Flyte enables production-grade orchestration for machine learning workflows and data processing created to accelerate local workflows to production.

Flyte

My initial implementation of <https://github.com/flyteorg/flyte/pull/6190|RBAC / Isolation> is ready for a first pass. This is effectively what we run in our internal fork at Stack but with some more flexibility added to the configuration to make it less Stack biased. The diff changes most of the DB code paths when RBAC is enabled and there is no test coverage there yet but I can probably slowly work on that.

Hi <@U072ZEKG7V0>, nice to e-meet you. Thanks a lot for the contribution.

We heard from our users and community, and we are working in a plan for 2025 to make Flyte feature readiness and robustness increased. I will ask you for some patience as we finalize the process, which this PR is a perfect candidate for it, as the PR is involved [touches various areas] and introduces new concepts.

As you have this PR ready, I will ask the team to expedite the first draft of the process. I will get back to you ASAP.

I'll continue to add some unit tests over time. I am also working through an initial trial of this code in <@U05E3N35EEL>’s environment

Hi <@U072ZEKG7V0>. Sorry for the delay here. The team has been heads down with the upgrades of the documentation system, and we have been working around the clock to get the best UX possible and resolve any rough edges.

My plan is to get back to you on this next week, assuming :crossed_fingers: that we can finalize the docs migration to a good state by Monday.

cc: <@U04H6UUE78B>

Hi <@U07TDRUUK1V> any indication of a timeline for getting Jason’s great work to land in a Flyte release?

hey <@U05E3N35EEL> one thing we have been discussing in the contributor's sync is the challenge of maintaining this great work in the long term. We leaned towards forming a SIG-RBAC (introduced <https://github.com/flyteorg/community/pull/41|here>) where community members and contributors who are in a position to maintain that feature long term can volunteer and organize.
In case the group is not formed, the change won't be accepted (which is by no means a function of its quality or importance) but a measure to prevent contributor burnout, or having a very critical feature not being maintained by a diverse and skilled number of individuals.

Thanks David, that sounds like a good solution :+1: looking forward!

Just to note, we don’t have Golang developers in the team but if we can support this initiative by getting involved some way Im happy to bring it up internally