[GH-ISSUE #518] TacticalRMM console storage for Environmental Variables available to scripts and agents. #326

New issue

Closed

opened 2026-03-02 02:15:28 +03:00 by kerem · 3 comments

kerem commented 2026-03-02 02:15:28 +03:00

Owner

Copy link

Originally created by @wiicode on GitHub (May 18, 2021).
Original GitHub issue: https://github.com/amidaware/tacticalrmm/issues/518

Is your feature request related to a problem? Please describe.
When doing script work I occasionally need system unique variables, or even secrets, passed to a machine. This may be something like a special value unique to the system (local) or something like a generic URL to a resource (global).

Describe the solution you'd like
I would like each config on the webUIX side to have an Environment Variables section, much like AWS does for Elastic Beanstalk, where I could store parameters and even secrets. I would like that storage to obfuscate and hash the variables, and then decrypt them locally for usage when needed. They would respond just like all other environment variables. Actually, it would be great if it had a set of globals, org-level globals, and local (per agent) tiers to really help functionality.

Describe alternatives you've considered
So far I've had to rely on encrypted key files, local system environment variables, or bad practices. It's a pain in either case and often extremely risky.

Additional context

Originally created by @wiicode on GitHub (May 18, 2021). Original GitHub issue: https://github.com/amidaware/tacticalrmm/issues/518 **Is your feature request related to a problem? Please describe.** When doing script work I occasionally need system unique variables, or even secrets, passed to a machine. This may be something like a special value unique to the system (local) or something like a generic URL to a resource (global). **Describe the solution you'd like** I would like each config on the webUIX side to have an Environment Variables section, much like AWS does for Elastic Beanstalk, where I could store parameters and even secrets. I would like that storage to obfuscate and hash the variables, and then decrypt them locally for usage when needed. They would respond just like all other environment variables. Actually, it would be great if it had a set of globals, org-level globals, and local (per agent) tiers to really help functionality. **Describe alternatives you've considered** So far I've had to rely on encrypted key files, local system environment variables, or bad practices. It's a pain in either case and often extremely risky. **Additional context**

kerem closed this issue 2026-03-02 02:15:28 +03:00

kerem commented 2026-03-02 02:15:29 +03:00

Author

Owner

Copy link

@bradhawkins85 commented on GitHub (May 18, 2021):

Global Keystore: https://wh1te909.github.io/tacticalrmm/functions/keystore/
or Custom Fields https://wh1te909.github.io/tacticalrmm/functions/custom_fields/
Might be what you are looking for.
Not sure if it obfuscate and hash the variables but it would probably be a start.

<!-- gh-comment-id:843014441 --> @bradhawkins85 commented on GitHub (May 18, 2021): Global Keystore: https://wh1te909.github.io/tacticalrmm/functions/keystore/ or Custom Fields https://wh1te909.github.io/tacticalrmm/functions/custom_fields/ Might be what you are looking for. Not sure if it obfuscate and hash the variables but it would probably be a start.

kerem commented 2026-03-02 02:15:29 +03:00

Author

Owner

Copy link

@wiicode commented on GitHub (May 18, 2021):

thanks @bradhawkins85 , I may be caught up in the semantics, but custom fields I see as only useful to TacticalRMM whereas environment variables are useful to the instance. Say I had a software that needed to retrieve a license key, it could do it from an env variable independently of the agent/rmm.

<!-- gh-comment-id:843105302 --> @wiicode commented on GitHub (May 18, 2021): thanks @bradhawkins85 , I may be caught up in the semantics, but custom fields I see as only useful to TacticalRMM whereas environment variables are useful to the instance. Say I had a software that needed to retrieve a license key, it could do it from an env variable independently of the agent/rmm.

kerem commented 2026-03-02 02:15:29 +03:00

Author

Owner

Copy link

@sadnub commented on GitHub (May 20, 2021):

You can save data into custom fields and inject that data into scripts as arguments. You can even use collector tasks to save data from agents to a custom field.

So the script args would be like -API_KEY {{global.API_KEY}} and the value in the database will be replaced.

Since we are using args the script itself can be used on any platform.

Let me know if that covers your use case.

<!-- gh-comment-id:844620693 --> @sadnub commented on GitHub (May 20, 2021): You can save data into custom fields and inject that data into scripts as arguments. You can even use collector tasks to save data from agents to a custom field. So the script args would be like -API_KEY {{global.API_KEY}} and the value in the database will be replaced. Since we are using args the script itself can be used on any platform. Let me know if that covers your use case.

kerem referenced this issue 2026-03-14 02:47:31 +03:00

[GH-ISSUE #326] Have patch severity column match patch policy labels #2154

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

develop

master

1.0.0

v1.4.0

v1.3.1

v1.3.0

v1.2.0

v1.1.0

v1.0.0

v0.20.1

v0.20.0

v0.19.4

v0.19.3

v0.19.2

v0.19.1

v0.19.0

v0.18.2

v0.18.1

v0.18.0

v0.17.5

v0.17.4

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.5

v0.16.4

v0.16.3

v0.16.2

v0.16.1

v0.16.0

v0.15.12

v0.15.11

v0.15.10

v0.15.9

v0.15.8

v0.15.7

v0.15.6

v0.15.5

v0.15.4

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.8

v0.14.7

v0.14.6

v0.14.5

v0.14.4

v0.14.3

v0.14.2

v0.14.1

v0.14.0

v0.13.4

v0.13.3

v0.13.2

v0.13.1

v0.13.0

v0.12.4

v0.12.3

v0.12.2

v0.12.1

v0.12.0

v0.11.3

v0.11.2

v0.11.1

v0.11.0

v0.10.5

v0.10.4

v0.10.3

v0.10.2

v0.10.1

v0.10.0

v0.9.2

v0.9.1

v0.9.0

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.2

v0.7.1

v0.7.0

v0.6.15

v0.6.14

v0.6.13

v0.6.12

v0.6.11

v0.6.10

v0.6.9

v0.6.8

v0.6.7

v0.6.6

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.32

v0.4.31

v0.4.30

v0.4.29

v0.4.28

v0.4.27

v0.4.26

v0.4.25

v0.4.24

v0.4.23

v0.4.22

v0.4.21

v0.4.20

v0.4.19

v0.4.18

v0.4.17

v0.4.16

v0.4.15

v0.4.14

v0.4.13

v0.4.12

v0.4.11

v0.4.10

v0.4.9

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.3

v0.3.2

v0.3.1

v0.3.0

v0.2.23

v0.2.22

v0.2.21

v0.2.20

v0.2.19

v0.2.18

v0.2.17

v0.2.16

v0.2.15

v0.2.14

v0.2.13

v0.2.12

v0.2.11

v0.2.10

v0.2.9

v0.2.8

v0.2.7

v0.2.6

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

v0.1.8

v0.1.7

v0.1.6

v0.1.5

v0.1.4

v0.1.3

v0.1.2

v0.1.1

v0.1.0

Labels

Clear labels   

In Process

  

bug

  

bug

  

dev-triage

  

documentation

  

duplicate

  

enhancement

  

fixed

  

good first issue

  

help wanted

  

integration

  

invalid

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

requires agent update

  

security

  

ui tweak

  

wontfix

No labels

In Process

bug

bug

dev-triage

documentation

duplicate

enhancement

fixed

good first issue

help wanted

integration

invalid

pull-request

question

requires agent update

security

ui tweak

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/tacticalrmm#326

No description provided.