Hi,

I’m trying to create a private streamlit application for my company and I’m currently trying to find the most suitable setup for accessing Snowflake data when Streamlit application isn’t an SIS (Streamlit In Snowflake). What I’ve experienced is that SSO works successfully when running the streamlit application locally. However, when it is hosted then it fails let the user connect with its credentials, SSO by AzureAD.

I want to be able to use the user-credentials to only show objects which they have access to in Snowflake, thereby I’m not looking for having a Service user associated with the dashboard if not necessary. Is there a way to enable a simple & streamlined authentication process between Streamlit - Snowflake (Outside the snowflake account)?

From what I’ve seen OAuth is a option for this, currently only tried Brian Hess’s OAuth component and it works good for Snowflake OAuth

• Does it also support External Oauth integration from Snowflake?
• Company policy might prohibit the usage of this open module, are there other options connecting through OAuth ?
• Any other suggestion on how this authentication process to Snowflake to be setup correctly, using AzureAD credentials? (Any supported streamlit objects for this?)

In advance, looking forward for any help & response on this and hope you’ll have a great day!

Best regards:
Aleksander

Unfortunately, External browser auth not work.

For now, streamlit-authenticator is a popular component used to create a basic auth system for apps, and depending on the SSO provider used by your company, you may be able to build your integration. OR use streamlit-authenticator restrict email with your org using simple regex)