Use public access token
eazyBI for Jira
eazyBI for Confluence
Generate URL with public token
If you would like to share a report (or a dashboard) then select Embed report or Embed dashboard from the top right toolbar:
Then select Enable public access with a token [1]. An additional parameter embed_token
is added to the iframe URL [2]. This token is unique for this report (or dashboard) and will be used to authenticate that anonymous users can see report results for this specific report. Note the report data won't be visible to users without this public access token.
If you need to disable sharing of this report then unselect checkbox "Enable public access with token" [1] and save it. Or you can also regenerate the access token to invalidate the previous one [3]. In both cases, no one will see the data in the published report.
Options for reports and dashboards embedded in iframe
You can change the options of how the report or dashboard will be displayed in the iframe [1]:
- with or without header and borders (only for reports)
- disable all or enable only some actions that can or cannot be performed by end users in the embedded report or dashboard (expand/drill into, drill through issues, drill across issues, change page selection)
- enable results export
- enable the automatic refresh option: it could be used, for example, if a report or dashboard is displayed on a large screen in a hallway and should be automatically refreshed to show the latest report results.
Please save the changes before embedding an iframe on another page [2].
Jira security headers
Starting from Jira 7.6 due to security headers you might see an error like this:Refused to frame 'JIRA_BASE_URL' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'self'"
To fix this and view embedded report/dashboard from another domain you have to disable Content-Security-Policy by setting this startup option into <jira-install>/bin/setenv.sh (or setenv.bat on Windows)JVM_SUPPORT_RECOMMENDED_ARGS="-Dcom.atlassian.jira.clickjacking.protection.exclude=/plugins/servlet/eazybi"
Disable possibility to share reports or dashboards with public token
You can completely disable this feature in the whole eazyBI instance by adding these lines to advanced settings.
[general] embed_reports_with_token = false