Create or update HTTP Event Collector input configuration tokens.
resource "splunk_inputs_http_event_collector" "hec-token-01" {
name = "hec-token-01"
index = "main"
indexes = ["main", "history", "summary"]
source = "new:source"
sourcetype = "new:sourcetype"
disabled = false
use_ack = 0
acl {
owner = "user01"
sharing = "global"
read = ["admin"]
write = ["admin"]
}
}
terraform import splunk_inputs_http_event_collector.token01 <hec-token-name>
For latest resource argument reference: https://docs.splunk.com/Documentation/Splunk/latest/RESTREF/RESTinput#data.2Finputs.2Fhttp
This resource block supports the following arguments:
name
- (Required) Token name (inputs.conf key)token
- (Optional) Token value for sending data to collector/event endpointindex
- (Optional) Index to store generated eventsindexes
- (Optional) Set of indexes allowed for events with this tokenhost
- (Optional) Default host value for events with this tokensource
- (Optional) Default source for events with this tokensourcetype
- (Optional) Default source type for events with this tokendisabled
- (Optional) Input disabled indicatoruse_ack
- (Optional) Indexer acknowledgement for this tokenacl
- (Optional) The app/user context that is the namespace for the resourceIn addition to all arguments above, This resource block exports the following arguments:
id
- The ID of the http event collector resource