I'm trying to make dashboards publics by iframe.
I've been reading a lot of questions but or it hasn't worked for me or the documentation is outdated.
Can anyone provide me some help on this?
Adding information, I've trying to make a dashboard from service now app public to be able to share it with all my team, but no exit from now.
I have the insecure login set in web.conf already. Am I missing something else to do?
Any help will be appreciated.
@marina_rovira, Do you need to make the dashboard from Service Now App Global but within Splunk Instance (as in accessible by All Splunk Apps), or do you want it completely outside (as in your own custom built web page outside of Splunk)?
Splunk gives you ability to embed scheduled reports to external dashboard out of the box. For embedding Splunk dashboards outside of Splunk you would need some configuration change (however, the same will open up Click Jacking Attack). Please refer to the following answer for both approach:
@marina_rovira, I have converted my comment to answer. If this addresses your needs please accept the same to mark this as answered 🙂
Hello, I'm checking it still. I think I'm missing something and not sure what.
when you talk about web.conf, is system/local/web.conf or it has to be in the app?
also, I understand I have to add the insecure login to True and the xframeoptions_sameorigin = False
So right know, in private browsing I'm seeing the dashboard. But I'm missing the part to make it work in an iframe. I'll keep reading your other post and trying to make it work.
I have set it False in the default and local web.conf.
I also have in the local, the insecure login as True.
It works, thank you.
I have some other quesitons.
Is still needed to have it configure in the default web.conf?
I'm having problems if I call it from and https as it give an error about mixed content. Is there any chance I can do something from splunk to avoid this? As I guess the http is from the insecure login, I'm not sure about it
Do you know where I can find more info about permissions I can set for people not being able to search or do anything else rather than watch and check the charts (apart from what you've already said for the dashboard tag)?
Thank you very much.
@marina_rovira, sorry for the delay in my response. Unless the issue is already resolved please find the answers you were looking for:
1) Surprisingly, it did not work for me from
2) I would expect this because this way of embedding dashboard is a security flaw.
3) Dashboard permissions can be restricted in several ways (easiest being from roles within Splunk). Refer to one of my older answers for details: https://answers.splunk.com/answers/588779/whats-the-best-way-to-limit-a-role-so-it-only-has.html
Please try out and confirm!