diff --git a/docs.json b/docs.json index d5aa33a..b1a156f 100644 --- a/docs.json +++ b/docs.json @@ -190,8 +190,21 @@ "group": "Embedding", "pages": [ "guides/how-to-embed-content", - "references/embedding", - "references/react-sdk" + { + "group": "Embedding guides", + "pages": [ + "guides/embedding/dashboards", + "guides/embedding/charts" + ] + }, + { + "group": "Reference", + "pages": [ + "references/embedding", + "references/iframe-embedding", + "references/react-sdk" + ] + } ] }, { diff --git a/guides/embedding/charts.mdx b/guides/embedding/charts.mdx new file mode 100644 index 0000000..2c48784 --- /dev/null +++ b/guides/embedding/charts.mdx @@ -0,0 +1,344 @@ +--- +title: "How to Embed Charts" +sidebarTitle: "Charts" +description: "Learn how to embed individual Lightdash charts with minimal UI for focused, single-metric displays" +--- + +import EmbedAvailability from 'snippets/embedding-availability.mdx' + + + +## Overview + +Chart embedding allows you to display single saved charts from Lightdash in your application with a minimal, focused interface. Unlike dashboard embedding, chart embeds are scoped to a specific chart and provide a clean, distraction-free view of a single visualization. + + +Chart embedding is **only available via the React SDK**. iframe embedding for charts is not currently supported. + + +### When to use chart embedding + +- **Single KPI displays**: Show one key metric or visualization +- **Embedded widgets**: Add analytics widgets to application pages +- **Marketing pages**: Display metrics on public-facing pages +- **Minimal UI requirements**: When you need a clean, focused display +- **Scoped access**: Grant access to specific charts only, not entire dashboards + +### Key differences from dashboard embedding + +| Feature | Dashboard Embedding | Chart Embedding | +|---------|-------------------|-----------------| +| **Embedding method** | iframe or React SDK | React SDK only | +| **Content** | Multiple tiles, tabs | Single chart only | +| **Filters** | Interactive dashboard filters | No filters (pre-configured) | +| **JWT scope** | Dashboard UUID | Scoped to chart UUID | +| **UI** | Full dashboard interface | Minimal chart view | +| **Explore** | Can navigate to explore | Cannot access explore | + +### Available features + +Chart embedding supports: +- All chart types (bar, line, pie, table, big number, etc.) +- Parameterized charts with pre-set values +- Export to CSV (if enabled) +- Export to PNG/images (if enabled) +- View underlying data (if enabled) + + +Chart embeds are **read-only**. Users cannot modify the chart configuration, apply filters, or access the underlying data model. + + +## Setup + +### Configure allowed charts + +Add the charts you want to embed to your project's embed settings. Navigate to **Settings → Embed** and add specific charts to the allowed list. + + + Add allowed charts + + +## Embedding with React SDK + +Chart embedding requires the Lightdash React SDK for seamless integration in your React application. + + +See the [React SDK reference](/references/react-sdk) for installation, setup, and complete configuration options. + + +### Basic usage + +```tsx +import Lightdash from '@lightdash/sdk'; + +function MyChart() { + return ( + + ); +} +``` + +### Component props + +```typescript +type ChartProps = { + instanceUrl: string; // Required: Your Lightdash instance URL + id: string; // Required: Chart UUID (savedQueryUuid) + token: string | Promise; // Required: JWT token + styles?: { + backgroundColor?: string; // Chart background color or 'transparent' + fontFamily?: string; // Font family for text + }; + contentOverrides?: LanguageMap; // Translation/localization overrides +}; +``` + + +Unlike the Dashboard component, Chart does not support `filters` or `onExplore` props since charts are read-only and cannot navigate to explore. + + +#### Advanced example with styling + +```tsx +import Lightdash from '@lightdash/sdk'; + + +``` + +## Configuring features + +Control what users can do with your embedded chart by configuring feature options. These options work for both iframe and React SDK embedding methods and are set in the JWT token. + +### Export CSV + +Export CSV allows users to download the raw data behind the chart as a CSV file, useful for further analysis in spreadsheet applications. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'chart', + contentId: 'your-chart-uuid', + canExportCsv: true, + } +} +``` + +When enabled, users see a "Download CSV" option in the chart's menu. + +### Export images + +Export images allows users to download the chart visualization as a PNG image file, useful for presentations and reports. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'chart', + contentId: 'your-chart-uuid', + canExportImages: true, + } +} +``` + +### View underlying data + +View underlying data shows users the raw data table behind the chart, making it easy to inspect the actual values and records that create the visualization. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'chart', + contentId: 'your-chart-uuid', + canViewUnderlyingData: true, + } +} +``` + +### Complete configuration example + +```javascript +import jwt from 'jsonwebtoken'; + +const token = jwt.sign({ + content: { + type: 'chart', + projectUuid: 'your-project-uuid', + contentId: 'your-chart-uuid', + + // Export capabilities + canExportCsv: true, + canExportImages: true, + canViewUnderlyingData: true, + }, + + // User information (for analytics) + user: { + externalId: 'user-123', + email: 'user@example.com', + }, +}, LIGHTDASH_EMBED_SECRET, { expiresIn: '24h' }); +``` + +## Limitations + +Chart embeds have the following limitations compared to dashboard embeds: + +### Cannot modify charts +Charts are always read-only. Users cannot: +- Change dimensions or metrics +- Apply filters +- Modify chart configuration +- Change visualization type + +### No filter support +Charts use their saved filter configuration. You cannot: +- Add interactive filters +- Apply filters programmatically via SDK +- Change filter values at runtime + +### No explore access +Users cannot: +- Navigate to the explore view +- Access the underlying data model +- Run custom queries +- View or edit SQL + +### Scoped permissions +The JWT token is scoped to the specific chart UUID in `contentId`. Users cannot: +- Access other charts not in the token +- View project configuration +- Access explore metadata + + +If you need filter interactivity or exploration capabilities, consider using [dashboard embedding](/guides/embedding/dashboards) instead or contact us with your use-case. + + +## Use cases and examples + +### Single KPI widget + +Display a key performance indicator in your application dashboard: + +```tsx +
+

Monthly Revenue

+ +
+``` + +### Embedded metric in marketing page + +Show a public-facing metric on your website: + +```html +
+
+

Active Users

+ +
+
+``` + +### Parameterized chart + +Display a chart with pre-set parameter values: + +```javascript +// Chart is saved with a parameter for "region" +// Pass parameter value in the chart configuration +const token = jwt.sign({ + content: { + type: 'chart', + contentId: 'sales-by-region-uuid', + canExportCsv: true, + }, +}, LIGHTDASH_EMBED_SECRET, { expiresIn: '1h' }); +``` + + +Parameter values are set when the chart is saved. Chart embeds display the chart with its saved parameter configuration. + + +## Advanced features + +### User metadata for analytics + +Pass user information to track who's viewing your embedded charts. + +```javascript +{ + user: { + externalId: 'user-123', // Your internal user ID + email: 'user@example.com', // User's email + } +} +``` + +This metadata appears in [query tags](/references/usage-analytics#query-tags) in Lightdash usage analytics. + +### Custom styling (SDK only) + +Apply custom styling to match your application's design. + +```tsx + +``` + +### Localization (SDK only) + +Translate embedded charts using the `contentOverrides` prop. See [React SDK localization](/references/react-sdk#localization) for details. + +## Next steps + + + + Embed multiple charts with filters and interactivity + + + + Complete iframe URL patterns and HTML embedding + + + + Complete JWT token structure documentation + + + + Complete SDK component documentation + + diff --git a/guides/embedding/dashboards.mdx b/guides/embedding/dashboards.mdx new file mode 100644 index 0000000..c069180 --- /dev/null +++ b/guides/embedding/dashboards.mdx @@ -0,0 +1,458 @@ +--- +title: "How to Embed Dashboards" +sidebarTitle: "Dashboards" +description: "Complete guide to embedding Lightdash dashboards with full configuration options for both iframe and React SDK methods" +--- + +import EmbedAvailability from '/snippets/embedding-availability.mdx'; + + + +## Overview + +Dashboard embedding allows you to display full Lightdash dashboards in your application with multiple visualizations, filters, and interactive features. This is ideal when you want to provide comprehensive analytics views to your users. + +### When to use dashboard embedding + +- **Executive dashboards**: Display multiple KPIs and metrics in admin panels +- **Customer-facing