diff --git a/frontend/src/shared-file-view-sdoc.js b/frontend/src/shared-file-view-sdoc.js
index d9a3f0e225..2e98540750 100644
--- a/frontend/src/shared-file-view-sdoc.js
+++ b/frontend/src/shared-file-view-sdoc.js
@@ -6,20 +6,27 @@ import i18n from './_i18n/i18n-sdoc-editor';
 import Loading from './components/loading';
 import { Utils } from './utils/utils';
 
-const { serviceURL, siteRoot } = window.app.config;
-const { username, filePerm } = window.app.pageOptions;
-const { repoID, filePath, fileName, rawPath, assetsUrl } = window.shared.pageOptions;
+const { serviceURL, siteRoot, avatarURL } = window.app.config;
+const { username } = window.app.pageOptions;
+const {
+  repoID, filePerm,
+  docPath, docName, docUuid, seadocAccessToken, seadocServerUrl, assetsUrl
+} = window.shared.pageOptions;
 
 window.seafile = {
   repoID,
-  rawPath: rawPath,
-  docName: fileName,  // required
-  docPath: filePath,
+  docPath,
+  docName,
+  docUuid,
+  isOpenSocket: true,
   serviceUrl: serviceURL,
+  accessToken: seadocAccessToken,
+  sdocServer: seadocServerUrl,
   username,
+  avatarURL,
   siteRoot,
   docPerm: filePerm,
-  historyURL: Utils.generateHistoryURL(siteRoot, repoID, filePath),
+  historyURL: Utils.generateHistoryURL(siteRoot, repoID, docPath),
   assetsUrl,
 };
 
diff --git a/seahub/seadoc/apis.py b/seahub/seadoc/apis.py
index 7890ef5413..87b28ddfe5 100644
--- a/seahub/seadoc/apis.py
+++ b/seahub/seadoc/apis.py
@@ -78,7 +78,7 @@ class SeadocAccessToken(APIView):
 
         #
         file_uuid = get_seadoc_file_uuid(repo, path)
-        access_token = gen_seadoc_access_token(file_uuid, filename, username)
+        access_token = gen_seadoc_access_token(file_uuid, filename, username, permission=permission)
 
         return Response({'access_token': access_token})
 
@@ -259,7 +259,7 @@ class SeadocUploadImage(APIView):
 class SeadocDownloadImage(APIView):
 
     authentication_classes = (TokenAuthentication, SessionAuthentication)
-    permission_classes = (IsAuthenticated,)
+    permission_classes = ()
     throttle_classes = (UserRateThrottle, )
 
     def get(self, request, file_uuid, filename):
@@ -272,7 +272,7 @@ class SeadocDownloadImage(APIView):
         username = request.user.username
         # permission check
         file_path = posixpath.join(uuid_map.parent_path, uuid_map.filename)
-        if not can_access_seadoc_asset(request, repo_id, file_path):
+        if not can_access_seadoc_asset(request, repo_id, file_path, file_uuid):
             error_msg = 'Permission denied.'
             return api_error(status.HTTP_403_FORBIDDEN, error_msg)
 
diff --git a/seahub/seadoc/utils.py b/seahub/seadoc/utils.py
index 817670199d..a03f28016b 100644
--- a/seahub/seadoc/utils.py
+++ b/seahub/seadoc/utils.py
@@ -162,8 +162,13 @@ def get_seadoc_asset_download_link(repo_id, parent_path, filename, username):
     return download_link
 
