langflow icon indicating copy to clipboard operation
langflow copied to clipboard
verified publisher icon langflow-ai

Single Sign On (SSO) support with OIDC or OAuth2

Open hakan-77 opened this issue 1 year ago • 22 comments

Feature Request

For some of our workloads we cannot use the hosted cloud solution from Langflow/DataStax and cannot get security approval for a self hosted solution without Single Sign On (SSO).

Motivation

  • Passwords leak and is a major security issue
  • Users forget them
  • With SSO, we would not need "wait for admin approval" since the OAuth flow would take care of that

Your Contribution

Happy to contribute, just not as the lead.

hakan-77 avatar Jul 20 '24 20:07 hakan-77

+1 Same here! This is really needed!

codenprogressive avatar Jul 21 '24 00:07 codenprogressive

#1864 I know Casbin library is in the roadmap to be integrated in Langflow. I'm wondering if still in top list of requested features!

codenprogressive avatar Aug 05 '24 15:08 codenprogressive

Hi, @hakan-77. I'm helping the langflow team manage their backlog and am marking this issue as stale.

Your request for implementing Single Sign On (SSO) support using OIDC or OAuth2 highlights the need for enhanced security and streamlined user access, especially for workloads that cannot utilize the hosted solution. Other contributors, including codenprogressive, have also emphasized the importance of this feature, noting challenges in obtaining corporate security approval without it. Additionally, there was mention of integrating the Casbin library as a related feature of interest.

Could you please let us know if this issue is still relevant to the latest version of the langflow repository? If it is, feel free to comment here to keep the discussion alive. Otherwise, you can close the issue yourself, or it will be automatically closed in 7 days. Thank you!

dosubot[bot] avatar Nov 04 '24 16:11 dosubot[bot]

It's still important. I can't use this without OIDC or OAuth2

neill-k avatar Nov 10 '24 02:11 neill-k

@ogabrielluiz, the user has confirmed that the implementation of Single Sign On (SSO) support using OIDC or OAuth2 is still important for their use case. Could you please assist them with this issue?

dosubot[bot] avatar Nov 10 '24 02:11 dosubot[bot]

This is extremely and urgently needed for my organization too. Please increase the priority. TY!

syoung-gaia avatar Dec 13 '24 21:12 syoung-gaia

hello, i wish you guys an happy new year Are you going to add this feature?

# Configuration OAuth
OAUTH_CLIENT_ID = os.environ.get("OAUTH_CLIENT_ID")
OAUTH_CLIENT_SECRET = os.environ.get("OAUTH_CLIENT_SECRET")
OAUTH_SCOPES = os.environ.get("OAUTH_SCOPES") or "openid email profile"
OPENID_PROVIDER_URL = os.environ.get("OPENID_PROVIDER_URL") or "https://iam.services.MYCOMPANY/realms/intra/.well-known/openid-configuration"

# USER_INFO_URL = OPENID_PROVIDER_URL + "/oauth/userinfo"
# METADATA_URL = OPENID_PROVIDER_URL + "/.well-known/openid-configuration"

in another project we are using https://github.com/open-webui/open-webui with the parameter here https://docs.openwebui.com/features/sso#oidc

perhaps you could get some inspiration there?

flefevre avatar Jan 09 '25 17:01 flefevre

Happy new year, everyone.

Yes! We will build this soon.

ogabrielluiz avatar Jan 09 '25 17:01 ogabrielluiz

Happy new year @ogabrielluiz this is great news! Looking forward to it.

hakan-77 avatar Jan 11 '25 20:01 hakan-77

Great team great project

flefevre avatar Jan 11 '25 20:01 flefevre

+1 for SSO! 🚀 This is a crucial feature for us—we can't get security approval for a self-hosted solution without it.

ThomaciousD avatar Jan 29 '25 09:01 ThomaciousD

SSO very much missed +1

alextarit avatar Jan 29 '25 15:01 alextarit

Happy new year, everyone.

Yes! We will build this soon.

@ogabrielluiz Thanks a lot for your message. I am just wondering whether we have a timeline when we will have this feature. We will need Azure AD SSO so that we can adopt Langflow into our enterprise environment.

DavidSun2022 avatar Feb 06 '25 15:02 DavidSun2022

+1 SSO

paulorangeljr avatar Feb 12 '25 08:02 paulorangeljr

+1 For OIDC

artemus717 avatar Feb 18 '25 06:02 artemus717

+1 for SSO

alemorm avatar Feb 25 '25 16:02 alemorm

I read on the news today that IBM is acquiring Langflow parent DataStax. @ogabrielluiz, does this change your roadmap regarding SSO?

hakan-77 avatar Feb 25 '25 23:02 hakan-77

+1 for SSO

M-H-Mukit avatar Mar 13 '25 22:03 M-H-Mukit

need sso +1

xiandan-erizo avatar Mar 18 '25 02:03 xiandan-erizo

+1 for SSO

dglozic avatar Apr 19 '25 20:04 dglozic

+1 for sso

Aaqibbhat avatar Apr 25 '25 09:04 Aaqibbhat

+1 pour le SSO I am french and happy to be an user of Langflow

flefevre avatar Apr 25 '25 11:04 flefevre

+1 for SSO

s4v4g3 avatar Apr 30 '25 23:04 s4v4g3

Could you please provide an update on whether this feature request is planned for implementation?

Aaqibbhat avatar May 06 '25 06:05 Aaqibbhat

The feature is almost ready. See this PR: https://github.com/langflow-ai/langflow/pull/7346

max-sternitzke avatar May 08 '25 07:05 max-sternitzke

Any news on the integration of this feature? Thanks

flefevre avatar Jun 06 '25 16:06 flefevre

+1 for SSO It would be fantastic to have SSO support in LangFlow—our org could really benefit from it. Adding version control for flows would also help us track who made changes and when. Thanks for considering!

colecal avatar Jun 23 '25 15:06 colecal

+1 for SSO!

wosm-possum avatar Jul 09 '25 11:07 wosm-possum

+1 for SSO!

imakecodes avatar Jul 13 '25 23:07 imakecodes

+1 for SSO

nestorcolt avatar Jul 17 '25 21:07 nestorcolt