Hi everyone, my goal is to use dagster for automating data jobs in my company. The problem is when deplyoing it to my server and starting the dagit the web interface becomes available for anyone here. Since not everyone should have access to the Web UI I am asking how to restrict access to that? Also there is no obvious Webserver like nginx or apache present in the dagster project. I do not know what to look for. Does anyone have had similar issues or an answer to that?

We are on AWS and there we put dagit behind an ALB and ALB authenticates the user with OIDC.

in GCP there is https://cloud.google.com/iap

I ended up putting a Caddy server in front of it as a reverse proxy and using the auth-portal plugin to handle authentication for the UI. Here's the config that I am using (the final render is as JSON, but the content is the same) https://github.com/mitodl/salt-ops/blob/main/pillar/caddy/dagster.sls

Hey @Tobias Macey that sounds tempting since I cannot deploy to AWS