From e59b6fb02cc53383c8eec7dea92c352d9ef0aba1 Mon Sep 17 00:00:00 2001 From: Timothy Jaeryang Baek Date: Fri, 3 Oct 2025 23:55:05 -0500 Subject: [PATCH] refac --- docs/features/auth/scim.mdx | 2 +- docs/features/index.mdx | 2 +- docs/features/pipelines/valves.md | 2 +- docs/features/plugin/tools/development.mdx | 2 +- docs/getting-started/env-configuration.mdx | 6 +++--- docs/tutorials/integrations/okta-oidc-sso.md | 2 +- docs/tutorials/offline-mode.md | 2 +- 7 files changed, 9 insertions(+), 9 deletions(-) diff --git a/docs/features/auth/scim.mdx b/docs/features/auth/scim.mdx index 1fb183f..939b0ad 100644 --- a/docs/features/auth/scim.mdx +++ b/docs/features/auth/scim.mdx @@ -186,4 +186,4 @@ SCIM works best when combined with SSO (Single Sign-On). A typical setup include This ensures users are automatically created and can immediately authenticate using their corporate credentials. -For SSO configuration, see the [SSO documentation](https://docs.openwebui.com/features/sso/). +For SSO configuration, see the [SSO documentation](https://docs.openwebui.com/features/auth/). diff --git a/docs/features/index.mdx b/docs/features/index.mdx index 6ea5851..2a34ea6 100644 --- a/docs/features/index.mdx +++ b/docs/features/index.mdx @@ -412,7 +412,7 @@ import { TopBanners } from "@site/src/components/TopBanners"; - 🔒 **Backend Reverse Proxy Support**: Bolster security through direct communication between Open WebUI's backend and Ollama. This key feature eliminates the need to expose Ollama over the local area network (LAN). Requests made to the `/ollama/api` route from Open WebUI are seamlessly redirected to Ollama from the backend, enhancing overall system security and providing an additional layer of protection. -- 🔒 **Authentication**: Please note that Open WebUI does not natively support federated authentication schemes such as SSO, OAuth, SAML, or OIDC. However, it can be configured to delegate authentication to an authenticating reverse proxy, effectively achieving a Single Sign-On (`SSO`) experience. This setup allows you to centralize user authentication and management, enhancing security and user convenience. By integrating Open WebUI with an authenticating reverse proxy, you can leverage existing authentication systems and streamline user access to Open WebUI. For more information on configuring this feature, please refer to the [Federated Authentication Support](https://docs.openwebui.com/features/sso). +- 🔒 **Authentication**: Please note that Open WebUI does not natively support federated authentication schemes such as SSO, OAuth, SAML, or OIDC. However, it can be configured to delegate authentication to an authenticating reverse proxy, effectively achieving a Single Sign-On (`SSO`) experience. This setup allows you to centralize user authentication and management, enhancing security and user convenience. By integrating Open WebUI with an authenticating reverse proxy, you can leverage existing authentication systems and streamline user access to Open WebUI. For more information on configuring this feature, please refer to the [Federated Authentication Support](https://docs.openwebui.com/features/auth). - 🔓 **Optional Authentication**: Enjoy the flexibility of disabling authentication by setting `WEBUI_AUTH` to `False`. This is an ideal solution for fresh installations without existing users or can be useful for demonstration purposes. diff --git a/docs/features/pipelines/valves.md b/docs/features/pipelines/valves.md index eff3229..1ab4148 100644 --- a/docs/features/pipelines/valves.md +++ b/docs/features/pipelines/valves.md @@ -5,7 +5,7 @@ title: "⚙️ Valves" # Valves -`Valves` (see the dedicated [Valves & UserValves](../features/plugin/valves/index.mdx) page) can also be set for `Pipeline`. In short, `Valves` are input variables that are set per pipeline. +`Valves` (see the dedicated [Valves & UserValves](/features/plugin/valves) page) can also be set for `Pipeline`. In short, `Valves` are input variables that are set per pipeline. `Valves` are set as a subclass of the `Pipeline` class, and initialized as part of the `__init__` method of the `Pipeline` class. diff --git a/docs/features/plugin/tools/development.mdx b/docs/features/plugin/tools/development.mdx index 9c86316..6cc3244 100644 --- a/docs/features/plugin/tools/development.mdx +++ b/docs/features/plugin/tools/development.mdx @@ -67,7 +67,7 @@ Below is a list of optional arguments your tools can depend on: - `__model__`: A dictionary with model information - `__oauth_token__`: A dictionary containing the user's valid, automatically refreshed OAuth token payload. This is the **new, recommended, and secure** way to access user tokens for making authenticated API calls. The dictionary typically contains `access_token`, `id_token`, and other provider-specific data. -For more information about `__oauth_token__` and how to configure this token to be sent to tools, check out the OAuth section in the [environment variable docs page](https://docs.openwebui.com/getting-started/env-configuration/) and the [SSO documentation](https://docs.openwebui.com/features/sso/). +For more information about `__oauth_token__` and how to configure this token to be sent to tools, check out the OAuth section in the [environment variable docs page](https://docs.openwebui.com/getting-started/env-configuration/) and the [SSO documentation](https://docs.openwebui.com/features/auth/). Just add them as argument to any method of your Tool class just like `__user__` in the example above. diff --git a/docs/getting-started/env-configuration.mdx b/docs/getting-started/env-configuration.mdx index 27626d7..53b2af1 100644 --- a/docs/getting-started/env-configuration.mdx +++ b/docs/getting-started/env-configuration.mdx @@ -3070,18 +3070,18 @@ In any production environment running more than one instance of Open WebUI (e.g. #### `WEBUI_AUTH_TRUSTED_EMAIL_HEADER` - Type: `str` -- Description: Defines the trusted request header for authentication. See [SSO docs](/features/sso). +- Description: Defines the trusted request header for authentication. See [SSO docs](/features/auth). #### `WEBUI_AUTH_TRUSTED_NAME_HEADER` - Type: `str` - Description: Defines the trusted request header for the username of anyone registering with the -`WEBUI_AUTH_TRUSTED_EMAIL_HEADER` header. See [SSO docs](/features/sso). +`WEBUI_AUTH_TRUSTED_EMAIL_HEADER` header. See [SSO docs](/features/auth). #### `WEBUI_AUTH_TRUSTED_GROUPS_HEADER` - Type: `str` -- Description: Defines the trusted request header containing a comma-separated list of group memberships for the user when using trusted header authentication. See [SSO docs](/features/sso). +- Description: Defines the trusted request header containing a comma-separated list of group memberships for the user when using trusted header authentication. See [SSO docs](/features/auth). ### Google diff --git a/docs/tutorials/integrations/okta-oidc-sso.md b/docs/tutorials/integrations/okta-oidc-sso.md index aaf5652..20ec328 100644 --- a/docs/tutorials/integrations/okta-oidc-sso.md +++ b/docs/tutorials/integrations/okta-oidc-sso.md @@ -180,5 +180,5 @@ Restart your Open WebUI instance after setting these environment variables. * **Groups Not Syncing:** Verify that the `OAUTH_GROUP_CLAIM` environment variable matches the claim name configured in the Okta ID Token settings. Ensure the user has logged out and back in after group changes - a login flow is required to update OIDC. Remember admin groups are not synced. * **Configuration Errors:** Review the Open WebUI server logs for detailed error messages related to OIDC configuration. -* Refer to the official [Open WebUI SSO Documentation](/features/sso). +* Refer to the official [Open WebUI SSO Documentation](/features/auth). * Consult the [Okta Developer Documentation](https://developer.okta.com/docs/). diff --git a/docs/tutorials/offline-mode.md b/docs/tutorials/offline-mode.md index 75e6ae9..c2bb297 100644 --- a/docs/tutorials/offline-mode.md +++ b/docs/tutorials/offline-mode.md @@ -70,7 +70,7 @@ The default local transformer can already handle the text-to-speech function. If ### I: Embedding Model -For various purposes, you will need an embedding model (e.g. [RAG](/docs/features/rag.md)). You will first have to download such a model of your choice (e.g. [Huggingface - sentence-transformers](https://huggingface.co/sentence-transformers)). +For various purposes, you will need an embedding model (e.g. [RAG](/features/rag.md)). You will first have to download such a model of your choice (e.g. [Huggingface - sentence-transformers](https://huggingface.co/sentence-transformers)). ```python from huggingface_hub import snapshot_download