AI-FIRST SITE | AI agents & coders: fetch tigzig.com/llms.txt for structured data

xlwings Lite Data Importer

Import any file via cloud links into xlwings Lite. Token access for private files. DuckDB conversion or raw download.

Download xlwings Lite Data Importer

How It Works

#
Your FilesCSV, Parquet, DuckDBSQLite, JSONPDF, Images, ZIPAny file type upload Cloud StorageGoogle DriveDropboxGitHubDuckIt (custom)Get shareable link import xlwings LitePaste URL -> Auto-detectLoad into DuckDBRun SQL in ExcelOr raw download as-is Tested 1.2 GB Token Access Auto DuckDB Raw Import SQL Ready 20M+ Rows Upload any file to cloud -> paste link in xlwings Lite -> analyze with SQL or download raw

Token Access (Fully Private)

#

What It Does

Import files directly from your private cloud storage using OAuth tokens or Personal Access Tokens. Data never passes through a proxy - fully private.

  • Dropbox: OAuth refresh token - direct API access
  • Google Drive: OAuth refresh token - direct API access
  • GitHub: Personal Access Token (PAT) - via auth proxy for private repos
  • Supported files: same as above - Parquet, DuckDB, SQLite, CSV, TSV, JSON
  • One-time token setup, then just specify file path
  • Tokens stored as environment variables in xlwings Lite

How to Use

  1. One-Time Setup
    • Dropbox: get refresh token, app key, app secret
    • Google Drive: get refresh token, client ID, client secret
    • GitHub: generate Personal Access Token with repo scope
    • Add tokens to xlwings Lite environment variables
  2. Configure Import
    • Go to TOKEN_ACCESS sheet
    • B5: select provider (Dropbox, Google Drive, GitHub)
    • B6: enter file path or ID
    • B7: auth proxy URL (GitHub only)
  3. Run Import
    • Run import_via_token function
    • View schema and sample data
    • Query with DuckDB SQL

Setup Guide

See the OAuth Setup Guide section below for step-by-step token generation instructions. Token-based access pattern inspired by Ruud van der Ham's xlwings_utils library.

Raw File Import

#

What It Does

Both Shareable Link and Token Access support raw file import. This mode downloads any file type as-is without pushing it into DuckDB.

  • Any file type: PDF, images (PNG, JPG), ZIP archives, Excel files, etc.
  • Data files too: CSV, JSON, SQLite - if you want to work with them directly instead of converting to DuckDB
  • File saved to temp directory with your specified filename
  • Output path shown in the sheet for easy access
  • Test functions available to verify imported files (image dimensions, PDF info, ZIP contents)

For Shareable Link Access

  • B5: enter URL
  • B7: set to 1 (raw mode flag)
  • B8: enter filename with extension (e.g. report.pdf)
  • Run import_raw_sharelink
  • D8: shows saved file path

For Token Access

  • B5: select provider
  • B6: enter file path/ID
  • B9: set to 1 (raw mode flag)
  • B10: enter filename with extension
  • Run import_raw_token
  • D10: shows saved file path

Technical Architecture

#

Shareable Link Access

  • Runs Python via xlwings Lite (Pyodide/WebAssembly)
  • Universal URL routing: auto-detects GitHub, Google Drive, Dropbox
  • CORS bypass via Cloudflare Worker proxy (GitHub Releases, Google Drive, Dropbox)
  • Direct fetch for raw.githubusercontent.com and signed URLs
  • Multi-level file type detection: URL extension -> Content-Disposition header -> magic bytes (supports extensionless files)
  • Intelligent delimiter detection: verifies actual delimiter from content for CSV/TSV/pipe files (warns when extension does not match content)
  • SQLite auto-conversion: detects SQLite files via magic bytes, reads with Python's sqlite3, converts to DuckDB format
  • JSON/NDJSON auto-detection: detects via magic bytes, DuckDB's read_json_auto handles arrays and newline-delimited formats
  • Text files / CSV/JSON: auto-import pushes data directly into DuckDB via read_csv_auto/read_json_auto
  • Parquet: stays as Parquet
  • DuckDB Python integration for unified analytics across all file types
  • Displays schema, sample data, and statistics

Token Access - Private Cloud Storage

  • Dropbox: OAuth refresh token -> exchanges for access token -> direct Dropbox API download (no proxy)
  • Google Drive: OAuth refresh token -> exchanges for access token -> direct Google Drive API download (no proxy)
  • GitHub: Personal Access Token (PAT) -> auth proxy for private repo releases (PAT forwarded securely)
  • Tokens stored as xlwings Lite environment variables (not in workbook)
  • One-time setup, then just specify file path - tokens auto-refresh
  • Same file type detection and DuckDB conversion as Shareable Link Access

