Skip to content

Enterprise

SSO/OIDC Integration

AgentFlow supports any OpenID Connect provider (Okta, Azure AD, Google Workspace).

Configuration

Create an OIDCConfig with your provider details:

  • issuer: Your OIDC provider URL
  • client_id: Your application client ID
  • role_claim: JWT claim containing roles (commonly roles, groups, or custom)
  • role_mapping: Maps claim values to AgentFlow RBAC roles (Admin, Operator, Viewer)

Role Mapping

OIDC claims are mapped to AgentFlow RBAC roles. Unknown roles default to Viewer.

SLA Monitoring

Setup

Create an SLAMonitor with an SLATarget (uptime_percent, max_response_ms). Add HealthCheck endpoints and webhook URLs for Slack or PagerDuty alerts.

Running Checks

Run all checks with run_all_checks(). Get reports with get_report(window_seconds).

Reports include: total_checks, successful_checks, uptime_percent, avg_response_ms, max_response_ms, sla_met.

Self-Hosted Deployment

Enterprise customers can deploy AgentFlow on their own infrastructure.

Requirements:

  • Python 3.11+
  • PostgreSQL 13+
  • Systemd (Linux) or equivalent process manager