Using basic-auth with custom Python code instead of JSON credentials file

[vp-code]

Is your feature request related to a problem? Please describe.

Currently basic authentication allows the specification of a JSON credentials file. This creates two issues: (1) the file has to contain the actual text passwords and (2) for panel apps deployed as containers, it necessitates redeployment each time the credentials file changes.

Describe the solution you'd like

A feature that supports custom Python code to authenticate end users (maybe a function that takes in a username and password and returns a boolean). This would enable app developers to authenticate against encrypted passwords in their own databases etc.

The current JSON credentials file approach would be a special case of this feature.

Describe alternatives you've considered

(1) Don't use basic-auth (2) Meticulously protect the JSON file; redeploy each time the file changes

Additional context

This feature would make basic authentication a flexible and powerful mechanism for those unwilling to get lost in the intricacies of more elaborate methods

[holovizbot]

This issue has been mentioned on HoloViz Discourse. There might be relevant details there:

https://discourse.holoviz.org/t/how-to-use-basic-auth-with-custom-credentials-validation-code/8787/3