diff --git a/dashboard/internet_nl_dashboard/logic/domains.py b/dashboard/internet_nl_dashboard/logic/domains.py
index d75dff9c..a9bc9797 100644
--- a/dashboard/internet_nl_dashboard/logic/domains.py
+++ b/dashboard/internet_nl_dashboard/logic/domains.py
@@ -7,6 +7,7 @@
 from actstream import action
 from constance import config
 from django.db.models import Count, Prefetch
+from django.http import JsonResponse
 from django.utils import timezone
 from websecmap.organizations.models import Url
 from websecmap.scanners.models import Endpoint
@@ -18,6 +19,9 @@
                                                     determine_next_scan_moment)
 from dashboard.internet_nl_dashboard.scanners.scan_internet_nl_per_account import (initialize_scan,
                                                                                    update_state)
+import pyexcel as p
+
+from dashboard.internet_nl_dashboard.views.download_spreadsheet import create_spreadsheet_download
 
 log = logging.getLogger(__package__)
 
@@ -796,3 +800,25 @@ def delete_url_from_urllist(account: Account, urllist_id: int, url_id: int) -> b
     urllist.urls.remove(url_is_in_list)
 
     return True
+
+
+def download_as_spreadsheet(account: Account, urllist_id: int, file_type: str = "xlsx") -> Any:
+
+    urls = TaggedUrlInUrllist.objects.all().filter(
+        urllist__account=account,
+        urllist__pk=urllist_id
+    )
+
+    if not urls:
+        return JsonResponse({})
+
+    # results is a matrix / 2-d array / array with arrays.
+    data: List[List[Any]] = []
+    data += [["List(s)", "Domain(s)", "Tags"]]
+
+    for url in urls.all():
+        data += [[url.urllist.name, url.url.url, ", ".join(url.tags.values_list('name', flat=True))]]
+
+    book = p.get_book(bookdict={"Domains": data})
+
+    return create_spreadsheet_download("internet dashboard list", book, file_type)
diff --git a/dashboard/internet_nl_dashboard/migrations/0013_auto_20230302_1418.py b/dashboard/internet_nl_dashboard/migrations/0013_auto_20230302_1418.py
new file mode 100644
index 00000000..8a41ed1e
--- /dev/null
+++ b/dashboard/internet_nl_dashboard/migrations/0013_auto_20230302_1418.py
@@ -0,0 +1,28 @@
+# Generated by Django 3.2.16 on 2023-03-02 14:18
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ('internet_nl_dashboard', '0012_urllistreport_is_shared_on_homepage'),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name='urllist',
+            name='automatically_share_new_reports',
+            field=models.BooleanField(default=False, help_text='Sharing can be disabled and re-enabled where the report code and the share code (password) stay the same. Sharing means that all new reports will be made public under a set of standard urls.'),
+        ),
+        migrations.AddField(
+            model_name='urllist',
+            name='default_public_share_code_for_new_reports',
+            field=models.CharField(blank=True, default='', help_text='An unencrypted share code that can be seen by all users in an account. Can be modified by all. New reports get this code set automatically. You can change this per report. An empty field means no share code and the report is accessible publicly.', max_length=64),
+        ),
+        migrations.AddField(
+            model_name='urllist',
+            name='enable_report_sharing_page',
+            field=models.BooleanField(default=False, help_text='When true there will be page under the list-id that shows all reports that are shared publicly.'),
+        ),
+    ]
diff --git a/dashboard/internet_nl_dashboard/models.py b/dashboard/internet_nl_dashboard/models.py
index 407a39d4..4ed6b8e3 100644
--- a/dashboard/internet_nl_dashboard/models.py
+++ b/dashboard/internet_nl_dashboard/models.py
@@ -226,6 +226,32 @@ class UrlList(models.Model):
         blank=True
     )
 