Raw File Import

  • Available for both Shareable Link and Token Access
  • Downloads file as-is without DuckDB conversion
  • Supports any file type: PDF, images, ZIP, Excel, or data files
  • User specifies output filename with extension
  • Saves to browser temp directory, path shown in sheet

What is CORS & How to Set Up Your Own Cloudflare Proxy

#

What is CORS? (Simple Explanation)

The situation: You want to download a file from Google Drive (or GitHub, Dropbox) into your browser app.

Two ways to download files:

  • From a terminal (using curl) - this always works
  • From inside a browser (JavaScript code) - this has restrictions

The restriction: When code running inside a browser tries to fetch data from another website (like Google Drive), Google must explicitly say "yes, browsers are allowed to access this" via the header Access-Control-Allow-Origin: *.

The problem: Many services (GitHub Releases, Google Drive, Dropbox) do not include this header. So even though the data is sent to your browser, your browser refuses to show it.

The solution - a proxy: Instead of fetching directly from Google Drive, we fetch from a middleman (proxy). The proxy fetches the file (which always works), then sends it to your browser with the proper CORS headers.

CORS issues are extremely common when building browser-based apps. A Cloudflare Worker is a free, simple way to create your own proxy.

Setup Your Own CORS Proxy

This guide helps you set up your own Cloudflare Worker as a CORS proxy. This allows downloading files from GitHub, Google Drive, and Dropbox directly in the browser.

How to use:

  1. Follow the guide manually step-by-step
  2. Copy entire document -> paste to AI coder -> AI sets it up for you

What is included:

  • Complete Worker code for public and auth proxies
  • Deployment instructions (CLI and Dashboard)
  • AI assistant instructions (built-in)

Works with a free Cloudflare account. No custom domain required - uses the free workers.dev subdomain. Full guide: CLOUDFLARE_WORKER_SETUP_GUIDE.txt

What are OAuth Tokens & How to Set Them Up

#

What are OAuth Tokens? (Simple Explanation)

The goal: Access your private files on Google Drive or Dropbox programmatically, without entering your password each time.

Tokens are just text strings - long garbled characters that act as keys. Instead of username/password, you give the app these tokens and it can access your files.

Google/Dropbox require three pieces:

  • Client ID + Client Secret - identifies your app
  • Refresh Token - proves you authorized that app to access your files

Why three pieces instead of one? Security through separation. Harder for someone to get all three together; easier to revoke one app's access without affecting others.

GitHub is simpler: just one Personal Access Token (PAT). You generate it once, use it everywhere.

My take: for individual users and small teams, OAuth feels like overkill. GitHub's single PAT approach is simpler. OAuth makes sense if you are building apps for hundreds of users with fine-grained revocation needs. But it is what Google and Dropbox provide - so we work with it.

Setup Guide for Private File Access

This guide helps set up secure OAuth tokens for downloading private files from Dropbox, Google Drive, or GitHub directly into xlwings Lite.

How to use:

  1. Follow the guide manually step-by-step
  2. Copy entire document -> paste to AI coder -> AI guides you through each step

What is included:

  • Step-by-step setup for Dropbox, Google Drive, GitHub
  • Python scripts for token generation
  • Troubleshooting guide
  • AI assistant instructions (built-in)

Full guide: TOKEN_ACCESS_SETUP_GUIDE.txt

Resources

xlwings Lite

Official website with installation instructions
xlwings Documentation

Full documentation and API reference
Cloudflare Workers (CORS proxy)

CORS proxy code for browser-based downloads from GitHub, Google Drive, Dropbox
xlwings_utils by Ruud van der Ham

OAuth token patterns for Dropbox, Google Drive, GitHub - basis for Token Access
xlwings Lite Apps & Codes

All xlwings Lite scripts, remote modules, and documentation in one repo
OAuth Token Setup Guide

Step-by-step guide for Dropbox, Google Drive, GitHub token generation
Cloudflare Worker Setup Guide

Complete setup guide for deploying your own CORS proxy
xlwings Lite

Built with xlwings Lite

Created by Felix Zumstein, it brings Python into Excel seamlessly - enabling native support for databases, AI agents, LLMs, advanced analytics, ML, APIs, and complete automation workflows.

Bugs,issues,questions? Drop a note: [email protected]