FAQ

How can I restrict access on my self-hosted instance to internal users?

If you expose your self-hosted Langfuse instance to the public internet, you may want to restrict access to only internal users.

Recommended ways to restrict access:

  1. Disable email/password authentication (AUTH_DISABLE_USERNAME_PASSWORD=true)
  2. Use an authentication provider supported by Langfuse, such as Google, GitHub, Okta, Auth0. See docs for details.
  3. Configure your authentication provider to restrict access to only internal users.

Optional: Restrict organization creation

You can rely on an allowlist of Organization Creators to restrict who can create new organizations. See docs for details.

Was this page useful?

Questions? We're here to help

Subscribe to updates