Forest Admin API Key

Description

General

• Documentation: https://docs.forestadmin.com/documentation/reference-guide/how-it-works
• Summary: Forest Admin is an admin panel. It provides a webapp UI which directly interacts with the backend services / databases of the user allowing to perform any CRUD action on the tables. It can be installed as a Django app or as standalone service on the backend of the user.
• IPs allowlist: It is possible to provide an allowlist of addresses.
• Scopes: Leaking this secret would allow the attacker to get admin access so it is not possible to reduce scope.

Revoke the secret

Change the value of the secret in the environment variables.

Check for suspicious activity

As of the time of writing this documentation, this feature is not yet supported.

Details for Forestadmin api key

• Family: Api

• Category: Data storage

• Company: Forest Admin

• High recall: False

• Validity check available: False

• Minimum number of matches: 1

• Occurrences found for one million commits: 0.2

• Prefixed: False

• PreValidators:

- type: ContentWhitelistPreValidator
  patterns:
    - forest

Examples

- text: |
    forest_auth_secret: BIg4nqf9LBT88cAe0SzakQ
  apikey: 'BIg4nqf9LBT88cAe0SzakQ'
- text: |
    FOREST_AUTH_SECRET=BtEsrpitMM5NtSUYMEflR7vDKdTmEfLg
  apikey: 'BtEsrpitMM5NtSUYMEflR7vDKdTmEfLg'
- text: |
    FOREST_AUTH_SECRET=c8363f22783c644071f7bde76df69734b95abf514045fc59
  apikey: 'c8363f22783c644071f7bde76df69734b95abf514045fc59'
- text: |
    FOREST_AUTH_SECRET=2ab25b921c4bf35bb43b1f5b7aaa04e27a3142ada836fcd2323ea148ad953
  apikey: '2ab25b921c4bf35bb43b1f5b7aaa04e27a3142ada836fcd2323ea148ad953'
- text: |
    forest_auth_secret: da4c26a602bc9f3aac71abd18237f0c4fe99eb28ef22ef5ccba0efdf0d5a1c1940624657bf234ab55993045a348fc0f7
  apikey: 'da4c26a602bc9f3aac71abd18237f0c4fe99eb28ef22ef5ccba0efdf0d5a1c1940624657bf234ab55993045a348fc0f7'