Using URL path parameters in Splunk REST endpoints

If you wonder how to pass an URL path parameter to your custom REST endpoint in Splunk, please have a look:

December 21, 2021 · 1 min · admin

Enforce arrays for multi-values in Splunk searches

The Splunk SDK for Python is returning for multi-values that only have one entry a string instead of an array. To enforce arrays, you can do the following workaround:

December 20, 2021 · 1 min · admin