feat: Feature Request: Option to Disable Administrator Access to User Chat Histories #4715

New Issue

Closed

opened 2025-11-11 16:01:18 -06:00 by GiteaMirror · 3 comments

GiteaMirror commented 2025-11-11 16:01:18 -06:00

Owner

Copy Link

Originally created by @manwallet on GitHub (Apr 4, 2025).

Check Existing Issues

• I have searched the existing issues and discussions.

Problem Description

Description

Currently, administrators can view all chat histories of registered users. This creates privacy concerns for users who want their conversations to remain confidential, even from the server administrator. As a server host who wants to provide OpenWebUI services to friends and other users, I need a way to ensure their privacy and build trust by technically restricting my own access to their conversations.

Proposed Solution

Implement a system setting that allows administrators to disable their ability to view users' chat histories. This could be:

• A global toggle in admin settings that, when enabled, prevents administrators from accessing any user conversations
• Potentially user-controlled privacy settings that let individuals choose whether their chats can be viewed by administrators
• End-to-end encryption for chat sessions where the user holds the keys

Use Cases

• Hosting a server for friends, family, or colleagues where privacy is a concern
• Organizations that need to comply with privacy regulations
• Educational environments where student privacy needs to be maintained

Benefits

• Increased user trust and confidence in the platform
• Better privacy protection for all users
• Alignment with privacy-focused values and principles
• Competitive advantage over platforms without such privacy controls

Additional Context

This feature is important for building trust when sharing an OpenWebUI server with other users. Many users are hesitant to use shared AI services if they believe their conversations could be viewed by administrators.

Thank you for considering this feature request.

Desired Solution you'd like

Desired Solution

I suggest implementing a simple and straightforward user authorization mechanism:

1. User Authorization for Access:

   • By default, administrators cannot view any user's chat history
   • If an administrator needs to view a user's chat history (e.g., for troubleshooting), the system will send an authorization request to that user
   • Users can choose to approve or deny viewing requests
   • Users can set the time range for authorization (e.g., valid for 24 hours) and viewing scope (e.g., only specific conversations)
   • All authorization requests and access actions are logged in the system

2. Interface Implementation:

   • Add a "Request to View Chat History" button in the admin panel
   • Users can manage authorization requests in their settings page after receiving notifications
   • The system displays which chat records are being viewed by administrators and when the authorization expires

This approach is both simple and effective in protecting user privacy while allowing administrators to provide support when necessary with explicit permission.

Alternatives Considered

No response

Additional Context

No response

Originally created by @manwallet on GitHub (Apr 4, 2025). ### Check Existing Issues - [x] I have searched the existing issues and discussions. ### Problem Description ## Description Currently, administrators can view all chat histories of registered users. This creates privacy concerns for users who want their conversations to remain confidential, even from the server administrator. As a server host who wants to provide OpenWebUI services to friends and other users, I need a way to ensure their privacy and build trust by technically restricting my own access to their conversations. ## Proposed Solution Implement a system setting that allows administrators to disable their ability to view users' chat histories. This could be: - A global toggle in admin settings that, when enabled, prevents administrators from accessing any user conversations - Potentially user-controlled privacy settings that let individuals choose whether their chats can be viewed by administrators - End-to-end encryption for chat sessions where the user holds the keys ## Use Cases - Hosting a server for friends, family, or colleagues where privacy is a concern - Organizations that need to comply with privacy regulations - Educational environments where student privacy needs to be maintained ## Benefits - Increased user trust and confidence in the platform - Better privacy protection for all users - Alignment with privacy-focused values and principles - Competitive advantage over platforms without such privacy controls ## Additional Context This feature is important for building trust when sharing an OpenWebUI server with other users. Many users are hesitant to use shared AI services if they believe their conversations could be viewed by administrators. Thank you for considering this feature request. ### Desired Solution you'd like # Desired Solution I suggest implementing a simple and straightforward user authorization mechanism: 1. **User Authorization for Access**: - By default, administrators cannot view any user's chat history - If an administrator needs to view a user's chat history (e.g., for troubleshooting), the system will send an authorization request to that user - Users can choose to approve or deny viewing requests - Users can set the time range for authorization (e.g., valid for 24 hours) and viewing scope (e.g., only specific conversations) - All authorization requests and access actions are logged in the system 2. **Interface Implementation**: - Add a "Request to View Chat History" button in the admin panel - Users can manage authorization requests in their settings page after receiving notifications - The system displays which chat records are being viewed by administrators and when the authorization expires This approach is both simple and effective in protecting user privacy while allowing administrators to provide support when necessary with explicit permission. ### Alternatives Considered _No response_ ### Additional Context _No response_