+    enable_report_sharing_page = models.BooleanField(
+        default=False,
+        help_text="When true there will be page under the list-id that shows all reports that are shared publicly."
+    )
+
+    # will be available under: /public/account-id/list-id/latest
+    # will be available under: /public/account-id/list-id/list (for a list of public reports for this list)
+    #   and                    /public/account-id/list-id/report-id
+    #   and                    /public/account-id/list-name-slug/latest
+    #   and                    /public/account-id/list-name-slug/report-id
+    automatically_share_new_reports = models.BooleanField(
+        help_text="Sharing can be disabled and re-enabled where the report code and the share code (password) "
+                  "stay the same. Sharing means that all new reports will be made public under a set of standard urls.",
+        default=False
+    )
+
+    default_public_share_code_for_new_reports = models.CharField(
+        max_length=64,
+        help_text="An unencrypted share code that can be seen by all users in an account. Can be modified by all. "
+                  "New reports get this code set automatically. You can change this per report. An empty field "
+                  "means no share code and the report is accessible publicly.",
+        blank=True,
+        default=""
+    )
+
+
     def __str__(self):
         return "%s/%s" % (self.account, self.name)
 
diff --git a/dashboard/internet_nl_dashboard/urls.py b/dashboard/internet_nl_dashboard/urls.py
index ee84406b..3c40da0f 100644
--- a/dashboard/internet_nl_dashboard/urls.py
+++ b/dashboard/internet_nl_dashboard/urls.py
@@ -50,6 +50,7 @@ def to_url(value):
     path('data/urllist/url/save/', domains.alter_url_in_urllist_),
     path('data/urllist/url/add/', domains.add_urls_to_urllist),
     path('data/urllist/url/delete/', domains.delete_url_from_urllist_),
+    path('data/urllist/download/', domains.download_list_),
 
     path('data/urllist/tag/add/', tags.add_tag_),
     path('data/urllist/tag/remove/', tags.remove_tag_),
diff --git a/dashboard/internet_nl_dashboard/views/domains.py b/dashboard/internet_nl_dashboard/views/domains.py
index 6d730251..f2c28dc3 100644
--- a/dashboard/internet_nl_dashboard/views/domains.py
+++ b/dashboard/internet_nl_dashboard/views/domains.py
@@ -3,6 +3,7 @@
 
 from django.contrib.auth.decorators import login_required
 from django.http import JsonResponse
+from django.views.decorators.http import require_http_methods
 from websecmap.app.common import JSEncoder
 
 from dashboard.internet_nl_dashboard.logic.domains import (alter_url_in_urllist, cancel_scan,
@@ -13,7 +14,7 @@
                                                            get_urllists_from_account,
                                                            save_urllist_content,
                                                            save_urllist_content_by_name, scan_now,
-                                                           update_list_settings)
+                                                           update_list_settings, download_as_spreadsheet)
 from dashboard.internet_nl_dashboard.views import LOGIN_URL, get_account, get_json_body
 
 
@@ -81,3 +82,11 @@ def cancel_scan_(request):
     request = get_json_body(request)
     response = cancel_scan(account, request.get('id'))
     return JsonResponse(response)
+
+
+@login_required(login_url=LOGIN_URL)
+@require_http_methods(["POST"])
+def download_list_(request):
+    params = get_json_body(request)
+    return download_as_spreadsheet(get_account(request), params.get('list-id', None), params.get('file-type', None))
+
diff --git a/dashboard/internet_nl_dashboard/views/download_spreadsheet.py b/dashboard/internet_nl_dashboard/views/download_spreadsheet.py
index 5e7e903c..2b8be00d 100644
--- a/dashboard/internet_nl_dashboard/views/download_spreadsheet.py
+++ b/dashboard/internet_nl_dashboard/views/download_spreadsheet.py
@@ -1,11 +1,11 @@
 # SPDX-License-Identifier: Apache-2.0
 import logging
+from typing import Any
 
 import django_excel as excel
 from django.contrib.auth.decorators import login_required
 from django.http import HttpResponse, JsonResponse
 from django.utils.text import slugify
-from websecmap.app.common import JSEncoder
 
 from dashboard.internet_nl_dashboard.logic.report_to_spreadsheet import (create_spreadsheet,
                                                                          upgrade_excel_spreadsheet)
@@ -20,30 +20,39 @@ def download_spreadsheet(request, report_id, file_type) -> HttpResponse:
 
     filename, spreadsheet = create_spreadsheet(account=account, report_id=report_id)
 