analytics**: Provide analytics portals for SaaS customers +- **Embedded reporting**: Integrate comprehensive data views into your workflows +- **Multi-chart views**: Show related visualizations together with shared filters + +### Key features + +- Multiple chart tiles and markdown content +- Dashboard-level filters (interactive if enabled) +- Multiple tabs for organizing content +- Parameters support +- Export options (CSV, images, PDF) +- Date zoom for time-series charts +- "Explore from here" to navigate to query builder +- View underlying data for any visualization + +## Setup + +### Configure allowed dashboards + +Only dashboards explicitly added to the "allowed dashboards" list can be embedded. Navigate to **Settings → Embed** and add your dashboard. + + + Add allowed dashboards + + +Alternatively, toggle "Allow all dashboards" to enable embedding for any dashboard in your project. + +## Configuring interactivity + +Control what users can do with your embedded dashboard by configuring interactivity options. These options work for both iframe and React SDK embedding methods and are set in the JWT token. + +While the SDK options are configured via React props, iframe options are configured in the admin UI where you setup the embedding: + + + Configure iframe interactivity + + +### Dashboard filters + +Dashboard filters allow users to slice and filter data across all charts in the dashboard. You can control whether users can interact with these filters, which filters they can modify, and whether the filter UI is visible. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + dashboardFiltersInteractivity: { + enabled: 'all', // 'all', 'some', or 'none' + }, + } +} +``` + +**Options:** +- `'all'` - All dashboard filters are interactive and visible +- `'some'` - Only specified filters are interactive (use `allowedFilters` array) +- `'none'` - Filters are applied but not visible or editable + +**Allow specific filters only:** + +```javascript +{ + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + dashboardFiltersInteractivity: { + enabled: 'some', + allowedFilters: ['filter-uuid-1', 'filter-uuid-2'], + }, + } +} +``` + +**Hide filter UI:** + +```javascript +{ + dashboardFiltersInteractivity: { + enabled: 'all', + hidden: true, // Filters work but UI is hidden + } +} +``` + +### Parameters + +Parameters are dynamic values that can be referenced in your queries and filters. When enabled, users can modify parameter values to change what data is displayed across the dashboard. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + parameterInteractivity: { + enabled: true, + }, + } +} +``` + +### Export options + +Allow users to export data and visualizations from the embedded dashboard. You can control which export formats are available. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + canExportCsv: true, // Export chart data as CSV + canExportImages: true, // Export charts as PNG/images + canExportPagePdf: true, // Export entire dashboard page as PDF + } +} +``` + +**Available export options:** +- **CSV** - Download raw data from individual charts +- **Images** - Export charts as PNG images +- **PDF** - Export the entire dashboard page as a PDF document + +### Date zoom + +Date zoom allows users to dynamically change the time granularity of time-series visualizations (e.g., view by day, week, month, quarter, year) without modifying the underlying query. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + canDateZoom: true, + } +} +``` + +### Explore from here + +"Explore from here" allows users to navigate from a dashboard chart into the full query builder interface, where they can modify dimensions, metrics, filters, and create ad-hoc analyses starting from the chart's configuration. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + canExplore: true, + } +} +``` + +When enabled, users see an "Explore from here" option on chart tiles that opens the explore interface. + +### View underlying data + +View underlying data shows users the raw data table behind any visualization, making it easy to inspect the actual values and records that create the chart. + +**Configure in JWT token:** + +```javascript +{ + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + canViewUnderlyingData: true, + } +} +``` + +### Complete configuration example + +```javascript +import jwt from 'jsonwebtoken'; + +const token = jwt.sign({ + content: { + type: 'dashboard', + projectUuid: 'your-project-uuid', + dashboardUuid: 'your-dashboard-uuid', + + // Filter controls + dashboardFiltersInteractivity: { + enabled: 'all', + }, + + // Parameter controls + parameterInteractivity: { + enabled: true, + }, + + // Export capabilities + canExportCsv: true, + canExportImages: true, + canExportPagePdf: true, + + // Interactive features + canDateZoom: true, + canExplore: true, + canViewUnderlyingData: true, + }, + + // User information (for analytics) + user: { + externalId: 'user-123', + email: 'user@example.com', + }, + + // User attributes (for row-level filtering) + userAttributes: { + tenant_id: 'tenant-abc', + }, +}, LIGHTDASH_EMBED_SECRET, { expiresIn: '1h' }); +``` + +## iframe embedding + +iframe embedding is the simplest way to embed dashboards. No special libraries or dependencies required. + +### URL structure + +``` +https://your-instance.lightdash.cloud/embed/{projectUuid}/dashboard/{dashboardUuid}#{jwtToken} +``` + +Or using dashboard slug: + +``` +https://your-instance.lightdash.cloud/embed/{projectUuid}/dashboard/{dashboardSlug}#{jwtToken} +``` + +The JWT token is passed in the URL hash fragment for security. + +### Generate JWT token + + + +```javascript Node.js +import jwt from 'jsonwebtoken'; + +const LIGHTDASH_EMBED_SECRET = process.env.LIGHTDASH_EMBED_SECRET; +const projectUuid = 'your-project-uuid'; + +const token = jwt.sign({ + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + }, +}, LIGHTDASH_EMBED_SECRET, { expiresIn: '1h' }); + +const embedUrl = `https://app.lightdash.cloud/embed/${projectUuid}/dashboard/your-dashboard-uuid#${token}`; +``` + +```python Python +import jwt +import datetime + +LIGHTDASH_EMBED_SECRET = os.getenv('LIGHTDASH_EMBED_SECRET') +project_uuid = 'your-project-uuid' + +payload = { + 'content': { + 'type': 'dashboard', + 'dashboardUuid': 'your-dashboard-uuid', + }, + 'exp': datetime.datetime.utcnow() + datetime.timedelta(hours=1) +} + +token = jwt.encode(payload, LIGHTDASH_EMBED_SECRET, algorithm='HS256') +embed_url = f"https://app.lightdash.cloud/embed/{project_uuid}/dashboard/your-dashboard-uuid#{token}" +``` + +```ruby Ruby +require 'jwt' + +lightdash_embed_secret = ENV['LIGHTDASH_EMBED_SECRET'] +project_uuid = 'your-project-uuid' + +payload = { + content: { + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid' + }, + exp: Time.now.to_i + 3600 +} + +token = JWT.encode(payload, lightdash_embed_secret, 'HS256') +embed_url = "https://app.lightdash.cloud/embed/#{project_uuid}/dashboard/your-dashboard-uuid##{token}" +``` + + + +### Embed in HTML + +```html + +``` + +## React SDK + +The React SDK provides seamless integration with additional features like programmatic filters, callbacks, and styling. + + +See the [React SDK reference](/references/react-sdk) for installation, setup, and complete configuration options. + + +### Basic usage + +```tsx +import Lightdash from '@lightdash/sdk'; + +function MyDashboard() { + return ( + + ); +} +``` + +### Component props + +```typescript +type DashboardProps = { + instanceUrl: string; // Required: Your Lightdash instance URL + token: string | Promise; // Required: JWT token + styles?: { + backgroundColor?: string; // Dashboard background color or 'transparent' + fontFamily?: string; // Font family for text + }; + filters?: SdkFilter[]; // Apply filters programmatically + contentOverrides?: LanguageMap; // Translation/localization overrides + onExplore?: (options: { chart: SavedChart }) => void; // Callback when user navigates to explore +}; +``` + +### Advanced example with filters + +```tsx +import Lightdash, { FilterOperator } from '@lightdash/sdk'; + + { + console.log('User exploring chart:', chart.name); + }} +/> +``` + +## Advanced features + +### User metadata for analytics + +Pass user information to track who's viewing your embedded dashboards. + +```javascript +{ + user: { + externalId: 'user-123', // Your internal user ID + email: 'user@example.com', // User's email + } +} +``` + +This metadata appears in [query tags](/references/usage-analytics#query-tags) in Lightdash usage analytics. + +### Custom styling (SDK only) + +Apply custom styling to match your application's design. + +```tsx + +``` + +### Localization (SDK only) + +Translate embedded dashboards using the `contentOverrides` prop. See [React SDK localization](/references/react-sdk#localization) for details. + +### Row-level security with user attributes + +Filter data based on the viewing user's properties. See the [user attributes reference](/references/user-attributes) for complete details. + +## Next steps + + + + Embed individual charts for focused displays + + + + Show different data to different users + + + + Complete iframe URL patterns and HTML embedding + + + + Complete JWT token structure documentation + + diff --git a/guides/how-to-embed-content.mdx b/guides/how-to-embed-content.mdx index 59162a5..56de7bf 100644 --- a/guides/how-to-embed-content.mdx +++ b/guides/how-to-embed-content.mdx @@ -1,18 +1,58 @@ --- title: "How to embed content" sidebarTitle: Embedding quickstart -description: Lightdash allows you to embed your dashboards using expirable URLs and tokens (embed URLs from now on). This is a great way to enable self-serve analytics in your own application and platform by leveraging the insights you've got in Lightdash and making them available to your own users. +description: Lightdash allows you to embed your content using expirable URLs and tokens. This is a great way to enable self-serve analytics in your own application and platform by leveraging the insights you've got in Lightdash and making them available to your own users. --- +import EmbedAvailability from '/snippets/embedding-availability.mdx'; - + + +## What can you embed? + +Lightdash supports embedding two types of content, each designed for different use cases: + +### Dashboards + +Embed complete dashboards with multiple visualizations, filters, and tabs. Perfect for providing comprehensive analytics views in your application. + +**Use cases:** +- Executive dashboards in admin panels +- Customer-facing analytics portals +- Embedded reporting for SaaS applications + +[Learn more about embedding dashboards →](/guides/embedding/dashboards) + +### Charts + +Embed individual saved charts for focused, single-metric displays. Charts provide a minimal UI for clean integration. -Embedding is available to all Lightdash Cloud users, [get in touch](https://lightdash.typeform.com/to/BujU5wg5) to have this feature enabled in your account. +**Use cases:** +- Single KPI widgets in applications +- Embedded metrics in marketing pages +- Focused analytics in workflows + + +Chart embedding requires the React SDK. iframe embedding is only available for dashboards. -## Quick start to embed dashboards +[Learn more about embedding charts →](/guides/embedding/charts) + +## How can you embed content? + +Lightdash offers two embedding methods: + +**[iframe embedding](/references/iframe-embedding)**: Embed Lightdash **dashboards** using a simple iframe with a JWT token in the URL. No special integration required. iframe embedding is only available for dashboards, not charts. + +**[React SDK](/references/react-sdk)**: Use the `@lightdash/sdk` package for seamless integration in React applications. The React SDK supports both dashboards and charts with additional features like programmatic filters and callbacks. + +Both methods use the same JWT-based authentication and security model. + +## Quick start: Embed a dashboard + +This quick start will walk you through embedding your first dashboard using an iframe. -### Create an embed secret +### Step 1: Create an embed secret First, you need to generate a secret per project. This secret is like a password that will help you encrypt the URLs so we know the access is valid. @@ -20,109 +60,89 @@ First, you need to generate a secret per project. This secret is like a password - You can regenerate the secret by clicking on the `Generate new secret` button. If you do this, people with an old URL will automatically lose access to any previously shared embed URL. -### Allowed dashboards +### Step 2: Add allowed dashboards -Only selected dashboards can be accessed via embed URLs +Only selected dashboards can be accessed via embed URLs. Add the dashboard you want to embed to the allowed list. +### Step 3: Configure and preview -### Preview - -Under preview you can generate a one-off shareable embed URL for a single dashboard. +Under the "Configure" section, you can: +- Select which dashboard to embed +- Set token expiration time +- Configure interactivity (filters, exports, etc.) +- Add user attributes for row-level security -Click on `preview` to see the embed content and click on `Generate & copy URL` to generate an embed URL for this dashboard +Click on `Preview` to see how the embedded content will look, and click on `Generate & copy URL` to get a one-off embed URL for testing. -### Developer flow and code snippet +### Step 4: Generate tokens programmatically -Although you can generate URLs directly from Lightdash with a long expiration it is recommended to generate your own JWT tokens in your backend with a short expiration using your `secret`to make sure people can't be using embed URLs outside your app. +Although you can generate URLs directly from Lightdash with a long expiration, it is recommended to generate your own JWT tokens in your backend with a short expiration using your `secret` to make sure people can't be using embed URLs outside your app. -To make this easier to integrate, we included some code snippets you can copy and use in your app to generate a valid embed URL +Lightdash provides code snippets you can copy and use in your app to generate valid embed URLs: - -For more information on embed settings, see the [embedding reference doc](/references/embedding) - +## Next steps -## Do I need a Lightdash account to be able to view embedded content? + + + Complete guide to dashboard embedding with all configuration options + -No, embedded Lightdash content is available to view by anyone (not just folks with a Lightdash login). + + Learn how to embed individual charts for focused displays + -So, for example, you could embed a dashboard in your product, and anyone who has access to your product would have access to that dashboard. No need to login to Lightdash. + + Show different data to different users with user attributes + -We make sure that the links are secure and have a set expiry time that you pick. + + URL patterns and HTML embedding details + -## I want to have my embedded dashboard show different values for different users in my app. + + Seamless React integration with advanced features + -Imagine a scenario where I have a dashboard embedded in my application showing an overview of orders. Ideally, when a user looks at this dashboard, they should only see the orders for their shop (not all of the other shops using my application). You can do this with embedded dashboards using user attributes. Here's how to do it: + + Complete JWT token structure and configuration options + + -### Create a user attribute in Lightdash +## Common questions -First, we need to create a [user attribute](/references/user-attributes) in Lightdash that we can use to assign our users to a specific shop. I create an attribute called `shop_id` and I set the default value to `all`. +### Do I need a Lightdash account to view embedded content? - - - - -### Filter the tables used in your dashboard with `sql_filter` - -We need to filter the access to all of the tables we use in our dashboard using this attribute. For example, in my `Order Summary` dashboard, I use the `orders` and the `shops` tables to build all of the charts. So, in these two tables, I'm going to add a [row-level filter](#../references/user-attributes#1-row-filtering-with-sql%5Ffilter) using my `shop_id` attribute, like: - -```yaml -models: - - name: orders - meta: - sql_filter: ${lightdash.attributes.shop_id} = 'all' OR ${TABLE}.shop_id = ${lightdash.attributes.shop_id} -``` +No, embedded Lightdash content is available to view by anyone (not just folks with a Lightdash login). -### Add the user attribute to your dashboard embed +So, for example, you could embed a dashboard in your product, and anyone who has access to your product would have access to that dashboard. No need to login to Lightdash. -Now that we have our user attribute set up and filtering our data properly, we want to head back to our dashboard embedding configuration. +We make sure that the links are secure and have a set expiry time that you pick. -There are two ways to use user attributes in your embedded dashboard: +### How does security work? -**Option 1: assign a constant value for your attribute** +Embedded content is secured using JWT (JSON Web Tokens) that you sign with your embed secret. The token includes: -You can assign your dashboard a single, constant value for your attribute by adding it in the `user attributes` section of your embedded dashboard setup. +- What content to display (dashboard or chart) +- Expiration time +- User attributes for row-level filtering +- Permissions for interactivity (filters, exports, etc.) -For example, if I wanted the embed link to only show data for `shop_id = Thyme to Shine`, then I would add a user attribute `shop_id` with the value `Thyme to Shine`. +Tokens are short-lived and should be generated server-side to prevent exposure of your embed secret. - - - +### Can I show different data to different users? -**Option 2: assign a variable value for your attribute** - -You can adjust the value of the user attribute based on a variable coming from your app so, for example, the user attribute for `shop_id` in the Lightdash embedded dashboard would change depending on which `shop_id` the user belonged to in my app. - -To do this, I would pass Lightdash an external value for `shop_id` in the embed