Embedding Kintone Screen in Other Web Sites

Article Number:02013

By default, you cannot embed Kintone content into other websites or systems.
To embed content, you must first enable the "Embedding into External Sites" option in Kintone Users & System Administration.

Embedding Contents

Embedding contents means that you use iframe tags or frame tags to render Kintone contents in other websites or systems.
For example, you can embed an inventory management app created in Kintone into your business system, so that team members can immediately check inventory figures.

Security Risk

Due to security risks, "Embedding into External Sites" is not allowed by default.
This is because to address the following two specific security risks:

  • Clickjacking
  • Cross-Site Request Forgery (CSRF)

Enabling The "Embedding into External Sites" Option

  1. Click gear shaped administration menu icon in the header.

  2. Click Users & System Administration.
    Accessing Kintone Users & System Administration

  3. Click Misc Settings. Screenshot: "Misc Settings" is highlighted

  4. In the "Embedding into External Sites" section, select "Allow embedding Kintone contents into external sites, for example by using iframe".

  5. Click Save.

When the Change Made to the Setting Is Applied

The change made to the "Embedding into External Sites" option will be applied to kintone.com at different timing depending on each user.
The new setting will be reflected when the user performs either of the following actions:

  • A user logs out and then logs in again
  • A user logs in again after the expiration of login session
    By default, login session remains valid for 24 hours after the last access.

Setting Needed for Safari

Safari for macOS does not support the embedding of the external website by default, even if the "Embedding into External Sites" option is enabled.
To display embedded content of Kintone, disable "Prevent cross-site tracking" in the Safari setting.