Generative Artificial Intelligence (GenAI) has massively changed the software landscape and AI agents are all the rage now. AI agents can also be used for complex Retrieval-Augmented Generation (RAG) systems where additional context can be provided to the Large Language Model (LLM) by retrieving updated or domain-specific data from a database or a search engine. This technique can reduce hallucinations and improve accuracy of the LLM. AI agents can also use RAG as a tool to perform complex workflows.
Sensitive Information Disclosure is a common issue that plagues RAG-based systems. We don't want the LLM to accidentally access or expose sensitive data from a database. Traditional Role-Based Access Control (RBAC) systems are not enough to secure RAG applications and agents. This is where Fine-Grained Authorization (FGA) shines as a solution.
If you would like to learn the basics of using FGA for RAG, check out this blog post on RAG and Access Control: Where Do You Start?.
In this tutorial, we will build a simple RAG agent using the LlamaIndex.TS, which is the JavaScript version of the popular LlamaIndex framework, and secure it using Okta FGA.
Prerequisites
This tutorial was created with the following tools and services:
- NodeJS v20
- An Okta FGA account. Create one.
- An OpenAI account and API key. Create one.
What Does LlamaIndex Do?
LlamaIndex is a flexible framework for building AI agents and RAG applications. It provides Python and JavaScript SDKs to interact with a variety of LLMs and databases. LlamaIndex can be used to build AI agents and workflows that can interact with the user, retrieve data from a database, and generate responses using an LLM. It also provides tools like LlamaParse to transform unstructured data into LLM-optimized formats and LlamaCloud to store and retrieve LLM-ready data from the cloud.
Set up a LlamaIndex RAG Application
To get started, clone the auth0-ai-samples repository from GitHub:
git clone https://github.com/oktadev/auth0-ai-samples.git cd auth0-ai-samples/authorization-for-rag/llamaindex-agentic-js # install dependencies npm install
The application is written in TypeScript for the Node.js platform and is structured as follows:
: The main entry point of the application that defines the RAG pipeline.index.ts
: Sample markdown documents that will be used as context for the LLM. We have public and private documents for demonstration purposes.assets/docs/*.md
: Utility to initialize the Okta FGA authorization model.scripts/fga-init.ts
Let us look at the important bits and pieces before we run the application.
RAG pipeline
The RAG pipeline is defined in
index.ts/** index.ts **/ const user = 'user1'; // 1. Read and load documents from the assets folder const documents = await new SimpleDirectoryReader().loadData('./assets/docs'); // 2. Create an in-memory vector store from the documents using the default OpenAI embeddings const vectorStoreIndex = await VectorStoreIndex.fromDocuments(documents); // 3. Create a retriever that uses FGA to gate fetching documents on permissions. const retriever = FGARetriever.create({ // Set the similarityTopK to retrieve more documents as SimpleDirectoryReader creates chunks retriever: vectorStoreIndex.asRetriever({ similarityTopK: 30 }), // FGA tuple to query for the user's permissions buildQuery: (document) => ({ user: `user:${user}`, object: `doc:${document.metadata.file_name.split('.')[0]}`, relation: 'viewer', }), }); // 4. Create a query engine and convert it into a tool const queryEngine = vectorStoreIndex.asQueryEngine({ retriever }); const tools = [ new QueryEngineTool({ queryEngine, metadata: { name: 'zeko-internal-tool', description: `This tool can answer detailed questions about ZEKO.`, }, }), ]; // 5. Create an agent using the tools array and OpenAI GPT-4 LLM const agent = new OpenAIAgent({ tools }); // 6. Query the agent let response = await agent.chat({ message: 'Show me forecast for ZEKO?' });
Here is a visual representation of the RAG architecture
FGA retriever
The
FGARetrieverThe alpha version of the retriever can be installed using the following command:
npm install "https://github.com/auth0-lab/auth0-ai-js.git#alpha-2" --save
The build query function is used to construct the query to the FGA store. The query is constructed using the user, object, and relation. The user is the user ID, the object is the document ID or the document name, and the relation is the permission that the user must have on the document.