GiteaMirror closed this issue 2025-11-11 16:01:19 -06:00

GiteaMirror commented 2025-11-11 16:01:19 -06:00

Author

Owner

Copy Link

@gaby commented on GitHub (Apr 4, 2025):

@manwallet This already exists, see the docs:

https://docs.openwebui.com/getting-started/env-configuration#enable_admin_chat_access

ENABLE_ADMIN_CHAT_ACCESS=False

@gaby commented on GitHub (Apr 4, 2025): @manwallet This already exists, see the docs: https://docs.openwebui.com/getting-started/env-configuration#enable_admin_chat_access ```yaml ENABLE_ADMIN_CHAT_ACCESS=False ```

GiteaMirror commented 2025-11-11 16:01:19 -06:00

Author

Owner

Copy Link

@manwallet commented on GitHub (Apr 4, 2025):

@manwallet This already exists, see the docs:

https://docs.openwebui.com/getting-started/env-configuration#enable_admin_chat_access

ENABLE_ADMIN_CHAT_ACCESS=False

My bad
thank you very very much

@manwallet commented on GitHub (Apr 4, 2025): > [@manwallet](https://github.com/manwallet) This already exists, see the docs: > > https://docs.openwebui.com/getting-started/env-configuration#enable_admin_chat_access > > ENABLE_ADMIN_CHAT_ACCESS=False My bad thank you very very much

GiteaMirror commented 2025-11-11 16:01:20 -06:00

Author

Owner

Copy Link

@gaby commented on GitHub (Apr 4, 2025):

@manwallet No problem, please close the issue as completed

@gaby commented on GitHub (Apr 4, 2025): @manwallet No problem, please close the issue as completed

GiteaMirror referenced this issue 2025-11-11 17:51:25 -06:00

[PR #4715] [MERGED] feat: support ollama batch processing embeddings #8340

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dev

backend-outlet

v0.8.10

v0.8.9

v0.8.8

v0.8.7

v0.8.6

v0.8.5

v0.8.4

v0.8.3

v0.8.2

v0.8.1

v0.8.0

v0.7.2

v0.7.1

v0.7.0

v0.6.43

v0.6.42

v0.6.41

v0.6.40

v0.6.39

v0.6.38

v0.6.37

v0.6.36

v0.6.35

v0.6.34

v0.6.33

v0.6.32

v0.6.31

v0.6.30

v0.6.29

v0.6.28

v0.6.27

v0.6.26

v0.6.25

v0.6.24

v0.6.23

v0.6.22

v0.6.21

v0.6.20

v0.6.19

v0.6.18

v0.6.17

v0.6.16

v0.6.15

v0.6.14

v0.6.13

v0.6.12

v0.6.11

v0.6.10

v0.6.9

v0.6.8

v0.6.7

v0.6.6

v0.6.5

v0.6.4

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.20

v0.5.19

v0.5.18

v0.5.17

v0.5.16

v0.5.15

v0.5.14

v0.5.13

v0.5.12

v0.5.11

v0.5.10

v0.5.9

v0.5.8

v0.5.7

v0.5.6

v0.5.5

v0.5.4

v0.5.3

v0.5.2

v0.5.1

v0.5.0

v0.4.8

v0.4.7

v0.4.6

v0.4.5

v0.4.4

v0.4.3

v0.4.2

v0.4.1

v0.4.0

v0.3.35

v0.3.34

v0.3.33

v0.3.32

v0.3.31

v0.3.30

v0.3.29

v0.3.28

v0.3.27

v0.3.26

v0.3.25

v0.3.24

v0.3.23

v0.3.22

v0.3.21

v0.3.20

v0.3.19

v0.3.18

v0.3.17

v0.3.16

v0.3.15

v0.3.14

v0.3.13

v0.3.12

v0.3.11

v0.3.10

v0.3.9

v0.3.8

v0.3.7

v0.3.6

v0.3.5

v0.3.4

v0.3.3

v0.3.2

v0.3.1

v0.3.0

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

v0.1.125

v0.1.124

v0.1.123

v0.1.122

v0.1.121

v0.1.120

v0.1.119

v0.1.118

v0.1.117

v0.1.116

v0.1.115

v0.1.114

v0.1.113

v0.1.112

v0.1.111

v0.1.110

v0.1.109

v0.1.108

v0.1.107

v0.1.106

v0.1.105

v0.1.104

v0.1.103

v0.1.102

Labels

Clear labels

bug

core

documentation

enhancement

good first issue

help wanted

non-core

pull-request

Mirrored from GitHub Pull Request

python

question

testing wanted

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/open-webui#4715