Share a dashboard

Three ways to share a dashboard with someone, depending on who they are and how often they need it.

1. With a teammate inside the org

Open the dashboard → Share → Add people. Pick the user or group, pick a role:

• Viewer — can open and interact, can't edit
• Editor — can edit tiles, layout, filters
• Owner — full control including delete and re-share

Roles are scoped to this dashboard. Granting Editor on one dashboard doesn't grant it elsewhere. The grant lands as a row in hubstudio.group_permissions with permission_type='dashboard.edit' (or .read) and target_id=<dashboard_id>.

✓Prefer groups over users

If you're sharing the same dashboards to the same five people repeatedly, create a group ("Finance Leadership"), share the dashboard to the group, and add/remove people from the group as roles change. One source of truth instead of N grants.

2. With a stakeholder who only needs to see results

Use a published link — a stable URL that renders the dashboard read-only without requiring a Honeyframe login.

Dashboard → Share → Publish link:

• Internal-only: link works for anyone with a Honeyframe account in this org. Default.
• Public (no auth): link works for anyone, including unauthenticated users. Use only for non-sensitive dashboards — there's no way to revoke access from a specific viewer once you give them the link other than rotating the link.
• Embed in iframe: emits an <iframe> snippet for embedding in another web property (a wiki, a reporting site, a status page).

Published links honor the dashboard's data policies — column masking and row-level filters still apply for the publishing user's identity. Don't publish a dashboard if its underlying dataset has data your viewers shouldn't see.

3. Scheduled email export

For stakeholders who don't want to remember to open a link — they want the chart in their inbox at 8 AM on Mondays.

Dashboard → Share → Schedule export:

• Format: PDF, PNG (single tile), or CSV (per-tile data)
• Cadence: hourly, daily, weekly, monthly, or custom cron
• Recipients: any email address — they don't need a Honeyframe account
• Conditions: only send when X (e.g. only when a metric crosses a threshold)

Exports run as the user who scheduled them, with their permissions. If the scheduling user loses access to the dashboard, the schedule pauses with an alert in Activity → Scheduled exports.

Revoking access

Any of the three above can be revoked the same way they were granted: re-open the Share dialog → remove the person/group/link/schedule.

For published links specifically: revoking is rotate the link, not delete it. A previously-shared URL won't 404 after revocation; it'll redirect to a "this link has been rotated" page. If you need a hard revocation (the URL must produce no signal at all), delete the dashboard and recreate it.

See also

• Permissions Reference — what dashboard.read / dashboard.edit / dashboard.publish mean at the resolver level
• Data policies — how column masking and row-level filters interact with sharing
• Permission denied after LDAP sync — when a colleague reports they can't see a dashboard you just shared