = /trackme/v2/splk_smart_status
script = trackme_rest_handler_splk_smart_status.py
scripttype = persist
handler = trackme_rest_handler_splk_smart_status.TrackMeHandlerSplkSmartStatus_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Backup and Restore Handler - retricted to admin operations
[script:trackme_rest_handler_backup_and_restore]
match = /trackme/v2/backup_and_restore
script = trackme_rest_handler_backup_and_restore.py
scripttype = persist
handler = trackme_rest_handler_backup_and_restore.TrackMeHandlerBackupAndRestore_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe Identity Cards Handler - for user operations
[script:trackme_rest_handler_splk_identity_cards_user]
match = /trackme/v2/splk_identity_cards
script = trackme_rest_handler_splk_identity_cards_user.py
scripttype = persist
handler = trackme_rest_handler_splk_identity_cards_user.TrackMeHandlerSplkIdentityCardsRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Identity Cards Handler - for power operations
[script:trackme_rest_handler_splk_identity_cards_power]
match = /trackme/v2/splk_identity_cards/write
script = trackme_rest_handler_splk_identity_cards_power.py
scripttype = persist
handler = trackme_rest_handler_splk_identity_cards_power.TrackMeHandlerSplkIdentityCardsWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe hybrid tracker Handler - for user operations
[script:trackme_rest_handler_splk_hybrid_trackers_user]
match = /trackme/v2/splk_hybrid_trackers
script = trackme_rest_handler_splk_hybrid_trackers_user.py
scripttype = persist
handler = trackme_rest_handler_splk_hybrid_trackers_user.TrackMeHandlerSplkHybridTrackerRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe hybrid tracker Handler - for admin operations
[script:trackme_rest_handler_splk_hybrid_trackers_admin]
match = /trackme/v2/splk_hybrid_trackers/admin
script = trackme_rest_handler_splk_hybrid_trackers_admin.py
scripttype = persist
handler = trackme_rest_handler_splk_hybrid_trackers_admin.TrackMeHandlerSplkHybridTrackerAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe replica tracker Handler - for user operations
[script:trackme_rest_handler_splk_replica_trackers_user]
match = /trackme/v2/splk_replica_trackers
script = trackme_rest_handler_splk_replica_trackers_user.py
scripttype = persist
handler = trackme_rest_handler_splk_replica_trackers_user.TrackMeHandlerSplkReplicaTrackerRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe replica tracker Handler - for admin operations
[script:trackme_rest_handler_splk_replica_trackers_admin]
match = /trackme/v2/splk_replica_trackers/admin
script = trackme_rest_handler_splk_replica_trackers_admin.py
scripttype = persist
handler = trackme_rest_handler_splk_replica_trackers_admin.TrackMeHandlerSplkReplicaTrackerAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe FLX tracking Handler - for user operations
[script:trackme_rest_handler_splk_flx_user]
match = /trackme/v2/splk_flx
script = trackme_rest_handler_splk_flx_user.py
scripttype = persist
handler = trackme_rest_handler_splk_flx_user.TrackMeHandlerSplkFlxTrackingRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe FLX tracking Handler - for power operations
[script:trackme_rest_handler_splk_flx_power]
match = /trackme/v2/splk_flx/write
script = trackme_rest_handler_splk_flx_power.py
scripttype = persist
handler = trackme_rest_handler_splk_flx_power.TrackMeHandlerSplkFlxTrackingWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe FLX tracking Handler - for admin operations
[script:trackme_rest_handler_splk_flx_admin]
match = /trackme/v2/splk_flx/admin
script = trackme_rest_handler_splk_flx_admin.py
scripttype = persist
handler = trackme_rest_handler_splk_flx_admin.TrackMeHandlerSplkFlxTrackingAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe FQM tracking Handler - for user operations
[script:trackme_rest_handler_splk_fqm_user]
match = /trackme/v2/splk_fqm
script = trackme_rest_handler_splk_fqm_user.py
scripttype = persist
handler = trackme_rest_handler_splk_fqm_user.TrackMeHandlerSplkFqmTrackingRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe FQM tracking Handler - for power operations
[script:trackme_rest_handler_splk_fqm_power]
match = /trackme/v2/splk_fqm/write
script = trackme_rest_handler_splk_fqm_power.py
scripttype = persist
handler = trackme_rest_handler_splk_fqm_power.TrackMeHandlerSplkFqmTrackingWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe FQM tracking Handler - for admin operations
[script:trackme_rest_handler_splk_fqm_admin]
match = /trackme/v2/splk_fqm/admin
script = trackme_rest_handler_splk_fqm_admin.py
scripttype = persist
handler = trackme_rest_handler_splk_fqm_admin.TrackMeHandlerSplkFqmTrackingAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe WLK Handler - for user operations
[script:trackme_rest_handler_splk_wlk_user]
match = /trackme/v2/splk_wlk
script = trackme_rest_handler_splk_wlk_user.py
scripttype = persist
handler = trackme_rest_handler_splk_wlk_user.TrackMeHandlerSplkWlkRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe WLK Handler - for power operations
[script:trackme_rest_handler_splk_wlk_power]
match = /trackme/v2/splk_wlk/write
script = trackme_rest_handler_splk_wlk_power.py
scripttype = persist
handler = trackme_rest_handler_splk_wlk_power.TrackMeHandlerSplkWlkWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe WLK Handler - for admin operations
[script:trackme_rest_handler_splk_wlk_admin]
match = /trackme/v2/splk_wlk/admin
script = trackme_rest_handler_splk_wlk_admin.py
scripttype = persist
handler = trackme_rest_handler_splk_wlk_admin.TrackMeHandlerSplkWlkAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# TrackMe Audit Handler
[script:trackme_rest_handler_audit]
match = /trackme/v2/audit
script = trackme_rest_handler_audit.py
scripttype = persist
handler = trackme_rest_handler_audit.TrackMeHandlerAudit_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Splk Outliers Engine - for user operations
[script:trackme_rest_handler_splk_outliers_engine_user]
match = /trackme/v2/splk_outliers_engine
script = trackme_rest_handler_splk_outliers_engine_user.py
scripttype = persist
handler = trackme_rest_handler_splk_outliers_engine_user.TrackMeHandlerSplkOutliersEngineRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Splk Outliers Engine - for power operations
[script:trackme_rest_handler_splk_outliers_engine_power]
match = /trackme/v2/splk_outliers_engine/write
script = trackme_rest_handler_splk_outliers_engine_power.py
scripttype = persist
handler = trackme_rest_handler_splk_outliers_engine_power.TrackMeHandlerSplkOutliersEngineWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# Licensing management - for user operations
[script:trackme_rest_handler_licensing_user]
match = /trackme/v2/licensing
script = trackme_rest_handler_licensing_user.py
scripttype = persist
handler = trackme_rest_handler_licensing_user.TrackMeHandlerLicensingRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# Licensing management - for admin operations
[script:trackme_rest_handler_licensing_admin]
match = /trackme/v2/licensing/admin
script = trackme_rest_handler_licensing_admin.py
scripttype = persist
handler = trackme_rest_handler_licensing_admin.TrackMeHandlerLicensingAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# Splunk SOAR integration - for user operations
[script:trackme_rest_handler_splk_soar_user]
match = /trackme/v2/splk_soar
script = trackme_rest_handler_splk_soar_user.py
scripttype = persist
handler = trackme_rest_handler_splk_soar_user.TrackMeHandlerSplkSoarRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# Splunk SOAR integration - for admin operations
[script:trackme_rest_handler_splk_soar_admin]
match = /trackme/v2/splk_soar/admin
script = trackme_rest_handler_splk_soar_admin.py
scripttype = persist
handler = trackme_rest_handler_splk_soar_admin.TrackMeHandlerSplkSoarAdmin_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeadminoperations
python.version = python3
# Manage Splunk permanently deleted entities - for user operations
[script:trackme_rest_handler_splk_deleted_entities_user]
match = /trackme/v2/splk_deleted_entities
script = trackme_rest_handler_splk_deleted_entities_user.py
scripttype = persist
handler = trackme_rest_handler_splk_deleted_entities_user.TrackMeHandlerSplkDeletedEntitiesRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# Manage Splunk permanently deleted entities - for power operations
[script:trackme_rest_handler_splk_deleted_entities_power]
match = /trackme/v2/splk_deleted_entities/write
script = trackme_rest_handler_splk_deleted_entities_power.py
scripttype = persist
handler = trackme_rest_handler_splk_deleted_entities_power.TrackMeHandlerSplkDeletedEntitiesPower_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Component Handler - for user operations
[script:trackme_rest_handler_component_user]
match = /trackme/v2/component
script = trackme_rest_handler_component_user.py
scripttype = persist
handler = trackme_rest_handler_component_user.TrackMeHandlerComponentRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Component Handler - for power operations
[script:trackme_rest_handler_component_power]
match = /trackme/v2/component/write
script = trackme_rest_handler_component_power.py
scripttype = persist
handler = trackme_rest_handler_component_power.TrackMeHandlerComponentPower_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Disruption Handler - for user operations
[script:trackme_rest_handler_splk_disruption_user]
match = /trackme/v2/splk_disruption
script = trackme_rest_handler_splk_disruption_user.py
scripttype = persist
handler = trackme_rest_handler_splk_disruption_user.TrackMeHandlerSplkDisruptionRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Disruption Handler - for power operations
[script:trackme_rest_handler_splk_disruption_power]
match = /trackme/v2/splk_disruption/write
script = trackme_rest_handler_splk_disruption_power.py
scripttype = persist
handler = trackme_rest_handler_splk_disruption_power.TrackMeHandlerSplkDisruptionWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
# TrackMe Notes Handler - for user operations
[script:trackme_rest_handler_notes_user]
match = /trackme/v2/notes
script = trackme_rest_handler_notes_user.py
scripttype = persist
handler = trackme_rest_handler_notes_user.TrackMeHandlerNotesRead_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmeuseroperations
python.version = python3
# TrackMe Notes Handler - for power operations
[script:trackme_rest_handler_notes_power]
match = /trackme/v2/notes/write
script = trackme_rest_handler_notes_power.py
scripttype = persist
handler = trackme_rest_handler_notes_power.TrackMeHandlerNotesWrite_v2
requireAuthentication = true
output_modes = json
passPayload = true
passHttpHeaders = true
passHttpCookies = true
passSystemAuth = true
capability = trackmepoweroperations
python.version = python3
Reference in new issue View Git Blame Copy Permalink