Export to Word On-Premises authorization
Export to Word On-Premises can be run in two modes:
- private – with authorization – the requests must have a header with a JWT (JSON Web Token)
- public – without authorization – the requests don’t need to have a token
By default the public mode without authorization is enabled.
In this mode all requests must have a header with a token signed by the
The token should be passed as a value of the
Authorization header for each request sent to the Export to Word converter REST API.
To enable authorization, set
SECRET_KEY environment variable during the installation.
Plugins for CKEditor 4 and CKEditor 5 will automatically set the
Authorization header. To configure the plugin you should set the address to the a token endpoint. You can find an example of a token endpoint here.
Tokens for the Export to Word converter do not require any additional claims like an environment ID (which is specific for CKEditor Cloud Services On-Premises) so you can create the token with an empty payload.
In this mode, the requests do not need to have a token, so it does not require any additional mechanisms. However, we recommend using this mode only when running Export to Word On-Premises in a private network.