Tenant File

Flowable Work supports multiple identity providers and authorization types such as LDAP, OAuth2, SAML2, etc.

Flowable also provides an internal identity management (IDM) component that can manage tenants, users and groups. The internal IDM component is populated with tenants, users and groups defined in a tenant file. This file is read and loaded at initial system startup.

To use the internal IDM add the following dependency to the pom.xml file of the project:


To populate the internal IDM at database initialization create a file of the form:


where <tenants> is a meaningful name for the set of tenant definitions.

For example, the tenant json file for the 'demo' tenant is named demo.json. A tenantKey is defined in the file that is unique to this group of users for this tenant. The file is similar to:

  "name": "Flowable Demo",
  "tenantKey": "demo",
  "groups": [
      {"key": "flowableAdministrator", "name": "Flowable Administrator"},
      {"key": "flowableUser", "name": "Flowable User"},
  "users": [
      "firstName": "Flowable",
      "lastName": "Admin",
      "login": "admin",
      "email": "admin@demo.flowable.io",
      "language": "en",
      "theme": "flowable",
      "userDefinitionKey": "admin"

Note: A tenant setup file without tenantKey has all the users and groups created in the default tenant.