Task pane AuthenticationΒΆ
By setting XLWINGS_AUTH_PROVIDERS
in the Config, xlwings Server will authentication calls to Custom Functions and Custom Scripts. Since the task pane is completely customizable, it is your responsibility to lock down the desired endpoints:
The landing page of the task pane needs to be publicly available
The rest of the pages can be locked down using the
User
dependency injectionYou will need to provide the
Authorization
header with every request. Forhtmx
, there is a sample included underapp/templates/examples/auth
.