Protect content during app updates
You can protect specified files or directories from being overwritten or deleted during app updates. If you enable this feature, the deployment client copies the deployment server's version of the content the first time that it downloads the app but, on future updates of the app, the deployment client instead maintains the protected content in place, so that it does not get overwritten by the downloaded version of the content (or deleted, if the updated app does not include the content).
This feature can be particularly useful for preventing the contents of the /local
directory on the deployment client from getting wiped out or overwritten on update. Similarly, you can use it to maintain the content of lookup files across app updates.
Without the setting, all locally-generated content will be deleted or overwritten instead of making it into the updated app. Instead, the updated app will contain only the content downloaded from the deployment server.
This feature requires that both the deployment server and its deployment clients run version 6.3 or higher.
To use this feature, configure the excludeFromUpdate
setting in serverclass.conf
on the deployment server. The excludeFromUpdate setting can be used with any app directory or file.
For example, say that you want to prevent app updates from overwriting my-app
's /local
directory and you also want to maintain the contents of a lookup file across updates. Assume the app has the typical directory structure:
my-app/ default/ local/ some-conf.conf ...
To protect the content of the /local
directory from updates and to maintain the content in the cidr.csv
lookup file, place the excludeFromUpdate
setting in the my-app
stanza of serverclass.conf
:
[serverClass:my-class:app:my-app] excludeFromUpdate = $app_root$/local,$app_root$/lookups/cidr.csv
When the deployment client downloads the app for the first time, it copies the /local
directory and its contents, as well as a stub version of the lookup file, if it exists. On subsequent downloads, it uses the locally maintained version of the/local
directory instead of the downloaded version. It also keeps the locally populated version of the lookup file.
Note the following:
- You must use
$app_root$
to specify the app root directory. - You can protect single files or entire directories.
- You can specify
excludeFromUpdate
at any of the three stanza levels: global, server class, or app. If you specify it at the global level, for example, it takes effect for all apps.
Deploy apps to clients | View app deployment status |
This documentation applies to the following versions of Splunk® Enterprise: 9.4.0
Feedback submitted, thanks!