21

I have a json like this

{
  "AgentGroupId": null,
  "AgentId": null,
  "CreateType": "Website",
  "IsPrimary": true,
  "IsShared": true,
  "HeaderAuthentication": {
    "Headers": [
      {
        "Name": "api-key",
        "Value": "TEST_API_KEY_VALUE-2",
        "OriginalName": null,
        "IsReplacedCredentials": false
      },
      {
        "Name": "Authorization",
        "Value": "",
        "OriginalName": null,
        "IsReplacedCredentials": false
      }
    ],
    "IsEnabled": true
  },
  "IsTimeWindowEnabled": false,
  "AdditionalWebsites": [],
  "BasicAuthenticationApiModel": {
    "Credentials": null,
    "IsEnabled": false,
    "NoChallenge": false
  },
  "ClientCertificateAuthenticationSetting": null,
  "Cookies": null,
  "CrawlAndAttack": true,
  "EnableHeuristicChecksInCustomUrlRewrite": true,
  "ExcludedLinks": [
    {
      "RegexPattern": "gtm\\.js"
    },
    {
      "RegexPattern": "WebResource\\.axd"
    },
    {
      "RegexPattern": "ScriptResource\\.axd"
    }
  ],
  "ExcludedUsageTrackers": [],
  "DisallowedHttpMethods": [],
  "ExcludeLinks": true,
  "ExcludeAuthenticationPages": false,
  "FindAndFollowNewLinks": true,
  "FormAuthenticationSettingModel": {
    "Integrations": {},
    "CustomScripts": [],
    "InteractiveLoginRequired": false,
    "DefaultPersonaValidation": null,
    "DetectBearerToken": true,
    "DisableLogoutDetection": false,
    "IsEnabled": false,
    "LoginFormUrl": null,
    "LoginRequiredUrl": null,
    "LogoutKeywordPatterns": null,
    "LogoutKeywordPatternsValue": null,
    "LogoutRedirectPattern": null,
    "OverrideTargetUrl": false,
    "Personas": [],
    "PersonasValidation": null
  }
}

My goal is to replace the value of api-key under HeaderAuthentication (it could be index 0 or 1 or 2 or any)

I did this

jq '.HeaderAuthentication.Headers[] | select(.Name == "api-key") | .Value = "xxx"' scanprofile.json > tmp && mv tmp scanprofile.json

The issue is seems jq is returning only the part that replaced, but I need the whole file, what I am doing wrong?

this is the content of file after running the command

{
  "Name": "api-key",
  "Value": "xxx",
  "OriginalName": null,
  "IsReplacedCredentials": false
}

ps. I saw some stackoverflow post using sponge, I can't use sponge in our environment

Improve this question

2 Answers 2

Reset to default
20

The jq expression

.HeaderAuthentication.Headers[] | select(.Name == "api-key")

picks out the Headers array element that has api-key as its Name value.

The expression

(.HeaderAuthentication.Headers[] | select(.Name == "api-key")).Value |= "NEW VALUE"

updates the value of the Value key in that array element to the literal string NEW VALUE.

Using a shell variable that holds the new value, from the command line:

new_api_key='My new key'
jq --arg newkey "$new_api_key" '(.HeaderAuthentication.Headers[] | select(.Name == "api-key")).Value |= $newkey' file.json

If the key needs to be base64 encoded, update with the value ($newkey|@base64) in place of just $newkey in the jq expression.

To make the change in-place, use something like

tmpfile=$(mktemp)
cp file.json "$tmpfile" &&
jq --arg ...as above... "$tmpfile" >file.json &&
rm -f -- "$tmpfile"

or, if you don't need to keep the original file's permissions and ownership etc.,

tmpfile=$(mktemp)
jq --arg ...as above... file.json >"$tmpfile" &&
mv -- "$tmpfile" file.json
Improve this answer
3

The following should work:

tmp=$(mktemp /tmp/tmp.XXXXXXX)
jq  '(.HeaderAuthentication.Headers[] | select(.Name == "api-key") | .Value) = "xxx"' scanprofile.json  > "$tmp" && mv "$tmp"  scanprofile.json

Another way to do it is to e.g use this:

cat <<< $(jq '(.HeaderAuthentication.Headers[] | select(.Name == "api-key") | .Value) = "xxx"' scanprofile.json ) > scanprofile.json

Here we are using cat to send modified output directly to the file.

You need to group them in parens.

Improve this answer
4
  • 1
    See Useless use of cat? Commented Sep 25, 2023 at 7:15
  • 1
    @DavidC.Rankin: jq doesn't support editing files in place, and bash/sh disallows opening a file for reading and writing to it at the same time (it will truncate the file first), so the usage of cat in this context would be appropriate, otherwise you'd have to move files around and create multiple files, like his first example. Commented Jan 3 at 19:34
  • @LiamStanley absolutely. Your pattern is cmd original.file > tmp && mv -f tmp original.file I'm not sure how my comment above implied anything different? Commented Jan 4 at 5:11
  • @DavidC.Rankin I was implying that it's not a useless use of cat, and doesn't fall under the criteria of the linked post. Your follow-up solution does effectively the same thing, but is not more efficient, or necessarily better (and is already a part of the answer as one potential solution). Additionally, the mentioned solution using "mv" has side-effects -- permissions may not be the same to the new file, and it may change the fd for existing processes which already have the file open. Commented Aug 27 at 0:59

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.