Authorisation Requirement for Web App Access

[benjamin-mogensen]

Self Checks

• [x] I have searched for existing issues search for existing issues, including closed ones.
• [x] I confirm that I am using English to submit this report (我已阅读并同意 Language Policy).
• [x] [FOR CHINESE USERS] 请务必使用英文提交 Issue，否则会被关闭。谢谢！:）
• [x] Please do not modify this template :) and fill in all the required fields.

1. Is this request related to a challenge you're experiencing? Tell me about your story.

Currently, when publishing a web app in Dify, it is accessible to all users. To meet our enterprise security and access management requirements, we must be able to control access using Microsoft Entra ID.

• The solution must support authentication and authorization via Microsoft Entra ID.
• It must be possible to grant access based on Entra ID groups, ensuring that all members of a designated group automatically have access.
• Managing access at the individual user level is not feasible, as our enterprise workforce experiences frequent onboarding and offboarding. Group-based access control is essential for scalability and maintainability.

2. Additional context or comments

@crazywoola @guchenhe

3. Can you help us with this feature?

• [ ] I am interested in contributing to this feature.