code snippet. This could look something like: - -```yaml -import jwt from 'jsonwebtoken'; -const LIGHTDASH_EMBED_SECRET = 'secret'; // replace with your secret -const projectUuid = '21eef0b9-5bae-40f3-851e-9554588e71a6'; -const userShopId = await getUserShopIdFromDatabase(); -const data = { - content: { - type: 'dashboard', - dashboardUuid: 'a392ed6d-4c53-4102-89b7-1c57a87df391', - }, - userAttributes: { shop_id: userShopId }, -}; -const token = jwt.sign(data, LIGHTDASH_EMBED_SECRET, { expiresIn: '1 hour' }); -const url = `https://analytics.lightdash.cloud/embed/${projectUuid}/#${token}`; -``` - -And voila! you now have an embedded dashboard that shows different values for different users in your app. +Yes! You can use [user attributes](/references/user-attributes) to implement row-level security in your embedded content. This allows you to filter data based on the viewing user's properties (e.g., tenant ID, region, etc.). diff --git a/images/guides/embed-add-chart.png b/images/guides/embed-add-chart.png new file mode 100644 index 0000000..d0565ee Binary files /dev/null and b/images/guides/embed-add-chart.png differ diff --git a/images/guides/embed-iframe-interactivity.png b/images/guides/embed-iframe-interactivity.png new file mode 100644 index 0000000..a67027f Binary files /dev/null and b/images/guides/embed-iframe-interactivity.png differ diff --git a/references/embedding.mdx b/references/embedding.mdx index 31a97cc..e6376c1 100644 --- a/references/embedding.mdx +++ b/references/embedding.mdx @@ -1,215 +1,714 @@ --- title: "Embedding reference" -description: "You can embed Lightdash content in your website or application securely using Lightdash embedding." +description: "Complete API reference for embedding Lightdash content securely using JWT tokens" --- - - Embedding is available to all Lightdash Cloud users, [get in touch](https://lightdash.typeform.com/to/BujU5wg5) to have this feature enabled in your account. - +import EmbedAvailability from '/snippets/embedding-availability.mdx'; -Embedded Lightdash content is available to view by anyone (not just folks with a Lightdash login). + -So, for example, you could embed a dashboard in your product, and anyone who has access to your product would have access to that dashboard. No need to login to Lightdash. +## Overview -We make sure that the links are secure and have a set expiry time that you pick (more on that below). +This document provides complete API reference for JWT token structure and configuration options used by both embedding methods (iframe and React SDK). -For more of a deep dive into setting up and using embedding in Lightdash, check out our [How to embed content guide](/guides/how-to-embed-content). +**For method-specific implementation details, see:** +- [iframe embedding reference](/references/iframe-embedding) - URL patterns, HTML embedding +- [React SDK reference](/references/react-sdk) - React components, props, TypeScript -## Known limitations +**For step-by-step guides, see:** +- [Embedding quickstart](/guides/how-to-embed-content) +- [Embedding dashboards](/guides/embedding/dashboards) +- [Embedding charts](/guides/embedding/charts) -There are a couple of known limitations today with embedding: +Embedded Lightdash content is available to view by anyone (not just folks with a Lightdash login). Content is secured using JWT (JSON Web Tokens) with configurable expiration times. -- Embedding only works for dashboards, not table explores or single charts (unless the single chart is pinned to a dashboard first). +## Known limitations + +- Embedding only works for dashboards and charts directly. To embed explores, use the `canExplore` flag in a dashboard. - The **Filter dashboard to** option when clicking on individual chart segments will not work on embedded dashboards. -If you're interested in embedding and one or more of these items are blockers, please reach out - we can activate them quickly. +If you're interested in embedding and one or more of these items are blockers, please reach out. ## Embed secret -The embed secret is used to generate tokens for embedding dashboards. - -This secret is like a password that will help you encrypt the URLs so we know the access is valid. +The embed secret is used to generate JWT tokens for embedding content. This secret acts like a password that encrypts and signs your tokens. ![](/images/references/embed-create-secret-fbb86d6bcb70f4d004c48adb3c107922.png) -You can regenerate the secret by clicking on the `Generate new secret` button. If you do this, people with an old URL will automatically lose access to any previously shared embed URL. + +Keep your embed secret secure! Store it as an environment variable and never expose it in frontend code. Always generate tokens server-side. + -## Allowed dashboards +You can regenerate the secret by clicking `Generate new secret`. If you do this, all previously generated embed URLs will be invalidated immediately. -Only dashboards included in the `allowed dashboards` can be accessed using embed URLs. To embed a dashboard, you need to first add it to the `allowed dashboards` list. +## JWT token structure -You can use the `Allow all dashboards` toggle to skip the dashboard selection process. When enabled, it overrides the `allowed dashboards` setting, allowing embed URLs to be generated for any dashboard in your project. +All embedding methods use JWT tokens to authenticate and configure embedded content. The token structure includes three main parts: - - ![](/images/references/embed-add-dashboard-feb6ef5fde69ba9d6eaeb693744d750f.png) - +### Common fields -## Configure +All tokens share these fields: -Configure the embed URL. Then preview your settings and copy it to your clipboard. +```typescript +{ + content: { + // Content configuration (required) + type: 'dashboard' | 'chart', + projectUuid?: string, + // ... type-specific fields + }, + user?: { + // User information for analytics (optional) + externalId?: string, + email?: string, + }, + userAttributes?: { + // User attributes for row-level filtering (optional) + [attributeName: string]: string, + }, + // Token expiration (handled by JWT library) + exp?: number, + iat?: number, +} +``` - - ![](/images/references/embed-preview-6add607fe9348ed49483ae487235bd50.png) - +### Dashboard token + +For embedding dashboards with multiple tiles, filters, and interactive features: + +```typescript +{ + content: { + type: 'dashboard', + + // Dashboard identifier (required, use one) + dashboardUuid?: string, + dashboardSlug?: string, + + // Project identifier (optional) + projectUuid?: string, + + // Filter interactivity + dashboardFiltersInteractivity?: { + enabled: 'all' | 'some' | 'none', // Required + allowedFilters?: string[], // Required if enabled: 'some' + hidden?: boolean, // Optional: hide filter UI + }, + + // Parameter interactivity + parameterInteractivity?: { + enabled: boolean, + }, + + // Export capabilities + canExportCsv?: boolean, // Allow CSV export + canExportImages?: boolean, // Allow image/PNG export + canExportPagePdf?: boolean, // Allow PDF export + + // Interactive features + canDateZoom?: boolean, // Allow date granularity zoom + canExplore?: boolean, // Allow "Explore from here" + canViewUnderlyingData?: boolean, // Allow viewing raw data + }, -### Dashboard + // Optional: User information for query tracking + user?: { + externalId?: string, + email?: string, + }, -Select the dashboard that you want to embed. Only dashboards included in the `allowed dashboards` list appear here. + // Optional: User attributes for row-level filtering + userAttributes?: { + [attributeName: string]: string, + }, +} +``` -### Expires in +**Example:** -Set the amount of time it takes before your embed token expires. +```javascript +import jwt from 'jsonwebtoken'; -Although you can generate URLs directly from Lightdash with a long expiration using [generate and copy URL](#generate--copy-url), it is recommended to generate your own JWT embed tokens in your backend (using the [code snippet](#code-snippet)) with a short expiration using your `secret` to make sure people can't be using embed URLs outside your app. +const token = jwt.sign({ + content: { + type: 'dashboard', + dashboardUuid: 'abc-123-def-456', + dashboardFiltersInteractivity: { + enabled: 'all', + }, + canExportCsv: true, + canExportImages: true, + canExportPagePdf: true, + canDateZoom: true, + canExplore: true, + canViewUnderlyingData: true, + }, + user: { + externalId: 'user-789', + email: 'user@example.com', + }, + userAttributes: { + tenant_id: 'tenant-abc', + }, +}, SECRET, { expiresIn: '1h' }); +``` -### User attributes +### Chart token -Use user attributes to limit access to certain data in the embedded dashboard. You can use any [user attribute](/references/user-attributes) that you've defined in your organization in the embedded dashboard. +For embedding individual saved charts with minimal UI: -To learn about getting your embedded dashboard to show different values for different users in your app, [check out the guide here](/guides/how-to-embed-content#i-want-to-have-my-embedded-dashboard-show-different-values-for-different-users-in-my-app). + +Chart