 
-def can_access_seadoc_asset(request, repo_id, path):
-    if check_folder_permission(request, repo_id, path):
+def can_access_seadoc_asset(request, repo_id, path, file_uuid):
+    # login user
+    if request.user.username and check_folder_permission(request, repo_id, path):
         return True
-    # todo share link
+    # share link
+    seadoc_share_session = request.session.get('seadoc_share_session')
+    if seadoc_share_session and seadoc_share_session.get('file_uuid') == file_uuid:
+        return True
+
     return False
diff --git a/seahub/templates/shared_file_view_react.html b/seahub/templates/shared_file_view_react.html
index c857554370..66e11112ea 100644
--- a/seahub/templates/shared_file_view_react.html
+++ b/seahub/templates/shared_file_view_react.html
@@ -90,7 +90,18 @@ body {
       {% endif %}
       prevImgPath: {% if img_prev %}'{{ img_prev|escapejs }}'{% else %}''{% endif %},
       nextImgPath: {% if img_next %}'{{ img_next|escapejs }}'{% else %}''{% endif %},
-      assetsUrl: '{{ assets_url }}'
+      assetsUrl: '{{ assets_url }}',
+
+      {% if filetype == 'SDoc' %}
+        docPath: '{{ path|escapejs }}',
+        docName: '{{ file_name|escapejs }}',
+        docUuid: '{{ file_uuid }}',
+        assetsUrl: '{{ assets_url }}',
+        seadocAccessToken: '{{ seadoc_access_token }}',
+        seadocServerUrl: '{{ seadoc_server_url }}',
+        canEditFile: {% if can_edit_file %}true{% else %}false{% endif %},
+        filePerm: '{{ file_perm }}',
+      {% endif %}
     }
   };
 </script>
diff --git a/seahub/views/file.py b/seahub/views/file.py
index 4316b9f1f1..81a28e763d 100644
--- a/seahub/views/file.py
+++ b/seahub/views/file.py
@@ -658,7 +658,6 @@ def view_lib_file(request, repo_id, path):
         return_dict['file_uuid'] = file_uuid
         return_dict['assets_url'] = '/api/v2.1/seadoc/download-image/' + file_uuid
         return_dict['seadoc_server_url'] = SEADOC_SERVER_URL
-        return_dict['seadoc_access_token'] = gen_seadoc_access_token(file_uuid, filename, username)
 
         can_edit_file = True
         if parse_repo_perm(permission).can_edit_on_web is False:
@@ -666,7 +665,9 @@ def view_lib_file(request, repo_id, path):
         elif is_locked and not locked_by_me:
             can_edit_file = False
 
+        seadoc_perm = 'rw' if can_edit_file else 'r'
         return_dict['can_edit_file'] = can_edit_file
+        return_dict['seadoc_access_token'] = gen_seadoc_access_token(file_uuid, filename, username, permission=seadoc_perm)
 
         send_file_access_msg(request, repo, path, 'web')
         return render(request, template, return_dict)
@@ -1228,6 +1229,23 @@ def view_shared_file(request, fileshare):
     ret_dict = {'err': '', 'file_content': '', 'encoding': '', 'file_enc': '',
                 'file_encoding_list': [], 'filetype': filetype}
 
+    if filetype == SEADOC:
+        file_uuid = get_seadoc_file_uuid(repo, path)
+        ret_dict['file_uuid'] = file_uuid
+        ret_dict['assets_url'] = '/api/v2.1/seadoc/download-image/' + file_uuid
+        ret_dict['seadoc_server_url'] = SEADOC_SERVER_URL
+        ret_dict['can_edit_file'] = can_edit
+        seadoc_perm = 'rw' if can_edit else 'r'
+        ret_dict['file_perm'] = seadoc_perm
+        ret_dict['seadoc_access_token'] = gen_seadoc_access_token(file_uuid, filename, username, permission=seadoc_perm)
+
+        send_file_access_msg(request, repo, path, 'web')
+        request.session['seadoc_share_session'] = {
+            'file_uuid': file_uuid,
+            'permission': seadoc_perm,
+            'seadoc_access_token': ret_dict['seadoc_access_token'],
+        }
+
     if filetype in (DOCUMENT, SPREADSHEET):
 
         def online_office_lock_or_refresh_lock(repo_id, path, username):
@@ -1315,8 +1333,7 @@ def view_shared_file(request, fileshare):
     desc_for_ogp = _('Share link for %s.') % filename
     icon_path_for_ogp = file_icon_filter(filename, size=192)
 
