How does this skill handle self-hosted security?

It provides specific environment variable configurations for Docker deployments to disable public registration, enforce SSO, and manage data encryption keys.

Does it support SAML integration for Okta or Azure AD?

Yes, the skill provides the specific callback URL patterns and IdP group mapping configurations required for SAML and OIDC enterprise providers.

Can I automate API key rotation with this skill?

Yes, it includes guidance and code patterns for creating new key pairs, deploying them to secret managers, and revoking old keys without service interruption.

What roles are supported in the Langfuse RBAC skill?

The skill manages the standard Langfuse hierarchy: Owner (full access), Admin (project management), Member (active development), and Viewer (read-only access).

Langfuse Enterprise RBAC

Name: Langfuse Enterprise RBAC
Author: jeremylongshore

byjeremylongshore

•

1,965

•

分析と監視

Configures role-based access control, organization settings, and secure API key management for Langfuse enterprise observability.

This skill provides a comprehensive framework for managing enterprise-grade security and organization structures within Langfuse. It guides users through the implementation of built-in roles—Owner, Admin, Member, and Viewer—to ensure least-privilege access across production and staging projects. It covers advanced configurations including scoped API key management, SSO integration via SAML/OIDC, and infrastructure hardening for self-hosted instances. By following these patterns, teams can maintain strict audit logs and compliance standards while scaling their LLM monitoring and observability infrastructure.

主な機能

011,965 GitHub stars

02Hardened self-hosted deployment configurations

03Project-level role-based access control (RBAC) configuration

04SSO and SAML/OIDC integration for enterprise authentication

05Audit logging implementation for compliance tracking

06Scoped API key management for service-specific isolation

ユースケース

01Configuring read-only access for data analysts via viewer roles

02Enforcing domain-wide SSO for centralized Langfuse access management

03Isolating production and staging environments using environment-scoped API keys

主な機能

011,965 GitHub stars

02Hardened self-hosted deployment configurations

03Project-level role-based access control (RBAC) configuration

04SSO and SAML/OIDC integration for enterprise authentication

05Audit logging implementation for compliance tracking

06Scoped API key management for service-specific isolation

ユースケース

01Configuring read-only access for data analysts via viewer roles

02Enforcing domain-wide SSO for centralized Langfuse access management

03Isolating production and staging environments using environment-scoped API keys