Permit.io Launch Week - Day 4: Intelligent Integrations

Welcome to the fourth day of Permit Launch Week! Today’s theme is all about integrations, and we’re especially excited to announce some major advancements that bring AI/LLM integration into the world of authorization, collaborating with the folks from Langflow, DataStax, and Stytch. Additionally, we have new features for authentication, user provisioning, and a game-changing GitHub Action for developers who want to integrate Permit into their CI/CD pipelines.

Watch the full live stream of these features here:

Langflow: AI and LLM Authorization Made Easy

We are thrilled to announce a new integration with Langflow, a powerful tool that allows seamless integration with AI and LLMs. This collaboration enables you to control access and implement authorization policies directly in your AI-based applications.

The Langflow integration allows developers to implement secure and policy-based access control for AI/LLM queries, making it easier to manage things like user quotas or differentiate between premium and standard users in AI models.

In AI-driven applications, different users should have different levels of access. Managing these permissions manually can be complex, especially when handling user-specific quotas, model access, and document filtering.

The new Langflow-Permit.io integration uses Permit’s check function to dynamically route users based on their permissions. This means you can, for instance, restrict a user’s access to certain AI models based on their subscription level or limit the number of queries a user can make to an LLM.

This integration allows for precise control over user access in AI systems, making it easy to enforce quotas, control costs, and secure sensitive data.

For more sophisticated use cases, such as medical applications, you can use Langflow’s filtering integration. This filters the documents that users can query before sending the request to the LLM, ensuring only authorized data is accessible—an invaluable feature for sensitive industries like healthcare.

Stytch Integration: Seamless Authentication and Authorization

Authentication is at the heart of any good access control system. Today, we’re launching a new integration with Stytch, a flexible authentication provider that supports both B2B and B2C use cases.

The Stytch integration allows for automatic synchronization between authenticated users and their roles and permissions within Permit.

Managing user synchronization between your authentication provider and your authorization system is often a tedious, manual process, leading to potential delays or mismatches in user permissions.

The new Stytch and Permit integration automatically syncs users created in Stytch with Permit. This ensures that as soon as a user registers, their corresponding roles and permissions are configured in Permit without requiring any manual intervention - saving time and eliminating synchronization issues.

The integration is open-source and highly customizable, allowing developers to tailor it to their specific needs. Permit can also integrate with other authentication providers, such as Okta, ensuring flexibility regardless of your stack.

SCIM: Enterprise-Grade User Provisioning

For enterprise-level applications, managing users and groups across multiple systems can become complex. To address this, we’re proud to introduce Permit SCIM (System for Cross-domain Identity Management) support.

SCIM allows for automated provisioning of users and groups in enterprise environments, making it easier to manage large-scale identity operations.

With Permit’s SCIM support, enterprises can auto-provision users and groups directly into Permit, ensuring seamless and automated identity management. Whether you’re using Stytch or another authentication provider, the SCIM client can be easily configured, allowing you to sync user identities and roles without writing any code. This is especially useful for managing users in large organizations where identity management must be highly efficient and secure.

Here’s an example of how you can integrate SCIM with Permit via Okta.

RAG Gateway: Secure AI with Reliable Data

One of the most exciting developments today is the RAG (Retrieval-Augmented Generation) Gateway. This gateway enables secure and controlled access to AI systems by filtering the data that AI models can access based on user permissions.

As AI models, especially LLMs, often rely on vast amounts of data to generate responses, without strict access controls, there’s a risk that users could access data they aren’t authorized to see.

RAG allows developers to restrict which data is accessible by AI models, ensuring that unauthorized users cannot query sensitive information, ensuring only authorized data is made available to AI models.

This feature provides a powerful way to protect sensitive data in AI-driven applications, ensuring compliance with privacy regulations and data security standards.

GitHub Actions: Automating Permit in Your CI/CD Pipeline

Last but certainly not least, we are excited to introduce a new GitHub Actions for Permit, enabling full automation of Permit within your CI/CD pipeline.

Permit GitHub Actions automate the process of managing environments within Permit.

This means, for example, that when a developer creates a new branch, a corresponding environment is automatically created in Permit, allowing for isolated testing of policy changes. When the branch is merged, the environment is automatically updated. If tests fail, the changes won’t be deployed to production, ensuring a smooth and secure development workflow.

This integration simplifies how teams manage their authorization policies, ensuring that everything from testing to deployment is automated and seamless.

See the example of the GitHub action here: https://github.com/permitio/pink-mobile-demo-app/tree/main/.github/workflows

Today’s releases focus on expanding the integration possibilities for developers using Permit.io, from AI and authentication to CI/CD automation.

• The Langflow integration brings secure authorization to AI and LLM applications.
• Stytch integration and SCIM support streamline authentication and user management.
• The RAG Gateway ensures secure data access in AI environments.
• The GitHub Action automates Permit within your CI/CD pipeline, simplifying your development workflow.

We’re excited to see how you’ll leverage these integrations to build even more powerful and secure applications. Stay tuned for tomorrow’s updates, where we’ll be diving into performance enhancements!