-    if not spreadsheet:
-        return JsonResponse({}, encoder=JSEncoder)
-
     if file_type == "xlsx":
         # todo: requesting infinite files will flood the system as temp files are saved. Probably load file into
         #   memory and then remove the original file. With the current group of users the risk is minimal, so no bother
-        tmp_file_handle = upgrade_excel_spreadsheet(spreadsheet)
-        with open(tmp_file_handle.name, 'rb') as file_handle:
-            response = HttpResponse(file_handle.read(),
-                                    content_type="application/vnd.openxmlformats-officedocument.spreadsheetml.sheet")
-            response["Content-Disposition"] = f"attachment; filename={slugify(filename)}.xlsx"
-        return response
-
-    if file_type == "ods":
-        output: HttpResponse = excel.make_response(spreadsheet, file_type)
-        output["Content-Disposition"] = f"attachment; filename={slugify(filename)}.ods"
-        output["Content-type"] = "application/vnd.oasis.opendocument.spreadsheet"
-        return output
-
-    if file_type == "csv":
-        output = excel.make_response(spreadsheet, file_type)
-        output["Content-Disposition"] = f"attachment; filename={slugify(filename)}.csv"
-        output["Content-type"] = "text/csv"
-        return output
-
-    # anything that is not valid at all.
-    return JsonResponse({}, encoder=JSEncoder)
+
+        # Upgrading happens with openpyxl which supports formulas. You cannot open those files with django_excel as
+        # that does _not_ understand formulas and will simply delete them.
+        file_type = "xlsx-openpyxl"
+        spreadsheet = upgrade_excel_spreadsheet(spreadsheet)
+
+    return create_spreadsheet_download(filename, spreadsheet, file_type)
+
+
+def create_spreadsheet_download(file_name: str, spreadsheet_data: Any, file_type: str = "xlsx") -> HttpResponse:
+
+    if file_type not in ["xlsx", "ods", "csv", "xlsx-openpyxl"] or not spreadsheet_data or not file_name:
+        return JsonResponse({})
+
+    content_types = {
+        "csv": "text/csv",
+        "ods": "application/vnd.oasis.opendocument.spreadsheet",
+        "xlsx": "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet",
+        "xlsx-openpyxl": "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet",
+    }
+
+    if file_type == "xlsx-openpyxl":
+        with open(spreadsheet_data.name, 'rb') as file_handle:
+            output = HttpResponse(file_handle.read())
+        file_type = "xlsx"
+    else:
+        # Simple xls files and such
+        output: HttpResponse = excel.make_response(spreadsheet_data, file_type)
+
+    output["Content-Disposition"] = f"attachment; filename={slugify(file_name)}.{file_type}"
+    output["Content-type"] = content_types[file_type]
+
+    return output
diff --git a/index.html b/index.html
new file mode 100644
index 00000000..502cadeb
--- /dev/null
+++ b/index.html
@@ -0,0 +1,228 @@
+
+
+<!DOCTYPE html>
+<!--[if IE 8]> <html lang="nl" class="ie8 no-js"> <![endif]-->
+<!--[if IE 9]> <html lang="nl" class="ie9 no-js"> <![endif]-->
+<!--[if !IE]><!-->
+<html lang="nl" class="no-js">
+<head>
+  <meta charset="utf-8" />
+  <title>Djuma E-Loket</title>
+  <meta http-equiv="X-UA-Compatible" content="IE=edge">
+  <meta content="width=device-width, initial-scale=1" name="viewport" />
+  <meta content="" name="description" />
+  <meta content="" name="author" />
+  <meta content="1.0.174.1" name="version" />
+  <meta content="01" name="reference" />
+  <meta content="none" name="msapplication-config" />
+   
+  <link href="//fonts.googleapis.com/css?family=Open+Sans:400,300,600,700&amp;subset=all" rel="stylesheet" type="text/css" />
+
+  <link href="/Content/WbdId?v=q6sKU3IZpVDTj2z3LqDazOKVs8Mz10FlWn2sUHtZnbI1" rel="stylesheet"/>
+
+
+
+
+    <link rel="shortcut icon" href="/Content/Custom/Images/Icons/favicon.ico" type="image/x-icon" />
+  <link rel="apple-touch-icon" href="/Content/Custom/Images/Icons/apple-touch-icon.png" />
+  <link rel="apple-touch-icon" sizes="57x57" href="/Content/Custom/Images/Icons/apple-touch-icon-57x57.png" />
+  <link rel="apple-touch-icon" sizes="72x72" href="/Content/Custom/Images/Icons/apple-touch-icon-72x72.png" />
+  <link rel="apple-touch-icon" sizes="76x76" href="/Content/Custom/Images/Icons/apple-touch-icon-76x76.png" />
+  <link rel="apple-touch-icon" sizes="114x114" href="/Content/Custom/Images/Icons/apple-touch-icon-114x114.png" />
+  <link rel="apple-touch-icon" sizes="120x120" href="/Content/Custom/Images/Icons/apple-touch-icon-120x120.png" />
+  <link rel="apple-touch-icon" sizes="144x144" href="/Content/Custom/Images/Icons/apple-touch-icon-144x144.png" />
+  <link rel="apple-touch-icon" sizes="152x152" href="/Content/Custom/Images/Icons/apple-touch-icon-152x152.png" />
+  <link rel="apple-touch-icon" sizes="180x180" href="/Content/Custom/Images/Icons/apple-touch-icon-180x180.png" />
+  
+  <script>
+    
+    redirectIfHashStartsWith('#/nxt/'); 
+    redirectIfHashStartsWith('#/nxt-'); 
+
+    function redirectIfHashStartsWith(expectedStart) {
+      var hash = location.hash || '';
+      var starts = hash.substr(0, expectedStart.length);
+      if (starts === expectedStart) {
+        location.href = location.href.replace('#/', '');
+      }
+    }
+  </script>
+
+  <script>
+    var baseUrl = '/{area}/{controller}/{action}'; // passing an area to Url.Action does not work here (Url.Action returns null), so we have to use Url.Content
+    var baseContentUrl = '/Content/{relativePath}';
+    var defaultErrorMessage = "Er is iets fout gegaan, probeer het later nog eens.";
+    var wopiClientUrl = "";
+    var eformulierFinishUrl = "http://www.brabantsedelta.nl/";
+    var eformulierFinishStopUrl = "http://www.brabantsedelta.nl/";
+    var klantportaalFinishUrl = "http://www.brabantsedelta.nl/";
+
+    // Contains the maximum allowed request length in bytes.
+    // Max total size for files that can be uploaded in one request. Equals the max request length minus 2 MB.
+    var maxFilesSize = (18432 -2048) * 1024;
+
+    var maxRequestLengthFriendlyErrorMessageForExceededForSingleFile = "Fout tijdens het uploaden van het bestand '{0}'. Het bestand mag niet groter dan {1} zijn. Het bestand is nu {2} groot.";
+    var maxRequestLengthFriendlyErrorMessageForExceededForMultipleFiles = "Fout tijdens het uploaden van de bestanden. De bestanden {0} mogen samen niet groter dan {1} zijn. De huidige grootte is {2}.";
+    var friendlyErrorMessageForNotAllowedFileExtension = "Alleen bestanden van de volgende types zijn toegestaan: pdf, gif, jpg, png, jpeg, dsc, efdj, docx, xlsx.";