buildQuery: (document) => ({ user: `user:${user}`, object: `doc:${document.metadata.file_name.split(".")[0]}`, relation: "viewer", }),
Retrieval Agent
The
is created from the vector store index and configured to use our custom FGA retriever. The query engine handles searching through documents and retrieving relevant information based on user queries.queryEngineThe
array contains atools
that wraps our query engine. The tool provides a structured interface for the agent to access the query engine's capabilities.QueryEngineToolThe
is created using OpenAI's GPT-4 model and the tools array. The agent acts as an intelligent interface between the user and the tools - it understands natural language queries, determines when to use the query engine tool, and formulates responses based on the retrieved information.agent
/** index.ts **/ const queryEngine = vectorStoreIndex.asQueryEngine({ retriever }); const tools = [ new QueryEngineTool({ queryEngine, metadata: { name: 'zeko-internal-tool', description: `This tool can answer detailed questions about ZEKO.`, }, }), ]; // 5. Create an agent using the tools array and OpenAI GPT-4 LLM const agent = new OpenAIAgent({ tools });
Set up an FGA Store
In the Okta FGA dashboard, navigate to Settings, and in the Authorized Clients section, click + Create Client. Give your client a name, mark all three client permissions, and then click Create.
Once your client is created, you’ll see a modal containing Store ID, Client ID, and Client Secret.
Add
.envFGA_API_URLFGA_API_AUDIENCE# OpenAI OPENAI_API_KEY=<your-openai-api-key> # Okta FGA FGA_STORE_ID=<your-fga-store-id> FGA_CLIENT_ID=<your-fga-store-client-id> FGA_CLIENT_SECRET=<your-fga-store-client-secret> # Required only for non-US regions FGA_API_URL=https://api.xxx.fga.dev FGA_API_AUDIENCE=https://api.xxx.fga.dev/
Check the instructions here to find your OpenAI API key.
Next, navigate to Model Explorer. You’ll need to update the model information with this:
model schema 1.1 type user type doc relations define owner: [user] define viewer: [user, user:*]
Remember to click Save.
Check out this documentation to learn more about creating an authorization model in FGA.
Now, to have access to the public information, you’ll need to add a tuple on FGA. Navigate to the Tuple Management section and click + Add Tuple, fill in the following information:
- User :
user:* - Object : select doc and add
in the ID fieldpublic-doc - Relation :
viewer
A tuple signifies a user’s relation to a given object. For example, the above tuple implies that all users can view the
public-docAlternatively, you can use the
script to initialize the FGA store with the model and tuple. Run thescripts/fga-init.tscommand after setting up thenpm run fga:initfile..env
Test the Application
Now that you have set up the application and the FGA store, you can run the application using the following command:
npm start
The application will start with the query,
Show me forecast for ZEKO?The provided context does not include specific forecasts or projections for Zeko Advanced Systems Inc. ...
If you change the query to something that is available in the public document, the application will be able to retrieve the information.
Now, to have access to the private information, you’ll need to update your tuple list. Go back to the Okta FGA dashboard in the Tuple Management section and click + Add Tuple, fill in the following information:
- User :
user:user1 - Object : select doc and add
in the ID fieldprivate-doc - Relation :
viewer
Now click Add Tuple and then run the script again:
npm start
This time, you should see a response containing the forecast information since we added a tuple that defines the
vieweruser1private-docCongratulations! You have run a simple RAG application using LlamaIndex and secured it using Okta FGA.
Learn More about Auth for GenAI, Okta FGA and GenAI
In this post, you learned how to secure a LlamaIndex-based RAG application using Auth0's Auth for GenAI and Okta FGA. Okta FGA is built on top of OpenFGA, which is open-source. We invite you to check out the OpenFGA code on GitHub.
Before you go, we have some great news to share: we are working on more content and sample apps in collaboration with amazing GenAI frameworks like LlamaIndex, LangChain, CrewAI, Vercel AI SDK, and GenKit. Auth for GenAI is our upcoming product to help you protect your user's information in GenAI-powered applications. Make sure to join the Auth0 Lab Discord server to hear more and ask questions.
About the author
Deepu K Sasidharan
Staff Developer Advocate