embedding is **only available via the React SDK**. iframe embedding for charts is not currently supported. See the [React SDK reference](/references/react-sdk) for details. + -### Interactivity +```typescript +{ + content: { + type: 'chart', -There are options to enable certain dashboard interactivity features on your embedded dashboard in this section. This includes filters as well as granular control over Lightdash features and capabilities. By default, all interactivity is disabled on an embedded dashboard. + // Chart identifier (required) + contentId: string, // savedQueryUuid - - ![](/images/references/embedding-interactivity.png) - + // Project identifier (optional) + projectUuid?: string, + + // Preview mode (optional) + isPreview?: boolean, + + // Permission scopes (optional) + scopes?: string[], // e.g., ['view:Chart'] + + // Export capabilities + canExportCsv?: boolean, // Allow CSV export + canExportImages?: boolean, // Allow image/PNG export + canViewUnderlyingData?: boolean, // Allow viewing raw data + }, + + // Optional: User information for query tracking + user?: { + externalId?: string, + email?: string, + }, +} +``` -#### iframe + +Chart tokens use `contentId` (the saved chart UUID) instead of `dashboardUuid`. Chart embeds are scoped to the specific chart and cannot access other content. + -To control interactive features for an embedded iframe, simply use the toggles in the settings page. +**Example:** -#### React SDK +```javascript +import jwt from 'jsonwebtoken'; -Use the React [SDK docs](/references/react-sdk#token-configuration). +const token = jwt.sign({ + content: { + type: 'chart', + contentId: 'saved-chart-uuid-789', + scopes: ['view:Chart'], + canExportCsv: true, + canExportImages: false, + canViewUnderlyingData: true, + }, + user: { + externalId: 'user-456', + email: 'user@example.com', + }, +}, SECRET, { expiresIn: '24h' }); +``` -#### Allow users to change dashboard filters +## Interactivity options reference -You can choose which filters are displayed in your embedded dashboard. +### Dashboard filters interactivity -The filters shown in the embedded dashboard will act like they do in Lightdash. Users interacting with the embedded dashboard will be able to change the value and operator of your filters. They cannot add new filters, remove existing filters, change the field used in the filter, or change the tiles the filter is applied to. +Controls whether users can interact with dashboard filters. + +```typescript +dashboardFiltersInteractivity?: { + enabled: 'all' | 'some' | 'none', + allowedFilters?: string[], // Filter UUIDs, required if enabled: 'some' + hidden?: boolean, // Hide filter UI but keep filters active +} +``` -- **No filters** - No filters will be shown in the embedded dashboard. All dashboard filters are still applied. +**Options:** + +- `enabled: 'all'` - All dashboard filters are visible and interactive +- `enabled: 'some'` - Only filters listed in `allowedFilters` are interactive +- `enabled: 'none'` - Filters are applied but not visible or editable +- `hidden: true` - Filters are configurable at runtime, but UI is hidden (works with 'all' or 'some') + +#### All filters available as interactive: + +All filters configured on the dashboard will be shown in the embedded dashboard and interactive. + +```javascript +dashboardFiltersInteractivity: { + enabled: 'all', +} +``` - ![](/images/references/embedding-preview-no-filters-ced58145c215a0b17d86b50634a09057.png) + ![](/images/references/embedding-preview-all-filters-bf5d00a3ef24a2370bc5ca56c8785e2d.png) -- **Some filters** +#### Specific filters only + +Only the filters you select will be shown in the embedded dashboard for users to interact with. All dashboard filters are still applied. + + +```javascript +dashboardFiltersInteractivity: { + enabled: 'some', + allowedFilters: ['filter-uuid-1', 'filter-uuid-2'], +} +``` + +Configuring in the UI: ![](/images/references/embedding-settings-some-filters-1658fe2f72623f85dee2eff322833ea8.png) -Only the filters you select will be shown in the embedded dashboard. All dashboard filters are still applied. +Will result in some filters in the dashboard for users to interact with: ![](/images/references/embedding-preview-some-filters-9f13263ec3800c3e7f5e6079fa78cd66.png) -- **All filters** - All dashboard filters will be shown in the embedded dashboard. +#### Filters applied but hidden: + +Filters are applied to the dashboard, but users cannot see or modify them. + +```javascript +dashboardFiltersInteractivity: { + enabled: 'none', +} +``` - ![](/images/references/embedding-preview-all-filters-bf5d00a3ef24a2370bc5ca56c8785e2d.png) + ![](/images/references/embedding-preview-no-filters-ced58145c215a0b17d86b50634a09057.png) -#### Can download CSV -Enabling this option allows users to download all chart results as CSV files. +### Parameter interactivity -On the embedded dashboard, this `download button` is accessible from the `...` options menu located in the top right corner when hovering over the chart tile. +Controls whether users can modify dashboard parameters. + +```typescript +parameterInteractivity?: { + enabled: boolean, +} +``` + +When enabled, users can change parameter values in the dashboard UI. + +### Export options + +Control what users can export from embedded content. + +```typescript +{ + canExportCsv?: boolean, // Download chart data as CSV files + canExportImages?: boolean, // Download charts as PNG images + canExportPagePdf?: boolean, // Download entire dashboard page as PDF (dashboards only) +} +``` + +**CSV Export:** +- Enables "Download CSV" in chart tile menus +- Each chart can be exported individually +- Exports the data shown in the visualization ![](/images/references/embedding-download-csv-2a4cbcfa350c6cefed880971090c117b.png) -#### Can Explore +**Image Export:** +- Enables "Download as image" in chart tile menus +- Exports charts as PNG files +- Captures current chart state + +**PDF Export (dashboards only):** +- Enables print icon in dashboard header +- Exports entire dashboard page as PDF +- Includes all visible tiles + + + ![](/images/references/embedding-print-61cb9f9107c6e4ae00fa3cde99dd572d.png) + + +### Date zoom -This option allows users to open a dashboard chart in the [Lightdash Explore view](https://docs.lightdash.com/get-started/exploring-data/using-explores#select-your-fields). Within an embedded context, users can only interact with the chart from which they clicked "Explore from here". Any changes to a chart in this context will not be saved. Embedded users also are not able to run raw SQL for any Explores. +Allows users to zoom into time-series data by changing granularity. + +```typescript +canDateZoom?: boolean +``` -On the embedded dashboard, "Explore from here" is accessible from the `...` options menu located in the top right corner when hovering over the chart tile. +When enabled on time-series charts, users can click on data points to zoom to finer granularities (year → quarter → month → week → day). + +### Explore from here + +Enables navigation from dashboard charts to the explore view. + +```typescript +canExplore?: boolean +``` + +When enabled, users see "Explore from here" in chart tile menus. This opens the full query builder with the chart's configuration pre-loaded. ![](/images/references/embedding-explore-from-here.png) -#### Can View Underlying Data +Users can: +- Modify dimensions and metrics +- Apply different filters +- Change chart types +- Run custom queries + +Users cannot: +- Save charts +- Share results +- View SQL -[View Underlying Data](/get-started/exploring-data/exploring-your-content#view-underlying-data) allows users to open a table for a given dashboard tile, and view a table of the data powering that tile. In the embedded context, users can only view the underlying data—that underlying data cannot be exported or opened in an Explore view. +### View underlying data -The "View underlying data" option can be opened by clicking on a chart or big number to see the "View Underlying Data" menu option. +Allows users to view the raw data table behind visualizations. + +```typescript +canViewUnderlyingData?: boolean +``` + +When enabled, users can click on charts to open a modal showing the underlying data table. Data cannot be exported separately (use `canExportCsv` for that). ![](/images/references/embedding-view-underlying-data.png) -### Preview +## Allowed content -Clicking on `preview` allows you to preview the configuration for your embedded dashboard. This what people viewing your embedded dashboard will see. +### Allowed dashboards -### Generate & Copy URL +Only dashboards added to the "allowed dashboards" list can be embedded. -Clicking `generate & copy url` will generate an embed URL based on the configuration that you've set. + + ![](/images/references/embed-add-dashboard-feb6ef5fde69ba9d6eaeb693744d750f.png) + -You can embed this one-off URL directly into your application, but you will manually need to update the URL each time the embed URL expires. Alternatively, you can add the [code snippet](#code-snippet) to your app to automatically generate embed URLs in your application. +You can use the "Allow all dashboards" toggle to bypass dashboard selection. When enabled, any dashboard in your project can be embedded. -## Code snippet and demo +### Allowed charts -Although you can generate URLs directly from Lightdash with a long expiration, it is recommended to generate your own JWT embed tokens in your backend with a short expiration using your `secret` to make sure people can't be using embed URLs outside your app. +Charts must be explicitly allowed for embedding. Add charts to the allowed list in your embed settings. -To make this easier to integrate, we included some code snippets you can copy and use in your app to generate a valid embed URL. + +Chart embeds provide more granular access control than dashboards. Each chart must be individually allowed. + - - ![](/images/references/embed-developer-dcdab9d9082069f5ade377284254319c.png) - +## User attributes -Here is a demo of how to add the code snippet to your app: +User attributes enable row-level security by filtering data based on user properties. -