+    var friendlyErrorMessageForDuplicateFileName = "Dubbele bestandsnamen zijn niet toegestaan. Een bestand met de naam '{0}' is al toegevoegd aan de lijst van bijlagen.";
+    var friendlyErrorMessageForFileWithNoData = "Lege bestanden zijn niet toegestaan. Bestand met naam '{0}' bevat geen data.";
+
+    var allowedFileExtensionsAsString = "pdf,gif,jpg,png,jpeg,dsc,efdj,docx,xlsx";
+    var allowedFileExtensions = [];
+    if (allowedFileExtensionsAsString) {
+      allowedFileExtensions = allowedFileExtensionsAsString.split(',');
+    }
+
+    function createUrl(area, controller, action) {
+      /// <summary>Creates an URL for redirecting to a controller outside the current area.</summary>
+      /// <param name="area">Name of the area. Specify an empty string if you want to redirect to a top-level controller (in the /Controller folder).</param>
+      /// <param name="controller" type="String">The controller</param>
+      /// <param name="action" type="String">The action on the controller</param>
+      return baseUrl.replace("{area}", area).replace("{controller}", controller).replace("{action}", action).replace("//", "/");
+    }
+
+    function createContentUrl(relativePath) {
+      /// <summary>Creates an URL to a file in the "~/Content" folder.</summary>
+      /// <param name="relativePath">Path to a file relative to the "~/Content/" folder.</param>
+      return baseContentUrl.replace("{relativePath}", relativePath);
+    }
+  </script>
+
+  <script src="/DynamicScripts/resources.js"></script>
+
+  <script src="/Scripts/HeaderScripts?v=fnoemrAaB7iA-r7AbPQiV-ZmhIZGLV89viXpIg69Cwo1"></script>
+
+  <script type="text/javascript">
+    log4javascript.setEnabled(true);
+  </script>
+
+  
+</head>
+
+<body data-ng-app="zaaksysteem" data-ng-controller="rootController" data-cng-block-ui="loadingOrPostingData > 0" class="page-header-fixed" data-cng-application-initialization>
+
+
+
+<div class="page-header navbar" data-ng-controller="applicationHeaderController">
+  <!-- BEGIN TOP NAVIGATION BAR -->
+  <div class="page-header-inner">
+    <!-- BEGIN LOGO -->
+    <div class="page-logo">
+      <img src="/Content/DjumaUI/images/Djuma-logo.svg" alt="logo" class="logo-default" />
+    </div>
+    <!-- END LOGO -->
+  </div>
+
+  <!-- BEGIN RESPONSIVE MENU TOGGLER -->
+  <a href="javascript:;"
+     class="menu-toggler responsive-toggler"
+     data-ng-show="(shouldDisplayLogoutButton() && isLoggedIn()) || !hideMenu()"
+     data-toggle="collapse"
+     data-target=".navbar-collapse">
+    <i class="fa fa-bars"></i>
+  </a>
+  <!-- END RESPONSIVE MENU TOGGLER -->
+  <!-- BEGIN TOP NAVIGATION MENU -->
+  <div class="top-menu">
+    <ul class="nav navbar-nav collapse hidden-xs hidden-sm pull-right">
+      <li>
+        <button type="button"
+                data-ng-show="shouldDisplayLogoutButton()"
+                data-ng-disabled="!isLoggedIn()"
+                data-ng-click="logOut()"
+                class="btn btn-primary btn-logout pull-right ng-hide">
+          <i class="fa fa-sign-out"></i>
+          Afmelden
+        </button>
+
+      </li>
+
+    </ul>
+  </div>
+  <!-- END TOP NAVIGATION BAR -->
+</div>
+  <div class="clearfix"></div>
+
