Hello all, I could find here that Authorization can be set up for Flyte. But in the doc in production grade Flyte deployment, its mentioned that "Authorization is not supported out-of-the-box in Flyte". Is this just for UI or am I missing something here. So does Flyte have Role based access control and Authorization support or can it be achieved, thinking in terms of production requirements?

Flyte does not support authz, thr authorization server is instead an oauth2 validator in case you are using an IDP like Google that does not allow client id / secrets. This server can validate them. This allows for cli / programmatic authentication

So does this mean, while moving to production for RBAC Authorization we will be able to use Google IDP, cloud identity, or external Authorization servers like okta or Keycloack to work for cli/programmatic/webconsole level access control

No RBAC, but yet Okta Keycloak don’t need the oauth2 authorizer

@Ketan (kumare3) Thanks for the quick reply and confirmation