In Bold BI, there is support for a secure dashboard in iframe embedding. This will help to allow the dashboard for particular users who want to view the dashboard at the embedded level.
This part will explain how to restrict the dashboard based on domain and IP address and allow embedding a dashboard for a particular user.
In Bold BI Server, click the context menu of the respective dashboard and choose the
In the Security dialog, you could see the Apply these settings dropdown, select your security restriction.
The security restriction for the dashboard can be applied in the following three ways. To learn more about these, please refer to this link.
Always- This would restrict the users from accessing the specific dashboard in private, public, and embedding ways.
When the dashboard is public and accessed anonymously- This would restrict users from accessing the specific public dashboard anonymously.
When the dashboard is embedded- This would restrict the users from accessing the specific dashboard in an embedding way.
For applying restrictions in embedding, you must select the
When the dashboard is embedded option as follows.
Here, specify the allowed
domains accessed or embedded from known embed application domains.
Here, specify the
device IP addresses of the users allowed to embed the dashboard.
Once you have added the Security settings for the dashboard, get the embed code from the desired dashboard, which you want to embed in your website. Get more details from the link to know how to
Get Embed Code from the dashboard. Then, embed the dashboard in your application.
The dashboard can be embedded only in
Domains specified in the
Accept embedding requests from these websites and the allowed
IP address specified in
Allow dashboard access from these IP addresses.
The embedded dashboard will show an error or blocked warning message if other than specified Domains and IP Addresses are in the security settings.
While accessing from unknown domains:
While accessing from unknown IP Addresses:
Note: The public dashboard will also get blocked for restricted domains and IP addresses in iframe embedding.