-    return render(request, template, {
-            'repo': repo,
+    data = {'repo': repo,
             'obj_id': obj_id,
             'path': path,
             'file_name': filename,
@@ -1340,7 +1357,16 @@ def view_shared_file(request, fileshare):
             'desc_for_ogp': desc_for_ogp,
             'icon_path_for_ogp': icon_path_for_ogp,
             'enable_share_link_report_abuse': ENABLE_SHARE_LINK_REPORT_ABUSE,
-            })
+        }
+    if filetype == SEADOC:
+        data['file_uuid'] = ret_dict['file_uuid']
+        data['assets_url'] = ret_dict['assets_url']
+        data['seadoc_server_url'] = ret_dict['seadoc_server_url']
+        data['seadoc_access_token'] = ret_dict['seadoc_access_token']
+        data['can_edit_file'] = ret_dict['can_edit_file']
+        data['file_perm'] = ret_dict['file_perm']
+
+    return render(request, template, data)
 
 @share_link_audit
 @share_link_login_required
@@ -1436,10 +1462,23 @@ def view_file_via_shared_dir(request, fileshare):
     filetype, fileext = get_file_type_and_ext(filename)
     ret_dict = {'err': '', 'file_content': '', 'encoding': '', 'file_enc': '',
                 'file_encoding_list': [], 'filetype': filetype}
-    
+
     if filetype == SEADOC:
-        file_uuid = get_seadoc_file_uuid(repo, raw_path)
+        file_uuid = get_seadoc_file_uuid(repo, real_path)
+        ret_dict['file_uuid'] = file_uuid
         ret_dict['assets_url'] = '/api/v2.1/seadoc/download-image/' + file_uuid
+        ret_dict['seadoc_server_url'] = SEADOC_SERVER_URL
+        ret_dict['can_edit_file'] = can_edit
+        seadoc_perm = 'rw' if can_edit else 'r'
+        ret_dict['file_perm'] = seadoc_perm
+        ret_dict['seadoc_access_token'] = gen_seadoc_access_token(file_uuid, filename, username, permission=seadoc_perm)
+
+        send_file_access_msg(request, repo, real_path, 'web')
+        request.session['seadoc_share_session'] = {
+            'file_uuid': file_uuid,
+            'permission': seadoc_perm,
+            'seadoc_access_token': ret_dict['seadoc_access_token'],
+        }
 
     if filetype in (DOCUMENT, SPREADSHEET):
 
@@ -1544,8 +1583,7 @@ def view_file_via_shared_dir(request, fileshare):
     desc_for_ogp = _('Share link for %s.') % filename
     icon_path_for_ogp = file_icon_filter(filename, size=192)
 
-    return render(request, template, {
-            'repo': repo,
+    data = {'repo': repo,
             'obj_id': obj_id,
             'from_shared_dir': True,
             'path': req_path,
@@ -1572,7 +1610,16 @@ def view_file_via_shared_dir(request, fileshare):
             'desc_for_ogp': desc_for_ogp,
             'icon_path_for_ogp': icon_path_for_ogp,
             'enable_share_link_report_abuse': ENABLE_SHARE_LINK_REPORT_ABUSE,
-            })
+        }
+    if filetype == SEADOC:
+        data['file_uuid'] = ret_dict['file_uuid']
+        data['assets_url'] = ret_dict['assets_url']
+        data['seadoc_server_url'] = ret_dict['seadoc_server_url']
+        data['seadoc_access_token'] = ret_dict['seadoc_access_token']
+        data['can_edit_file'] = ret_dict['can_edit_file']
+        data['file_perm'] = ret_dict['file_perm']
+
+    return render(request, template, data)
 
 @login_required
 def view_raw_file(request, repo_id, file_path):