Export apps from Splunk Cloud Victoria Experience using the Admin Config Service (ACS) API.
- Export single apps or all apps
- Directory selection: local/, default/, users/
- Local-only exports (custom configurations only)
- Environment variable authentication
- Bulk operations with progress tracking
- Automatic Splunkbase app filtering
# Set your JWT token (get from Splunk Cloud Settings > Tokens)
export SPLUNK_ACS_TOKEN="your-jwt-token-here"
# Export all apps (local configs only) - RECOMMENDED
python3 export_splunk_app.py --stack gw --export-all --local-only
# Export a single app
python3 export_splunk_app.py --stack gw --app AAA_search
# List all available apps
python3 export_splunk_app.py --stack gw --list-appspython3 export_splunk_app.py --help--stack STACK- Your Splunk Cloud stack name (required)--token TOKEN- JWT token (or set SPLUNK_ACS_TOKEN env var)--app APP- Single app name to export--output-dir DIR- Output directory (default: current directory)
--export-all- Export all apps--list-apps- List all available apps--include-splunkbase- Include Splunkbase apps in bulk export
--local-only- Export only local/ directory (custom configs)--include-default- Include default/ directory (enabled by default)--include-users- Include users/ directory
Export just the local/ directories from all apps - this contains your custom configurations:
export SPLUNK_ACS_TOKEN="your-token"
python3 export_splunk_app.py --stack gw --export-all --local-only --output-dir ./local_configsBenefits:
-
- Faster downloads (smaller files)
-
- Only your customizations
-
- Perfect for configuration backup
-
- Excludes Splunkbase apps automatically
Export complete apps including default configurations:
export SPLUNK_ACS_TOKEN="your-token"
python3 export_splunk_app.py --stack gw --export-all --output-dir ./full_appsExport a specific app:
export SPLUNK_ACS_TOKEN="your-token"
# Local configs only
python3 export_splunk_app.py --stack gw --app AAA_search --local-only
# Full app
python3 export_splunk_app.py --stack gw --app AAA_searchexport SPLUNK_ACS_TOKEN="your-token"
# 1. List apps to see what's available
python3 export_splunk_app.py --stack gw --list-apps
# 2. Export specific development apps (local configs only)
python3 export_splunk_app.py --stack gw --app my_custom_app --local-only --output-dir ./dev_exports
# 3. Export all for full backup
python3 export_splunk_app.py --stack gw --export-all --local-only --output-dir ./backup_$(date +%Y%m%d)The script downloads .spl files (standard Splunk app packages) that can be unpacked with tar -xzf app.spl
The script handles common issues:
- Invalid tokens - Clear error messages
- Missing apps - Skips and continues
- Network issues - Retry suggestions
- Bulk failures - Summary at end
Some apps may fail export due to:
- Empty local/ directories (when using --local-only)
- Permission restrictions
- App-specific limitations
- Python 3.6+
requestslibrary:pip install requests- Valid Splunk Cloud Victoria Experience deployment
- JWT token with ACS app export permissions