This section shows how to do the basics in Splunk® Enterprise. We're assuming you already followed the instructions in the Getting Started section and were able to run the examples. We're also assuming you know your way around Splunk Enterprise and got your feet wet—you've added some data and saved a search or two. If so, you're ready to start using the SDK to develop Splunk Enterprise applications.
If you try the examples that are included with the SDK, you'll notice that many are written from a command-line perspective—that is, they start by parsing the parameters that are provided at the command line and the parameters that are defined in the .splunkrc file (the optional file that stores your login credentials for convenience when running the SDK examples, described in Utilities).
For simplicity, the code examples in this section avoid error handling, command-line processing, and complex logic, staying focused simply on showing you how to use the SDK APIs. If you want more advanced real-world examples, see the Splunk Developer Application Gallery.
Introduces the basic process of connecting to splunkd and logging in.
Shows how to list, create, and run saved searches.
Shows how to create and use modular inputs.
Shows how to list search jobs, create new jobs by running different types of searches, and display the results from searches in different formats.
Shows how to add, view, and modify your indexes.
Shows how to add, view, and modify the users of the Splunk Enterprise system to control access to Splunk.
Shows how to add, view, and modify Splunk Enterprise alert groups.