+  <div class="page-container page-full-width" data-ng-class="{ 'page-full-width' : hideMenu() }">
+
+<div class="page-sidebar-wrapper" data-ng-controller="applicationHeaderController">
+  <div class="page-sidebar navbar-collapse collapse">
+    
+    <ul class="page-sidebar-menu">
+      <li class="nav-item" data-ng-class="{active : activeViewPath.indexOf('/p/' + getCurrentIdentificatieWijze() + '/mijngegevens') == 0}" data-ng-if="!hideMenu()">
+        <a id="mijngegevens-link" href="#/p/{{getCurrentIdentificatieWijze()}}/mijngegevens" class="nav-link">
+          <i class="fa fa-user"></i>
+          <span class="title">Mijn gegevens</span>
+        </a>
+      </li>
+
+      <li class="nav-item" data-ng-class="{active : activeViewPath.indexOf('/p/' + getCurrentIdentificatieWijze() + '/mijnzaken') == 0}" data-ng-if="!hideMenu()">
+        <a id="mijnzaken-link" href="#/p/{{getCurrentIdentificatieWijze()}}/mijnzaken" class="nav-link">
+          <i class="fa fa-folder-open"></i>
+          <span class="title">Mijn zaken</span>
+        </a>
+      </li>
+
+      <li class="nav-item hidden-md hidden-lg">
+        <a href="#"
+           onclick="return false;"
+           data-ng-click="logOut()"
+           class="nav-link">
+          <i class="fa fa-sign-out"></i>
+          <span class="title">Afmelden</span>
+        </a>
+      </li>
+
+      <li class="sidebar-toggler-wrapper">
+        
+        <div class="sidebar-toggler desktop-only">
+          <i class="fa fa-angle-left"></i>
+          <span>Minimaliseer</span>
+        </div>
+        
+      </li>
+    </ul>
+    
+  </div>
+</div>
+
+    <div class="page-content-wrapper" data-cng-request-verification-token="yE_LGvG0KdCSaUzV5wnl_SldJ9Qi6Ez08nY0Z3Nm2dC_EhAdaGahzYGekcRuDP5eNgVuaqePFgcBseqeHo2rNWM6NNk1:WtDxu2DhGMpurMmOPVyZhtB8SmZ8vhXGLnbg6bGyb4CQyU2_aajzBrIwx2cj6kfREQOaWkhFAP8PnFiNqkYZuZAyRu01">
+      <div class="page-content">
+
+<div data-default-page-content-errors></div><div class="page-content-inner container-fluid" data-ng-view data-cng-page-content data-cng-page-content-locale="U heeft nog gegevens in bewerking. Kies voor opslaan of annuleren bij de betreffende gegevens."></div>        <div class="clearfix"></div>
+      </div>
+    </div>
+  </div>
+
+  <!-- BEGIN JAVASCRIPTS(Load javascripts at bottom, this will reduce page load time) -->
+  <script src="/Scripts/Plugins?v=EcUQ9nFns3vE93janJBavlkrpf7YigFfL3HiH0NsXwo1"></script>
+
+
+  
+
+  <script src="/Scripts/UIComponents/angular-locale_nl-nl.js"></script>
+  <script src="/Scripts/CustomScripts?v=vTYEh34jDU2Ay1t1VmIGyaqWiZZwsMJJtkfyFngT7AY1"></script>
+
+  
+  
+  
+
+
+<script type="text/ng-template" id="cngErrorPopup.html">
+  <div class="modal-header">
+    <h1>Fout</h1>
+  </div>
+  <div class="modal-body form-horizontal">
+    Er is een fout opgetreden in verbinding met de server. De fout is gelogd.<br /><br />
+    <a href="#" data-ng-show="!showDetails" data-ng-click="showDetails = true">Toon details</a>
+    <a href="#" data-ng-show="showDetails" data-ng-click="showDetails = false">Verberg details</a>
+    <br /><br />
+    <div data-ng-show="showDetails">{{error}}</div>
+  </div>
+  <div class="modal-footer">
+    <button class="btn btn-primary" data-ng-click="ok()">OK</button>
+  </div>
+</script>
+
+</body>
+</html>