guideExport to Word On-Premises authorization

Export to Word On-Premises can be run in two modes:

  • private – with authorization – the requests must have a header with a JWT (JSON Web Token)
  • public – without authorization – the requests don’t need to have a token

By default the public mode without authorization is enabled.

# Private

In this mode all requests must have a header with a token signed by the SECRET_KEY.
The token should be passed as a value of the Authorization header for each request sent to the Export to Word converter REST API.

To enable authorization, set SECRET_KEY environment variable during the installation.

Plugins for CKEditor 4 and CKEditor 5 will automatically set the Authorization header. To configure the plugin you should set the address to the a token endpoint. You can find an example of a token endpoint here.
Tokens for the Export to Word converter do not require any additional claims like an environment ID (which is specific for Collaboration Server On-Premises) so you can create the token with an empty payload.

# Public

In this mode, the requests do not need to have a token, so it does not require any additional mechanisms. However, we recommend using this mode only when running Export to Word On-Premises in a private network.