Securing Streamlit behind company VPC

Hi all,

Is there a way to currently run production Streamlit apps for companies currrently?

E.g. secure behind company VPC, allow authentication etc.?

What do we expect Streamlit for Teams will offer?

How can I get started in the meantime?

Thanks,
Peter

1 Like

Hey Peter!

Streamlit for Teams will let you restrict access to apps to authorized viewers and deploy your app from a private repo in Github.

We’re working on making “secrets” (the ability to securely pass environment variable to your app) available to our free tier users. This opens the door to a couple options (described below) for accessing secure data behind a company VPC. Note that both of these options require network configuration changes on your end.

One option is to expose an endpoint to access your data from the public internet with secured mutual TLS auth (see this, for example: How to create a dual-authentication HTTPS client in Python without (L)GPL libs? - Stack Overflow).

The second option builds on the first. In addition to exposing an endpoint, you can create a firewall rule to only allow inbound Streamlit traffic into your network.

Shoot an email to amanda@streamlit.io if you want to learn more about Streamlit for Teams. We have a beta program currently in progress :slight_smile:

Cheers,

James

1 Like

Thanks James

Amada, we are interested in Streamlit for Teams.

Could we please learn more?

Thanks.
Peter

This e-mail and any attachments are confidential and are intended solely for the use of the individual or entity to whom it is addressed. If you are not the intended recipient, any use, dissemination, forwarding, printing or copying of this email and any attachments is strictly prohibited. If storing this email or any attachments please do so in a way that maintains confidentiality. If you have received this email in error, please telephone our office on 1300 787 581 or by reply email to us. Please destroy the original transmission and its contents.

Hi there,

Hope you had a fantastic Easter break.

Can you please send me some information on this?

We are currently setting up our Python analytics stack and would like to know if Streamlit is a viable option.

Thanks
Peter

This e-mail and any attachments are confidential and are intended solely for the use of the individual or entity to whom it is addressed. If you are not the intended recipient, any use, dissemination, forwarding, printing or copying of this email and any attachments is strictly prohibited. If storing this email or any attachments please do so in a way that maintains confidentiality. If you have received this email in error, please telephone our office on 1300 787 581 or by reply email to us. Please destroy the original transmission and its contents.

Hi Peter,

So sorry your email somehow skipped my inbox. We would love for Streamlit to be part of your stack, but to be clear Streamlit for Teams is a cloud service. So while you still host your code and data, we connect to it and secure and serve your apps. If that is still interesting, let me know and I can send more information on joining the next round of the beta in a few weeks. Apologies again for the delay in response!

Best,

Hi Amanda,

That’s actually perfect thanks.

Can you please let me know the details ?

Cheers,
Pete

This e-mail and any attachments are confidential and are intended solely for the use of the individual or entity to whom it is addressed. If you are not the intended recipient, any use, dissemination, forwarding, printing or copying of this email and any attachments is strictly prohibited. If storing this email or any attachments please do so in a way that maintains confidentiality. If you have received this email in error, please telephone our office on 1300 787 581 or by reply email to us. Please destroy the original transmission and its contents.

Oh great!

We are expanding the beta in about 3 weeks once we have fully tied a bow around the OAuth2 integration for single sign on. The beta allows you to deploy from private GitHub repos (GitHub is currently a requirement) and we secure your data using enterprise-grade security protocols and add single sign on viewer authentication. It’s completely free during the beta period which will be for 2 months from the start of the beta, after which it is viewer-based pricing. So pricing scales based on the number of unique, authed viewers that interact with your app in any given month.

We are looking for groups that have apps ready to deploy immediately (so you can give us beta feedback!) and that use GitHub since that is currently how we connect to code. Would love to hear more about how you’re using Streamlit and then see about getting you slotted in to the beta in a few weeks!

Best,

1 Like

Hi Amanda,

I have some python visualisations we want to use it for, that need to be accessed by a select few internal company users.

It’s for stuff like proper interactive maps that can’t be done properly through our stock visualisation tools e.g. Sisense.

We don’t have stuff ready to go because we can’t deploy any of this publicly.

However, if Stream-lit for teams is a viable option for us we really want to know the details.

At present, we were looking at whether we should set it up in our AWS account and figure out how to implement security etc., so this sounds like a far quicker option with less overhead.

Thanks
Peter

This e-mail and any attachments are confidential and are intended solely for the use of the individual or entity to whom it is addressed. If you are not the intended recipient, any use, dissemination, forwarding, printing or copying of this email and any attachments is strictly prohibited. If storing this email or any attachments please do so in a way that maintains confidentiality. If you have received this email in error, please telephone our office on 1300 787 581 or by reply email to us. Please destroy the original transmission and its contents.

Peter - I’m so sorry. This somehow skipped my inbox and I only just saw your response now. So Streamlit for Teams is definitely a viable option with the caveat we are continuing to roll out features over the next 6 months and I just want to make sure the current feature set is going to match what you need. Right now we support launching apps from GitHub private repos, securing data using secrets management, and authenticating using Google OAuth. Over the next 6 months we will be adding more source code providers, more data connection options, and more authentication providers (Microsoft, Okta, etc.).

So if that matches your internal setup right now, great! And I can get you into the beta in a couple of weeks. If anything doesn’t match, let me know what and I can give you a better estimate of when we’d be able to onboard you to the beta.

Best,