Forest Admin API Key
Description
General
- Documentation: https://docs.forestadmin.com/documentation/reference-guide/how-it-works
- Summary: Forest Admin is an admin panel. It provides a webapp UI which directly interacts with the backend services / databases of the user allowing to perform any CRUD action on the tables. It can be installed as a Django app or as standalone service on the backend of the user.
- IPs allowlist: It is possible to provide an allowlist of addresses.
- Scopes: Leaking this secret would allow the attacker to get admin access so it is not possible to reduce scope.
Revoke the secret
Change the value of the secret in the environment variables.
Check for suspicious activity
As of the time of writing this documentation, this feature is not yet supported.
Details for Forest Admin API Key
-
Family: token
-
Category: data_storage
-
Company: Forest Admin
-
High recall: False
-
Validity check available: False
-
Analyzer available: False
-
Minimum number of matches: 1
-
Occurrences found for one million commits: 0.2
-
Prefixed: False
-
PreValidators:
- type: ContentWhitelistPreValidator
patterns:
- forest
Examples
- text: |
forest_auth_secret: BIg4nqf9LBT88cAe0SzakQ
apikey: 'BIg4nqf9LBT88cAe0SzakQ'
- text: |
FOREST_AUTH_SECRET=BtEsrpitMM5NtSUYMEflR7vDKdTmEfLg
apikey: 'BtEsrpitMM5NtSUYMEflR7vDKdTmEfLg'
- text: |
FOREST_AUTH_SECRET=c8363f22783c644071f7bde76df69734b95abf514045fc59
apikey: 'c8363f22783c644071f7bde76df69734b95abf514045fc59'
- text: |
FOREST_AUTH_SECRET=2ab25b921c4bf35bb43b1f5b7aaa04e27a3142ada836fcd2323ea148ad953
apikey: '2ab25b921c4bf35bb43b1f5b7aaa04e27a3142ada836fcd2323ea148ad953'
- text: |
forest_auth_secret: da4c26a602bc9f3aac71abd18237f0c4fe99eb28ef22ef5ccba0efdf0d5a1c1940624657bf234ab55993045a348fc0f7
apikey: 'da4c26a602bc9f3aac71abd18237f0c4fe99eb28ef22ef5ccba0efdf0d5a1c1940624657bf234ab55993045a348fc0f7'
