Sharing¶
Share vulnerability reports with stakeholders without requiring them to log in.
Creating Share Links¶
- Go to Dashboard
- Apply desired filters (organization, severity, etc.)
- Click Share button
- Configure options:
- Expiration: 7, 30, or 90 days
- Name: Descriptive name for the share
- Click Generate Link
- Copy and share the URL
Share Options¶
| Option | Description |
|---|---|
| Read-only | View data only (default) |
| Include acknowledged | Show resolved vulnerabilities |
| Real-time | Data updates live |
| Snapshot | Fixed point-in-time data |
Managing Shares¶
View and manage active shares:
- Go to Settings → Shared Links
- See all active shares
- Actions:
- Revoke: Immediately disable
- Extend: Add more time
- Edit: Change filters
Security¶
Access Control¶
- Shares are read-only
- No authentication required
- Unique token per share
- IP logging for audit
Expiration¶
Shares automatically expire. To revoke early:
- Go to Settings → Shared Links
- Find the share
- Click Revoke
Audit Trail¶
All share access is logged:
- Timestamp
- IP address
- User agent
- Pages viewed
Embedding¶
Embed vulnerability data in other systems:
<iframe
src="https://sentrikat.example.com/shared/TOKEN"
width="100%"
height="600"
frameborder="0">
</iframe>
CORS
Configure allowed origins in Settings for embedding.
API Access¶
Create shares programmatically:
curl -X POST http://localhost:5000/api/shared/create \
-H "Authorization: Bearer YOUR_TOKEN" \
-H "Content-Type: application/json" \
-d '{
"name": "Weekly Report",
"filters": {"priority": ["critical", "high"]},
"expires_in_days": 30
}'
Response: