DOCSP-5341: [Charts] Update embedding docs based on feedback from S&T (#166)

* DOCSP-5341: [Charts] Update embedding docs based on feedback from S&T

Author: steveren

source/admin-settings.txt

@@ -14,25 +14,24 @@ Admin Settings
    :depth: 1
    :class: singlecol
 
-To access the Admin Settings page, you must be a `Project Owner
+To access the Admin Settings page, you must be an Atlas `Project Owner
 <https://docs.atlas.mongodb.com/reference/user-roles/#project-roles>`__.
 If you have the Project Owner role, the :guilabel:`Admin Settings`
 link appears in the top right corner of the Charts UI.
 
 Embedding Key Generation
 ------------------------
 
-Embedding keys are necessary for :ref:`verified signature
-<verified-signature>` generation, and are used in conjunction
-with :doc:`embedded charts <embedding-charts>`. To generate a new
-embedding key, click the :guilabel:`Generate New Key` button on the
-right side of the page.
+Embedding keys are necessary for verified signature generation, and are
+used in conjunction with :doc:`embedded charts <embedding-charts>`. To
+generate a new embedding key, click the :guilabel:`Generate New Key`
+button on the right side of the page.
 
 .. warning::
 
    If you generate a new key, any previous keys become invalid. Ensure
-   that all the embedded charts which use the old key are updated to
-   use the new key.
+   that all the existing embedded charts that use the old key are
+   updated to use the new key.
 
 .. figure:: /images/charts/generate-new-key.png
    :figwidth: 650px

source/build-charts.txt

@@ -33,4 +33,3 @@ To build a new chart:
       /sort-limit-data
       /customize-charts
       /sample-mode
-      /embedding-charts

source/data-sources.txt

@@ -230,15 +230,15 @@ embedding for a data source:
 
    a. :guilabel:`Verified Signature only`. This option requires
       embedded charts to include a :ref:`secret embedding key
-      <verified-signature>` with each request sent to the data source.
+      <embedding-charts>` with each request sent to the data source.
       Without a verified signature, the chart will not render. This
       option allows the chart owner to ensure that the chart is used
       only in its intended context.
 
       Generating a verified signature for authorized users to include
       with their embedded charts requires some server-side code.
       Examples in several languages and platforms are available with
-      the :ref:`verified signature documentation <verified-signature>`.
+      the :ref:`verified signature documentation <embedding-charts>`.
 
    #. :guilabel:`Unauthenticated or Verified Signature`. This option
       allows the chart to be viewed either with or without a verified

source/embedding-charts.txt

@@ -9,113 +9,53 @@ Embedding Charts in Your Web Application
 .. contents:: On this page
    :local:
    :backlinks: none
-   :depth: 1
+   :depth: 2
    :class: singlecol
 
 Overview
 --------
 
-As a dashboard :ref:`Author <dashboard-permissions>`, you can embed
-charts into your own web sites, allowing people who are not Charts
-users to see your visualizations. You can either require a verified
+As a dashboard :ref:`Author <dashboard-permissions>`, you can enable
+embedding on your charts, allowing your visualizations to be embedded
+in external web sites. You can either require a verified
 signature to accompany each data request, or allow anyone with the
 chart's identifying information to embed it in a web page.
 
 If you want strict control over who can embed your charts, use the
-:ref:`Verified Signature <require-authentication>` option. If your data
+:guilabel:`Verified Signature Required` option. If your data
 is non-sensitive and you prefer a simpler embedding solution, use the
-:ref:`Unauthenticated Access <allow-unauthenticated>` option. 
+:guilabel:`Unauthenticated Access` option.
+
+.. note::
+
+   You can enable chart embedding with the verified signature
+   required option even if you don't currently have an :ref:`embedding
+   key <admin-settings>`, but you'll need a key to generate a
+   verified signature. If you are a `Project Owner
+   <https://docs.atlas.mongodb.com/reference/user-roles/#project-roles>`__
+   for your Atlas project, you can generate an embedding key on the
+   :ref:`Admin Settings <admin-settings>` page. Otherwise, you must
+   contact the Atlas Project Owner and ask for an embedding key.
 
 .. _embedding-procedure:
 
 Procedure
 ---------
 
-From your dashboard tab, select the dashboard containing the chart you
-wish to make embeddable. From the dashboard, click the ellipsis
-(:guilabel:`...`) button at the top-right of the chart to access its
-embedding information. Select :guilabel:`Embed Chart` from the dropdown
-menu.
-
-If you have not already enabled embedding for the data source this
-uses, and if you are the data source owner, you have the opportunity to
-do so now. Click the :guilabel:`Enable embedding options` link.
-
-.. figure:: /images/charts/embed-chart-options.png
-   :figwidth: 507px
-   :alt: Embed a chart
-
-Once the data source has embedding enabled, you can choose to allow
-unauthenticated access or restrict access to those with a
-:ref:`verified signature <require-authentication>`.
-
-.. figure:: /images/charts/embed-chart.png
-   :figwidth: 507px
-   :alt: Embed a chart
-
-.. _allow-unauthenticated:
-
-Allow Unauthenticated Access
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-To allow anyone with the chart link to embed the chart in a web page,
-select the :guilabel:`Unauthenticated` tab and toggle the switch marked
-:guilabel:`Enable unauthenticated access` to :guilabel:`On`. The HTML
-code necessary to embed the chart appears in the modal window. This
-HTML snippet is ready to copy and paste into an external web page.
+.. tabs::
 
-.. figure:: /images/charts/embed-chart2.png
-   :figwidth: 508px
-   :alt: Embed unauthenticated chart
-
-.. _require-authentication:
-
-Require Authentication for Access
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-For increased security, you can require a verified signature to
-accompany each data request for an embedded chart. Select the
-:guilabel:`Verified Signature` tab and toggle the :guilabel:`Enable
-signed authentication acces` switch to :guilabel:`On`.
-
-.. figure:: /images/charts/embed-chart3.png
-   :figwidth: 508px
-   :alt: Embed authenticated chart
-
-In addition to the HTML iframe, the verified signature option requires
-some server-side code in order to work. The HTML snippet above shows
-what the iframe needs to look like, but it is not usable as-is.
-Your web application must use a secret embedding key to sign the URL
-and include a timestamp.
-
-.. _verified-signature:
-
-Verified Signature Generation
------------------------------
-
-To grant data access for embedded charts which require authentication,
-you must obtain an embedding key from the
-:ref:`Admin Settings <admin-settings>` page.
-
-.. note::
+   tabs:
+     - id: unauthenticated
+       name: Unauthenticated Access
+       content: |
 
-   You must be a :ref:`Project Owner <dashboard-permissions>` to access
-   the :guilabel:`Admin Settings` page. For users with the
-   :ref:`Project Owner <dashboard-permissions>` role, the
-   :guilabel:`Admin Settings` link appears in the top right corner of
-   the charts UI. As a non-admin user, you can still use embedded
-   charts, but you will need to ask a Project Owner for a key.
+         .. include:: /includes/steps/embed-chart-unauthenticated.rst
 
-Once you have a key, you can create the server-side code required to
-generate the verified signature which must accompany a data request
-from an embedded chart. Code examples of how to generate a verified
-signature are available for the following languages and platforms:
+     - id: verified-signature
+       name: Verified Signature Required
+       content: |
 
-- `Node.js <https://github.com/mongodb/charts-embedding-examples/tree/master/node>`__
-- `C# <https://github.com/mongodb/charts-embedding-examples/tree/master/c-sharp>`__
-- `Java <https://github.com/mongodb/charts-embedding-examples/tree/master/java>`__
-- `Python <https://github.com/mongodb/charts-embedding-examples/tree/master/python>`__
-- `MongoDB Stitch <https://github.com/mongodb/charts-embedding-examples/tree/master/stitch>`__
+         .. include:: /includes/steps/embed-chart-verified.rst
 
 Embedded Charts Error Codes
 ---------------------------
@@ -152,4 +92,4 @@ If an embedded chart fails to render, an error code is displayed:
 
    * - ``5``
      - Invalid payload. Your application server is not creating a
-       usable :ref:`signature <verified-signature>`.
+       usable :ref:`signature <admin-settings>`.

source/images/charts/embed-chart4.png

@@ -0,0 +1,52 @@
+---
+title: Select a dashboard.
+ref: select-dashboard
+level: 4
+content: |
+
+  From your dashboard tab, select the dashboard containing the chart
+  you wish to make embeddable.
+---
+title: Select a chart.
+ref: select-chart
+level: 4
+content: |
+
+  From the dashboard, click the ellipsis (:guilabel:`...`) button at
+  the top-right of the chart to access its embedding information.
+  Select :guilabel:`Embed Chart` from the dropdown menu.
+---
+title: Enable embedding on the data source
+ref: enable-data-source
+level: 4
+content: |
+
+  If you have already enabled embedding on the data source this chart
+  uses, you can skip this step. If you haven't yet enabled embedding
+  on the data source, you can do so now. Click the :guilabel:`Enable
+  embedding options` link.
+---
+title: Select the :guilabel:`Unauthenticated` tab in the dialog window.
+ref: select-unauthenticated
+level: 4
+content: |
+
+  .. figure:: /images/charts/embed-chart.png
+     :figwidth: 508px
+     :alt: Embed unauthenticated chart
+---
+title: Toggle the switch marked :guilabel:`Enable unauthenticated
+       access` to :guilabel:`On`.
+ref: toggle-unauthenticated-on
+level: 4
+content: |
+
+  The HTML code necessary to embed the chart appears in the modal
+  window. This HTML snippet is ready to copy and paste into an
+  external web page.
+
+  .. figure:: /images/charts/embed-chart2.png
+     :figwidth: 508px
+     :alt: Embed unauthenticated chart
+  
+...