- +``` + +### Recommended attributes + +```html + +``` + +**Attributes explained:** +- `width="100%"` - Makes iframe responsive to container width +- `height="600"` - Fixed height (adjust based on content) +- `frameborder="0"` - Removes default border (legacy) +- `style="border: none;"` - Removes border (modern CSS) +- `loading="lazy"` - Defers loading until iframe is visible +- `title="..."` - Accessibility: Describes iframe content for screen readers +- `allowfullscreen` - Enables fullscreen mode (if your dashboard uses it) + +### Responsive iframes + +To make iframes maintain aspect ratio and scale responsively: + +**Method 1: Aspect ratio wrapper (16:9)** + +```html +
+ +
+``` + +**Method 2: Modern CSS aspect-ratio (16:9)** + +```html + +``` + +**Method 3: Fixed viewport percentage** + +```html + +``` + +### Dynamic height + +iframes have fixed height by default. For dynamic height based on content: + + +Lightdash embeds do not currently support automatic height adjustment via postMessage. Use a fixed height or viewport-based height (e.g., `80vh`). + + +Recommended approach for dashboards with unknown content: + +```html + +``` + +### Security considerations + +iframes provide natural security isolation, but you can add additional restrictions: + +```html + +``` + +**sandbox attributes:** +- `allow-scripts` - Required for Lightdash to function +- `allow-same-origin` - Required for Lightdash to function +- `allow-forms` - Required for filter interactions +- `allow-downloads` - Required if you enable CSV/image exports + + +The `sandbox` attribute provides additional security but may restrict functionality. Test thoroughly if you use it. + + +## Common patterns + +### Server-side rendering + +Generate embed URLs in your server-side templates: + +**Express (Node.js)** + +```javascript +app.get('/dashboard', authenticateUser, async (req, res) => { + const user = await getUser(req.user.id); + + const token = jwt.sign({ + content: { + type: 'dashboard', + dashboardUuid: 'dashboard-uuid', + }, + userAttributes: { + tenant_id: user.tenantId, + }, + }, process.env.LIGHTDASH_EMBED_SECRET, { expiresIn: '1h' }); + + const embedUrl = `https://app.lightdash.cloud/embed/${projectUuid}/dashboard/dashboard-uuid#${token}`; + + res.render('dashboard', { embedUrl }); +}); +``` + +**Template (EJS)** + +```html +
+ +
+``` + +### Single-page apps (SPA) + +Generate URLs via API when component mounts: + +**React example** + +```jsx +function EmbeddedDashboard() { + const [embedUrl, setEmbedUrl] = useState(null); + + useEffect(() => { + fetch('/api/dashboard-embed-url') + .then(res => res.json()) + .then(data => setEmbedUrl(data.url)); + }, []); + + if (!embedUrl) return
Loading...
; + + return ( + '; +} +add_shortcode('lightdash', 'lightdash_embed_shortcode'); +``` + +## Token refresh + +JWT tokens expire after the time specified in `expiresIn`. Handle token expiration: + +### Option 1: Long-lived tokens + +For public or semi-public dashboards, use longer expiration: + +```javascript +jwt.sign(payload, secret, { expiresIn: '7d' }) // 7 days +``` + + +Long-lived tokens are convenient but less secure. Use only when appropriate for your use case. + + +### Option 2: Regenerate URL on expiration + +Detect when iframe shows "Token expired" error and reload with new URL: + +```javascript +function refreshEmbed() { + fetch('/api/dashboard-embed-url') + .then(res => res.json()) + .then(data => { + document.getElementById('dashboard-iframe').src = data.url; + }); +} + +// Refresh before expiration (e.g., every 50 minutes for 1-hour tokens) +setInterval(refreshEmbed, 50 * 60 * 1000); +``` + +### Option 3: Backend proxy + +Create a backend endpoint that serves a static iframe URL but generates fresh tokens: + +```javascript +app.get('/embed-proxy/dashboard/:dashboardUuid', authenticateUser, (req, res) => { + const token = jwt.sign({ + content: { + type: 'dashboard', + dashboardUuid: req.params.dashboardUuid, + }, + }, process.env.LIGHTDASH_EMBED_SECRET, { expiresIn: '1h' }); + + const embedUrl = `https://app.lightdash.cloud/embed/${projectUuid}/dashboard/${req.params.dashboardUuid}#${token}`; + + // Redirect to actual embed URL + res.redirect(embedUrl); +}); +``` + +Then use: + +```html + +``` + +## Troubleshooting + +### Token not working + +**Issue:** iframe shows "Invalid token" or "Token expired" + +**Solutions:** +- Verify embed secret matches between token generation and Lightdash +- Check token hasn't expired (`expiresIn` in jwt.sign) +- Ensure JWT payload structure matches [embedding reference](/references/embedding#jwt-token-structure) +- Test token expiration: `jwt.decode(token)` and check `exp` field + +### Content not displaying + +**Issue:** iframe is blank or shows loading indefinitely + +**Solutions:** +- Check browser console for errors +- Verify dashboard/chart UUID is correct +- Ensure content is added to "allowed dashboards/charts" in Lightdash settings +- Check project UUID is correct +- Try accessing embed URL directly in browser to see error message + +### CORS errors + +**Issue:** Browser console shows CORS errors + +**Solution:** +- iframes should NOT have CORS issues (CORS only affects React SDK) +- If you see CORS errors with iframes, you may be using fetch/XHR to load content instead of iframe +- Use standard iframe src attribute, not JavaScript-based loading + +### URL encoding issues + +**Issue:** JWT token or URL appears malformed + +**Solutions:** +- Don't URL-encode the JWT token in the hash fragment +- If constructing URLs in templates, ensure proper escaping: + ```html + + + + + + ``` + +### Dashboard filters not working + +**Issue:** Users can't interact with filters despite `dashboardFiltersInteractivity: { enabled: 'all' }` + +**Solutions:** +- Verify JWT token includes correct interactivity settings +- Check browser console for JavaScript errors +- Ensure iframe isn't using `sandbox` attribute without `allow-forms` + +## See also + + + + JWT token structure and configuration options + + + + Alternative: React component embedding + + + + Step-by-step dashboard embedding guide + + + + Step-by-step chart embedding guide + + + + Row-level security with user attributes + + diff --git a/references/react-sdk.mdx b/references/react-sdk.mdx index a6823d7..c3894ff 100644 --- a/references/react-sdk.mdx +++ b/references/react-sdk.mdx @@ -1,37 +1,54 @@ --- -title: "React SDK" -description: "Reference documentation for the Lightdash React SDK, used for Embedding. " +title: "Embedding with React SDK" +sidebarTitle: "React SDK" +description: "Reference documentation for the Lightdash React SDK for seamless embedding in React applications" --- +## Overview + +The Lightdash React SDK (`@lightdash/sdk`) provides React components for embedding Lightdash content in your React or Next.js applications. The SDK offers advantages over iframe embedding: + +- Seamless integration with your React application +- Programmatic filters for dashboards +- Callbacks for user interactions (e.g., explore navigation) +- Custom styling to match your application +- TypeScript support with full type definitions + +For iframe embedding, see the [embedding reference](/references/embedding). + ## Set up CORS -To make the React SDK work, you need to update your "Cross-Origin Resource Sharing" (CORS) policy. +To use the React SDK, you need to update your "Cross-Origin Resource Sharing" (CORS) policy. -This is done using environment variables. For Lightdash Cloud customers, you'll need to contact the Lightdash team to update these for you. +This is done using environment variables. For Lightdash Cloud customers, contact the Lightdash team to update these for you. ```bash LIGHTDASH_CORS_ENABLED=true -LIGHTDASH_CORS_ALLOWED_DOMAINS=https://domain-where-you-are-going-to-use-the-sdk.com   +LIGHTDASH_CORS_ALLOWED_DOMAINS=https://domain-where-you-are-going-to-use-the-sdk.com ``` - **Why this is needed?