Provider Setup (BYOK)
The AI Assistant runs against any major LLM provider — pick the one that fits your budget, latency needs, or compliance posture. Today that's Anthropic, OpenAI, Google, Groq, OpenRouter, and a local Ollama server. You bring your own API key; Flowfile encrypts it at rest with Fernet (using FLOWFILE_MASTER_KEY / master_key.txt), the same scheme that protects your other secrets. For air-gapped work, Ollama lets the entire AI layer run on your laptop with no traffic leaving your machine.
Supported providers
| Provider | Default model | Tools | Streaming | Key env var | Notes |
|---|---|---|---|---|---|
| Anthropic | claude-sonnet-4-6 |
✓ | ✓ | ANTHROPIC_API_KEY |
Best balance of quality and tool-use reliability. Haiku 4.5 is the default for fast surfaces (Cmd+K, ghost-node, autocomplete); Opus 4.7 for agent_complex. |
| OpenAI | gpt-4.1-mini |
✓ | ✓ | OPENAI_API_KEY |
Mini tier for the cheap surfaces; full gpt-4.1 for explain / agent_complex / docgen. Strict structured outputs supported via litellm. |
| Google (Gemini) | gemini-2.5-flash |
✓ | ✓ | GEMINI_API_KEY or GOOGLE_API_KEY |
Generous free tier (~250–1000 req/day, no card). Pro for agent_complex. |
| Groq | qwen/qwen3-coder-30b-a3b-instruct |
✓ | ✓ | GROQ_API_KEY |
Very fast inference (~30 RPM free tier); good fit for low-TTFB surfaces (Cmd+K, ghost-node). |
| OpenRouter | qwen/qwen3-coder-30b-a3b-instruct |
✓ | ✓ | OPENROUTER_API_KEY |
Unified façade for 50+ models with a single key. The agent_staged default is meta-llama/llama-3.3-70b-instruct (free tier). |
| Ollama | llama3.1:8b |
✓ (model-dependent) | ✓ | (none — local) | Self-hosted; talks to your local Ollama server (default http://localhost:11434). Tool-use works on Llama 3.1+ and most newer instruct models. |
The "Tools" column means the provider can return structured tool-call arguments — required for the Agent surface. The Agent refuses to start against a model that lacks tool support.
Configuring keys in the UI
The recommended path is the in-app settings panel:
- Open Settings → AI Providers.
- Pick a provider from the list. The panel shows class-level metadata (default model, supports tools, supports streaming) plus your current credential status: Configured (key saved), Env fallback (no key saved but a recognised env var is set on the server), or Unconfigured.
- Paste the API key into the API key field and click Save. For Ollama or self-hosted endpoints, set API base to the server URL.
- Click Test. Flowfile issues a 1-token ping and records the result on the credential (
last_tested_at,last_test_status). A green checkmark means you're good to go.
📸 Screenshot pending — byok_provider_detail.png
Detail / Configure form for a single provider (e.g. Anthropic) — API key field (masked), API base field, default model dropdown, optional curated models list, and the Save / Test / Delete buttons.
To remove a key, click Delete. The credential row and the underlying encrypted secret are removed atomically.
Under the hood, these actions hit the BYOK routes:
| Action | HTTP |
|---|---|
| List providers + credentials | GET /ai/providers |
| Save / update credential | POST /ai/providers/{name} |
| Delete credential | DELETE /ai/providers/{name} |
| Test credential | POST /ai/providers/{name}/test |
All BYOK endpoints require an authenticated user; credentials are scoped per user.
Env-var fallback
If no credential row exists for a user, Flowfile falls back to the standard provider env vars (ANTHROPIC_API_KEY, OPENAI_API_KEY, GEMINI_API_KEY / GOOGLE_API_KEY, GROQ_API_KEY, OPENROUTER_API_KEY) on the host process. The BYOK panel shows the provider as Env fallback in that case; saving a key in the UI takes precedence per user, and deleting it falls back to the env var again. Ollama needs no key — just an api_base (default http://localhost:11434).
Choosing models per surface
Each AI feature is a surface (chat, explain, agent_staged, agent_complex, cmd_k, ghost_node, settings_autocomplete, lineage, docgen, intent_classifier). Each provider class ships sensible per-surface defaults — Haiku for fast paths, Sonnet for thinking paths, etc. — so you usually don't need to override anything.
When you do want to override:
- Per-credential default. In the BYOK panel, set Default model on the provider row. This wins over the class-level default for every surface.
- Curated model list. Some providers (notably OpenRouter) let you pin a list of models you've opted into. Flowfile will use the surface's preferred model if it's in your curated list; otherwise it falls back to the first model in the list. Useful when you want to limit yourself to free-tier models without losing per-surface intelligence.
- Per-request override. Power users can pass an explicit
model=...on a per-call basis through the API. This always wins.
The full resolution order, in priority:
- Explicit
model=argument on the request. - Credential row's
default_model. - Provider class'
surface_models[surface], if it appears in your curatedmodelslist. - First entry of your curated
modelslist. - Provider class'
surface_models[surface]. - Provider class'
default_model.
A note on the Agent surface: it requires a tool-capable model. If you pin a curated list that contains only models without tool support, agent calls will return 422 with a clear message; switch back to a tool-capable model.
Rate limits
Cap per-provider request volume via env vars on the host: FLOWFILE_AI_<PROVIDER>_RPM (per minute) and FLOWFILE_AI_<PROVIDER>_RPD (per day). Unset means no enforcement. When a bucket fills, the scheduler delays the call and surfaces a "rate-limited, retrying in Ns" hint rather than 5xx-ing. Server Retry-After headers on 429 responses are always honoured. Limits are in-memory and per-provider (not per-(provider, model)); not persisted across restarts.
Self-hosted (Ollama) setup
Ollama is the offline path. Quick start on macOS / Linux:
- Install and start Ollama (see ollama.com — link kept off this page so it doesn't rot).
-
Pull a tool-capable instruct model:
ollama pull llama3.1:8b # or for the agent_complex surface: ollama pull llama3.1:70b -
In Flowfile, Settings → AI Providers → Ollama:
- Leave API key empty.
- Set API base to
http://localhost:11434(the default; only override if your Ollama server is elsewhere). - Optionally set Default model to the tag you pulled.
- Click Save, then Test.
Tool-call quality varies by model. Llama 3.1+ instruct models do tool calls correctly; older or non-instruct models sometimes return tool calls as text in the assistant content. The Agent surface compensates with Pydantic-repair on the tool-call shape, but for best results stick to the recommended models.
Troubleshooting
503 Service Unavailable from any /ai/* endpoint.
The feature flag is off. AI is on by default — this only happens if someone has explicitly set FEATURE_FLAG_AI=false in the env, or toggled it off at runtime via POST /system/feature_flags/ai. Re-enable by unsetting the env var (or setting it to true) and restarting, or toggle it back on via the admin endpoint.
422 Unprocessable Entity when starting an Agent session.
The picked model doesn't support tools. Check the Tools column in the provider table. Either switch models on the request or update your credential's default_model.
404 from POST /ai/providers/{name}.
Provider name typo. The supported names are exactly: anthropic, openai, google, groq, openrouter, ollama (lowercase, no dashes).
Credential Test returns ok=false with an authentication error.
Key is wrong, expired, or missing required scopes. The error message from the upstream provider is surfaced in the error field of the test result.
See also
- AI Assistant overview — what each feature does.
- AI Integration Architecture — internals, including BYOK resolution and the provider class layout.