Dashboards & Visualizations
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Embed an external webpage with login to splunk dashboard

meenu_2017
Engager
‎04-11-2020 08:20 PM

I'm checking to see if i can embed an external web page which requires a login to the splunk dashboard.
I'm able to add the web page to a panel using iframe, but it is not letting me log in. Any idea what might be happening?
I otherwise have access to the external website.

Labels (1)
Labels
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

DavidHourani
Super Champion
‎04-11-2020 11:16 PM

Hi @meenu_2017,

On the iframe subject, which browser are you using ? Have you tried running the same page on a different browser ?

Could be a security feature on the client side blocking your access. It could also be from the server side .. harder to bypass if you're not managing the website.

iframe could be a risk for clickjacking and here are the security methods commonly used :
Client-side methods – the most common is called Frame Busting. Client-side methods can be effective in some cases, but are considered not to be a best practice, because they can be easily bypassed.
Server-side methods – the most common is X-Frame-Options. Server-side methods are recommended by security experts as an effective way to defend against clickjacking.

If embedding a website on your webpage can be bypassed then it's probably better to simply add a link to your website somewhere on the page .

Cheers,
David

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

DavidHourani
Super Champion
‎04-11-2020 11:16 PM

Hi @meenu_2017,

On the iframe subject, which browser are you using ? Have you tried running the same page on a different browser ?

Could be a security feature on the client side blocking your access. It could also be from the server side .. harder to bypass if you're not managing the website.

iframe could be a risk for clickjacking and here are the security methods commonly used :
Client-side methods – the most common is called Frame Busting. Client-side methods can be effective in some cases, but are considered not to be a best practice, because they can be easily bypassed.
Server-side methods – the most common is X-Frame-Options. Server-side methods are recommended by security experts as an effective way to defend against clickjacking.

If embedding a website on your webpage can be bypassed then it's probably better to simply add a link to your website somewhere on the page .

Cheers,
David

0 Karma
Reply
Solved! Jump to solution

meenu_2017
Engager
‎04-14-2020 10:24 AM

To answer your question,David I did try on a different browser and didnot work there either. So i think its a security feature for the website.
But thanks for the details.

[Updated the comment for clarity]

0 Karma
Reply
Solved! Jump to solution

DavidHourani
Super Champion
‎04-14-2020 11:09 AM

Great to hear !

0 Karma
Reply
Get Updates on the Splunk Community!

Detecting Remote Code Executions With the Splunk Threat Research Team

REGISTER NOWRemote code execution (RCE) vulnerabilities pose a significant risk to organizations. If ...

Observability | Use Synthetic Monitoring for Website Metadata Verification

If you are on Splunk Observability Cloud, you may already have Synthetic Monitoringin your observability ...

More Ways To Control Your Costs With Archived Metrics | Register for Tech Talk

Tuesday, May 14, 2024  |  11AM PT / 2PM ET Register to Attend Join us for this Tech Talk and learn how to ...