** + **Why CORS is needed** Enabling CORS (Cross-Origin Resource Sharing) is necessary because browsers enforce security policies that prevent web applications from making requests to a different domain than the one that served the app (known as the **Same-Origin Policy**). - Since the **Lightdash React SDK** interacts with an Lightdash API, you need to configure CORS on your Lightdash instance to allow your frontend application to communicate with the Lightdash server without being blocked by the browser. + Since the **Lightdash React SDK** interacts with a Lightdash API, you need to configure CORS on your Lightdash instance to allow your frontend application to communicate with the Lightdash server without being blocked by the browser. + +CORS is **only required for the React SDK**. iframe embedding does not require CORS configuration. + + ## Installing the Lightdash SDK In your frontend project, use your preferred package manager to install the SDK. ```bash -npm install @lightdash/sdk   +npm install @lightdash/sdk # or -pnpm add @lightdash/sdk   +pnpm add @lightdash/sdk # or -yarn add @lightdash/sdk   +yarn add @lightdash/sdk ``` @@ -39,165 +56,524 @@ yarn add @lightdash/sdk   For Next.js, version 15 or later is required. -## Using the Lightdash SDK +## Components + +The Lightdash SDK exports three components for embedding different content types: + +- `Lightdash.Dashboard` - Embed complete dashboards with multiple tiles +- `Lightdash.Chart` - Embed individual saved charts +- `Lightdash.Explore` - Embed interactive data exploration interface + +All components share common props for authentication and styling. + +### Lightdash.Dashboard + +Embed complete Lightdash dashboards with multiple visualizations, filters, and interactive features. -In your frontend project, import and use the `Lightdash.Dashboard` component in your desired location to mount the Lightdash dashboard. +#### Props + +```typescript +type DashboardProps = { + // Required + instanceUrl: string; // Your Lightdash instance URL + token: string | Promise; // JWT token (can be async) + + // Optional + styles?: { + backgroundColor?: string; // Background color or 'transparent' + fontFamily?: string; // Font family for all text + }; + filters?: SdkFilter[]; // Apply filters programmatically + contentOverrides?: LanguageMap; // Localization/translation overrides + onExplore?: (options: { + chart: SavedChart + }) => void; // Callback when user navigates to explore +}; +``` + +#### Basic usage ```tsx import Lightdash from '@lightdash/sdk'; +function MyDashboard() { + return ( + + ); +} +``` + +#### With filters + +Apply filters programmatically using the `filters` prop: + +```tsx +import Lightdash, { FilterOperator } from '@lightdash/sdk'; + ``` -## Generating an embed token +See [Filtering data](#filtering-data) for complete filter documentation. -### Development +#### With styling -When developing you can quickly and easily [generate tokens through the Lightdash UI](https://docs.lightdash.com/references/embedding#embed-secret). Since this requires manual steps we don’t recommend you do this in production. +```tsx + +``` -### Production +#### With explore callback -To run the Lightdash SDK in production you need: +Track when users navigate to explore: -1. A frontend to embed the Lightdash dashboard. -2. A backend (or other privileged environment) where you can safely generate embedding tokens. This component will be able to generate access to any content, so this shouldn’t be accessible to your end users. +```tsx + { + console.log('User exploring chart:', chart.name); + // Track analytics, show help guides, etc. + }} +/> +``` -### JWT Authentication Flow +### Lightdash.Chart -![images/jwt-auth-flow.png](/images/jwt-auth-flow.png) +Embed individual saved charts for focused, single-metric displays with minimal UI. -To generate a signed JWT token, you need to use your **embed secret**, which is located in **Settings → Embed** in Lightdash. There, you can [generate or regenerate the secret](/references/embedding#embed-secret). This secret is used to sign JWT tokens, allowing secure use of the SDK. +#### Props -You can use the form to configure which **Dashboard** you want to show in the SDK, [enable specific features](/references/embedding#interactivity), and set up **User Attributes** for advanced security controls. For more details on **User Attributes**, check out the guide [here](https://docs.lightdash.com/references/user-attributes). +```typescript +type ChartProps = { + // Required + instanceUrl: string; // Your Lightdash instance URL + id: string; // Chart UUID (savedQueryUuid) + token: string | Promise; // JWT token with type: 'chart' + + // Optional + styles?: { + backgroundColor?: string; // Background color or 'transparent' + fontFamily?: string; // Font family for all text + }; + contentOverrides?: LanguageMap; // Localization/translation overrides +}; +``` -#### Token Configuration + +Unlike Dashboard, Chart does not support `filters` or `onExplore` props since charts are read-only and cannot navigate to explore. + + +#### Basic usage -After you configure the form you should end up with the snippet which looks like this: +```tsx +import Lightdash from '@lightdash/sdk'; + +function MyChart() { + return ( + + ); +} +``` + +#### With styling + +```tsx + +``` + +#### Token generation for charts + +Charts require a JWT token with `type: 'chart'`: + +```javascript +// Backend API endpoint +import jwt from 'jsonwebtoken'; + +export function generateChartToken(chartId) { + return jwt.sign({ + content: { + type: 'chart', + contentId: chartId, // savedQueryUuid + canExportCsv: true, + canExportImages: false, + canViewUnderlyingData: true, + }, + }, process.env.LIGHTDASH_EMBED_SECRET, { expiresIn: '24h' }); +} +``` + +See [Embedding charts guide](/guides/embedding/charts) for details. + +### Lightdash.Explore + +Embed interactive data exploration interface with full query builder capabilities. + +#### Props + +```typescript +type ExploreProps = { + // Required + instanceUrl: string; // Your Lightdash instance URL + token: string | Promise; // JWT token with canExplore: true + + // Optional + styles?: { + backgroundColor?: string; // Background color or 'transparent' + fontFamily?: string; // Font family for all text + }; + contentOverrides?: LanguageMap; // Localization/translation overrides +}; +``` + +#### Basic usage + +```tsx +import Lightdash from '@lightdash/sdk'; + +function MyExplore() { + return ( + + ); +} +``` + +#### With styling + +```tsx + +``` + +#### Token generation for explores + +Explores require `canExplore: true` in the JWT token: + +```javascript +// Backend API endpoint +import jwt from 'jsonwebtoken'; + +export function generateExploreToken() { + return jwt.sign({ + content: { + type: 'dashboard', // Can use dashboard type + dashboardUuid: 'starting-dashboard-uuid', + canExplore: true, // Required for explore access + canExportCsv: true, + canExportImages: true, + }, + }, process.env.LIGHTDASH_EMBED_SECRET, { expiresIn: '4h' }); +} +``` + +## Generating embed tokens + +All SDK components require JWT tokens generated server-side. Here's a complete example: + +### Backend API endpoint ```typescript +// server/api/embed-token.ts import jwt from 'jsonwebtoken'; -const LIGHTDASH_EMBED_SECRET = '{{ keep this secret and do not expose it in the frontend }}'; -const projectUuid = '{{ your project uuid }} '; -const data = { +export async function generateEmbedToken(req, res) { + // Authenticate user + const userId = req.user.id; + const user = await getUserFromDatabase(userId); + + // Generate token with user-specific attributes + const token = jwt.sign({ content: { - type: 'dashboard', - dashboardUuid: '{{your dashboard uuid}}', - dashboardFiltersInteractivity: { - enabled: "none", - allowedFilters: undefined, - }, - canExportCsv: false, - canExportImages: false, - canExportPagePdf: true, - canDateZoom: false, - canExplore: false, - canViewUnderlyingData: false, + type: 'dashboard', + dashboardUuid: 'your-dashboard-uuid', + dashboardFiltersInteractivity: { + enabled: 'all', + }, + canExportCsv: true, + canExplore: true, + }, + userAttributes: { + tenant_id: user.tenantId, // Row-level filtering }, user: { - externalId: undefined, - email: "{{ authenticated user email }} " + externalId: user.id, + email: user.email, }, - userAttributes: {"":""}, -}; -const token = jwt.sign(data, LIGHTDASH_EMBED_SECRET, { expiresIn: '1 hour' }); + }, process.env.LIGHTDASH_EMBED_SECRET, { expiresIn: '1h' }); -console.log({ projectUuid, token }) - -// ^^^ use generated projectUuid and token in the ` - The Lightdash SDK works the same way as our embedding feature, which embeds the Lightdash dashboard as an “iframe”. We recommend reading the [documentation on Embedding](https://docs.lightdash.com/references/embedding/#code-snippet), which provides a detailed explanation of how token generation works and how to securely use Lightdash content using the SDK. - +### Frontend React component + +```tsx +import Lightdash from '@lightdash/sdk'; +import { useState, useEffect } from 'react'; + +function EmbeddedDashboard() { + const [token, setToken] = useState(null); + + useEffect(() => { + // Fetch token from your backend + fetch('/api/embed-token') + .then(res => res.json()) + .then(data => setToken(data.token)); + }, []); + + if (!token) return
Loading...
