@Marvin I recently enabled Authorization on the UI. Is there a way we can control access levels?

Yes, you can control access levels in Prefect Cloud by using roles and access control lists (ACLs). Here's a brief overview: 1. Roles: You can configure user workspace roles in Prefect Cloud. Custom roles can be created from a set of initial permissions associated with a built-in Prefect role, and additional permissions can be added. Permissions included in the inherited role cannot be removed. More details on managing roles can be found here. 2. Access Control Lists (ACLs): These are available in the Enterprise plan and allow you to restrict block and deployment access to specific users and service accounts within a workspace. Organization Admins and Workspace Owners can configure ACLs by navigating to an object and managing access. Note that objects not governed by ACLs, like flow runs and artifacts, remain visible to users within a workspace. More information on ACLs is available here. These features allow you to finely tune who can access and manage different resources in your Prefect environment.

@Marvin I am asking for self hosted setup

For a self-hosted Prefect setup, the documentation does not explicitly outline methods for controlling access levels in the same way as Prefect Cloud. The available documentation primarily covers Prefect Cloud's features like roles and access control lists (ACLs) for managing permissions. However, for self-hosted environments, you might need to implement custom solutions for authorization and access control. This could involve integrating with existing identity management systems, using environment variables to manage access, or leveraging external tools to handle user authentication and authorization. Unfortunately, without more specific guidance in the documentation, you may need to explore community forums or GitHub discussions for user-contributed solutions or workarounds for self-hosted setups. If you have a specific method in mind or additional tools you are using, I can try to assist further.

Hi Prefect team, can we expect access controls available in a self hosted version soon ?

Hi Bharat! Only basic authentication is available for OSS (introduced in 3.1.8). If you're looking for RBAC, that's a feature that is exclusive to Prefect Cloud. My understanding is that you'd need to have the concept of a user to enforce RBAC, and that doesn't exist for OSS. 🙇