source/includes/steps-embed-chart-unauthenticated.yaml

@@ -0,0 +1,104 @@
+---
+title: Select a dashboard.
+ref: select-dashboard-verified
+level: 4
+content: |
+
+  From your dashboard tab, select the dashboard containing the chart
+  you wish to make embeddable.
+---
+title: Select a chart.
+ref: select-chart-verified
+level: 4
+content: |
+
+  From the dashboard, click the ellipsis (:guilabel:`...`) button at
+  the top-right of the chart to access its embedding information.
+  Select :guilabel:`Embed Chart` from the dropdown menu.
+---
+title: Enable embedding on the data source
+ref: enable-data-source-verified
+level: 4
+content: |
+
+  If you have already enabled embedding on the data source this chart
+  uses, you can skip this step. If you haven't yet enabled embedding
+  on the data source, you can do so now. Click the :guilabel:`Enable
+  embedding options` link.
+---
+title: Select the :guilabel:`Verified Signature` tab in the dialog
+       window.
+ref: select-verified
+level: 4
+content: |
+
+  .. figure:: /images/charts/embed-chart4.png
+     :figwidth: 508px
+     :alt: Embed unauthenticated chart
+---
+title: Toggle the switch marked :guilabel:`Enable signed authentication
+       access` to :guilabel:`On`.
+ref: toggle-verified-on
+level: 4
+content: |
+
+  The HTML code which appears in the modal window shows the parameters
+  which are required to embed a chart with authentication enabled, but
+  it is not usable as-is. Continue with the subsequent steps to
+  enable authenticated access.
+---
+title: Go to :guilabel:`Admin Settings` to acquire an embedding key.
+ref: go-to-admin-settings
+level: 4
+content: |
+
+  Click the :guilabel:`Admin Settings` link below the HTML code
+  snippet in the modal window.
+
+  .. note::
+
+     You must be a :ref:`Project Owner <dashboard-permissions>` to
+     access the :guilabel:`Admin Settings` page. For users with the
+     Project Owner role, the :guilabel:`Admin Settings` link appears
+     in the top right corner of the charts UI. As a non-admin user,
+     you can still use embedded charts, but you will need to ask a
+     Project Owner for a key.
+---
+title: Generate an embedding key.
+ref: generate-key
+level: 4
+content: |
+
+  Click the :guilabel:`Generate New Key` button to create a new
+  embedding key. Store the key in a safe place.
+
+  .. warning::
+
+     If you generate a new key, any previous keys become invalid. Ensure
+     that all the existing embedded charts that use the old key are
+     updated to use the new key.
+---
+title: Create the server-side code necessary for a verified
+       signature. 
+ref: server-side-code
+level: 4
+content: |
+
+  Generating a verified signature to accompany data requests from
+  embedded charts with authentication enabled requires server-side
+  code. The verified signature creates a payload by generating a
+  `HMAC <https://en.wikipedia.org/wiki/HMAC>`__ from your embedding
+  key, a timestamp, and identifying data from your chart. The verified
+  signature is valid for a limited time period specified in your
+  server-side code.
+
+  Code examples demonstrating how to generate a verified
+  signature are available for the following languages and platforms:
+
+  - `Node.js <https://github.com/mongodb/charts-embedding-examples/tree/master/node>`__
+  - `C# <https://github.com/mongodb/charts-embedding-examples/tree/master/c-sharp>`__
+  - `Java <https://github.com/mongodb/charts-embedding-examples/tree/master/java>`__
+  - `Python <https://github.com/mongodb/charts-embedding-examples/tree/master/python>`__
+  - `MongoDB Stitch <https://github.com/mongodb/charts-embedding-examples/tree/master/stitch>`__
+
+...

source/includes/steps-embed-chart-verified.yaml

@@ -147,6 +147,7 @@ uses this region to calculate the fees.
       /data-sources
       /build-charts
       /chart-types
+      Chart Embedding </embedding-charts>
       /admin-settings
       /release-notes
       /third-party-licenses