; + + return ( + + ); +} +``` - To ensure security, the JWT token generation code should run **in your backend**, and the **Lightdash embed secret** must never be exposed in frontend code. This prevents unauthorized access and protects sensitive data. + To ensure security, JWT token generation code must run **in your backend**, and the **Lightdash embed secret** must never be exposed in frontend code. This prevents unauthorized access and protects sensitive data. ## Applying styles -It’s possible to override some styles within the `` component to match the surrounding page better. Some styles will cascade, but some charts and components set things like `font-family` explicitly, so it is necessary to pass them to the component. Supported style overrides are: +Override styles within Lightdash components to match your application's design. + +### Supported style overrides + +```typescript +styles?: { + fontFamily?: string; // Sets all fonts within the component + backgroundColor?: string; // Sets the background color or 'transparent' +} +``` + +Both properties accept normal CSS values and are set on a `styles` object passed to any component. + +### Font family + +Sets the font family for all text within the embedded content. Font sizes and other properties are preserved. -- `fontFamily` - which will set all fonts within the dashboard to the specified font family. Note that only font family will be updated; font sizes and other properties will be preserved. -- `backgroundColor` - sets the background for the dashboard (not the tiles). This can be set to any color or `transparent` . +```typescript + +``` + + +Some charts and components set `font-family` explicitly, so the `fontFamily` style is applied with higher specificity to override these. + + +### Background color + +Sets the background for the embedded content. Can be any color value or `'transparent'`. + +```typescript + +``` -Both of these properties accept normal css values and are set on a `styles` object passed to the dashboard. For example: +### Complete example ```typescript ``` ## Filtering data -Filters can be passed to the `` to filter dimensions by values. Filters are passed as an array to the dashboard like this: +Filters can be passed to `` to filter dimensions by values. Filters are applied as AND operations, each further restricting results. + + +Filtering is **only available for Dashboard** components. Chart and Explore components do not support the `filters` prop. + + +### Filter structure + +```typescript +type SdkFilter = { + model: string; // The model the dimension is part of + field: string; // The name of the dimension to filter by + operator: FilterOperator; // The filter operator (enum) + value: unknown | unknown[]; // The value(s) to filter against +}; +``` + +### Basic example ```javascript +``` + +### Multiple filters + +Filters are applied as AND operations: + +```javascript + ``` -Each entry in the array specifies +### FilterOperator enum -- `field` - the name of the dimension to filter by -- `model` - the model the dimension is a part of -- `operator` - the fitler operator, specified with the `FilterOperator` enum -- `value` - the value or values to fitler against. Some opperators, such as `IN_BETWEEN` expect an array, others take only a value +Import `FilterOperator` from the SDK: -Filter objects will each be applied as AND operations, each further restricting results. +```typescript +import Lightdash, { FilterOperator } from '@lightdash/sdk'; +``` + +Available operators: + +| Operator | Description | Value Type | +|----------|-------------|------------| +| `FilterOperator.IS_NULL` | Field is null | n/a | +| `FilterOperator.NOT_NULL` | Field is not null | n/a | +| `FilterOperator.EQUALS` | Field equals value | single value | +| `FilterOperator.NOT_EQUALS` | Field does not equal value | single value | +| `FilterOperator.STARTS_WITH` | Field starts with value | single value | +| `FilterOperator.ENDS_WITH` | Field ends with value | single value | +| `FilterOperator.INCLUDE` | Field includes any of values | array | +| `FilterOperator.NOT_INCLUDE` | Field does not include values | array | +| `FilterOperator.LESS_THAN` | Field is less than value | single value | +| `FilterOperator.LESS_THAN_OR_EQUAL` | Field is ≤ value | single value | +| `FilterOperator.GREATER_THAN` | Field is greater than value | single value | +| `FilterOperator.GREATER_THAN_OR_EQUAL` | Field is ≥ value | single value | +| `FilterOperator.IN_THE_PAST` | Date in the past N units | single value | +| `FilterOperator.NOT_IN_THE_PAST` | Date not in past N units | single value | +| `FilterOperator.IN_THE_NEXT` | Date in the next N units | single value | +| `FilterOperator.IN_THE_CURRENT` | Date in current period | single value | +| `FilterOperator.NOT_IN_THE_CURRENT` | Date not in current period | single value | +| `FilterOperator.IN_BETWEEN` | Field between two values | array with 2 values | +| `FilterOperator.NOT_IN_BETWEEN` | Field not between values | array with 2 values | ### Available fields -Note that only field that are available for filtering will be filterable. These are specified in the token passed to the SDK. To generate such a token, see the Lightdash embed configuration. +Only fields that are available for filtering can be filtered. These are specified in the JWT token passed to the SDK. + + +To generate tokens with filterable fields, configure your embed in the Lightdash UI or include the appropriate fields in your JWT token structure. + ## Localization -The **Lightdash SDK** supports multilingual translation using standard i18n translation objects. To display a translated Lightdash dashboard, an app simply needs to pass a correctly formatted translation object to the SDK. We recommend using the following tools (or similar) to create and manage translations efficiently: +The **Lightdash SDK** supports multilingual translation using standard i18n translation objects. To display a translated Lightdash dashboard, pass a correctly formatted translation object to the SDK. -- **Translation maps** – The Lightdash CLI can generate translation maps when downloading content as code. These maps include keys and original text for all translatable strings in a dashboard, making them easy to use with translation tools like **Locize** or for manual translation. See below for details. -- **Runtime translation management**– In apps using the SDK, we recommend using a translation library like `i18next` to handle translation parameters and generate translation objects dynamically. See below for an example. -- **Translation production tools** – Tools like **Locize** help translators manage translations efficiently during production. Locize, for instance, can process translation objects from the Lightdash CLI translation maps and generate the dictionaries required by the SDK. These dictionaries can be included statically in the app or fetched dynamically from Locize servers. See the demo video below for an overview. +### Recommended tools -### Video overview of Localization +- **Translation maps** – The Lightdash CLI can generate translation maps when downloading content as code +- **Runtime translation management** – Use a translation library like `i18next` +- **Translation production tools** – Tools like **Locize** help manage translations efficiently + +### Video overview