Hello community, We're looking for a way to solve user management in Flyte but it seems it's not implemented. The doc mentions authorization but that's only OAuth2 authorization which restricts client access to resources but not users to domain entities. We could also find GitHub issues and Slack threads about the topic that mentions RBAC is not going to be implemented in Flyte. One way is to sign up for Union AI but we would like to stay on-premises and that's not feasible with Union AI. Are there other ways of solving this? Has anyone came across this issue and solved it without signing up for Union AI?

Hi Mike,

By on-premises I mean that we'd like to host Flyte in our own bare-metal cluster. We're wondering if there's a way to have RBAC implemented without signing up for Union Cloud.

Ok, understood. Thanks for the clarification. not supported in Flyte today as there is no standard.

With union ai hybrid architecture- it Is possible to have data plane anywhere and control plane is managed by union. Currently because of the fully managed system union supports AWS and gcp (with more coming ) but, we would be open to explore design partnerships for onprem

Hi, we are in a similar situation to what Mike is describing where we really need to have user management, i.e RBAC, on Flyte which runs on our on-prem cluster(s). We have been running Flyte for a few years at this point we appreciate it very much - but wider adoption is not possible without these features. We understand that there is no road map for implementing this in the open source project, but we would liked to know if it's possible to implement it ourselves within the open source framework - and if we could set up some kind of partnership to design this with you the authors, I am pretty sure my employer would be interested, but I would like to just discuss what would be possible.

cc @Ketan (kumare3)