Settings
Settings
Company context in AI conversations
When on, every new chat starts by silently feeding the persona your Company profile (industry, products, goals, challenges). Personas reference your specifics in their answers instead of generic advice. Stored per browser — flipping it here also flips the in-chat checkbox.
Login gate
Whether anonymous users can hit /chat without signing in. The cockpit (boards, deviations, settings, …) always requires auth regardless.
Default timezone
Used for cron schedules + memo timestamps for users without their own preference.
Password policy
Workspace-wide password requirements. Enforced on register + password change.
Entra ID single sign-on
When enabled, users see a "Sign in with Microsoft" button on the login page. Uses an Azure AD app registration in your tenant — different from the Foundry service principal under AI provider.
Notification sender
"From" address used on outgoing emails (password reset, alerts). Sent via Microsoft Graph using the same Entra credentials configured above.
Image-generation rate limit
Per-user images per hour. 0 disables image generation entirely.
Desktop installer (Flowpipe for Windows)
Publish a fresh build of the Tauri client. The .exe always updates the
in-app download; add the matching .sig to also publish the
auto-update so existing clients self-update. Version is read from the
filename (Flowpipe_0.2.0_x64-setup.exe). Max 200 MB.
Mobile notifications
Get pushed on your phone when a flow needs you — a review to approve, a failed run. Install Flowpipe to your home screen first, then enable notifications here. On iOS this only works from the home-screen app (iOS 16.4+).
Foundry connection health
Live diagnostic of credentials, endpoint reachability, and deployments visible to Flowpipe. Click Refresh to re-run; everything below auto-populates from the same data.
Model selection
Pick which deployed Foundry model fills each role. Options are your live deployments (the same list the agents use), so you can point any role at any model in your tenant. Changes apply after a service restart.
Foundry endpoint
The Azure AI Foundry resource Flowpipe talks to. Tenant identifies the Azure account; Endpoint is the project-scoped URL Foundry hands you when you create a project.
Authentication method
How Flowpipe authenticates against Foundry. API key is simplest (one secret, set-and-forget). Service principal is recommended for production — RBAC, rotation, audit trail. Azure CLI is for dev only — uses your local az login session.
Visible deployments
Models the current credentials can call. Personas pick from this list when admins set their model field. Refresh after a credentials change.
Azure AI Search
Connect an Azure AI Search service so agents can be grounded on a search index — hybrid vector + keyword retrieval — and so indexes can be created and managed from Flowpipe. The search service is provisioned once in Azure; everything else is configured here.
- Enable role-based access — Search service → Security + networking → Keys → API access control → choose Both (or Role-based access control). Without this the service rejects the service principal with a 403 even when the roles below are assigned.
- Assign roles under Access control (IAM): Search Service Contributor (create & manage indexes) + Search Index Data Contributor (read/write documents). Query-only grounding needs just Search Index Data Reader.
API keys
Programmatic access to the Flowpipe API. Use header Authorization: ApiKey YOUR_KEY. Each key is labelled, can have an expiry, and tracks its own usage.
Use with Claude, ChatGPT & more (MCP)
Drive your flows from any MCP-capable assistant — list, run, monitor and read results without leaving the chat. Create an API key above (read = list / inspect / monitor; write = also run, cancel and edit), then pick your client:
Replace YOUR_API_KEY with a key from above — it is shown only once at creation. The MCP endpoint is .
Try it
Test any endpoint without leaving the page. Same RBAC, same audit trail. Works against your existing key, your session, or no auth.
How to use it
Send the key in the Authorization header on every request.
curl -H "Authorization: ApiKey YOUR_KEY" \
https://live.flowpipe.ai/api/personas
import requests
resp = requests.get(
"https://live.flowpipe.ai/api/personas",
headers={"Authorization": "ApiKey YOUR_KEY"},
)
resp.raise_for_status()
print(resp.json())
const r = await fetch("https://live.flowpipe.ai/api/personas", {
headers: { "Authorization": "ApiKey YOUR_KEY" }
});
console.log(await r.json());
Security guidelines
Treat the key like a password — anyone holding it acts as you.
- Store in a secret manager or
.envfile — never commit to Git. - Don't paste into client-side JavaScript or screenshots.
- Rotate periodically, or immediately if you suspect a leak.
- Revoke unused keys — fewer keys means smaller blast radius.
- Each call is logged with your user ID. Audit trail in User management.