Enterprise Features
Detailed comparison of Free, Team, and Enterprise tiers.
Detailed comparison of Free, Team, and Enterprise tiers.
Feature comparison
| Feature | Free | Team | Enterprise |
|---|---|---|---|
| Pipelines | Unlimited | Unlimited | Unlimited |
| Visual DAG Editor | Yes | Yes | Yes |
| Python SDK | Yes | Yes | Yes |
| 15 Node Types | Yes | Yes | Yes |
| Cron Scheduling | Yes | Yes | Yes |
| REST API | Yes | Yes | Yes |
| WebSocket Monitoring | Yes | Yes | Yes |
| SQLite & PostgreSQL | Yes | Yes | Yes |
| Quality Checks | Yes | Yes | Yes |
| Webhooks & Hooks | Yes | Yes | Yes |
| Data Preview | Yes | Yes | Yes |
| Run Resume | Yes | Yes | Yes |
| Backfill | Yes | Yes | Yes |
| Users & Roles | Admin, Viewer | Admin, Editor, Viewer | Custom roles |
| Workspaces | 1 | Up to 10 | Unlimited |
| Audit Log | -- | Yes | Yes |
| Git Sync | -- | Yes | Yes |
| SSO / OIDC | -- | -- | Yes |
| Organizations | -- | -- | Yes |
| Admin Panel | -- | -- | Yes |
| Notifications (Slack, PagerDuty) | -- | Yes | Yes |
| Distributed Mode | -- | -- | Yes |
| Kubernetes / Helm | -- | -- | Yes |
| External Executors | -- | -- | Yes |
| Data Lineage | -- | Yes | Yes |
| Support Tickets | -- | -- | Yes |
| Usage Analytics | -- | -- | Yes |
| Priority Support | Community | Dedicated |
Feature details
RBAC (Role-Based Access Control)
Fine-grained permissions control who can view, create, edit, run, and delete resources. Permissions are scoped to workspaces.
Built-in roles:
| Role | Capabilities |
|---|---|
| Super Admin | Everything, including organization management |
| Admin | Full workspace access, user management |
| Editor | Create and edit pipelines, run pipelines |
| Viewer | Read-only access to all resources |
Custom roles can be defined with any combination of permissions.
Workspaces
Workspaces provide logical isolation within a single Brokoli instance. Each workspace has its own:
- Pipelines
- Connections
- Variables
- Run history
Users can be assigned different roles in different workspaces.
Organizations
Multi-tenant architecture for SaaS providers or large enterprises. Each organization has completely isolated data, users, and workspaces.
SSO / OIDC
Connect Brokoli to your identity provider:
- Google Workspace
- Okta
- Azure Active Directory
- Any OIDC-compliant provider
Users are auto-provisioned on first login with a configurable default role.
Audit Log
Every API action is recorded with:
- Who (user ID, username)
- What (action, resource type, resource ID)
- When (timestamp)
- Where (IP address)
- Before/after diffs for edit operations
Query the audit log via API:
curl "http://localhost:8080/api/audit?user_id=xxx&action=update&resource=pipeline"Git Sync
Two-way synchronization between Brokoli and a Git repository:
- Pull: Import pipeline definitions from a repo on push (via webhook) or on demand
- Push: Export UI-created pipelines to the repo
- Pipelines from Git are marked with
source: "git"and locked from UI editing
Distributed Mode
Split Brokoli into separate processes for horizontal scaling:
# API server (handles HTTP/WebSocket)
broked serve --mode api
# Scheduler (handles cron)
broked serve --mode scheduler
# Workers (execute pipelines, scale horizontally)
broked serve --mode workerWorkers pull jobs from a Redis-backed queue. Scale workers independently based on pipeline volume.
Kubernetes
Helm chart with:
- Horizontal pod autoscaling for workers
- PodDisruptionBudgets
- Health/readiness probes
- PostgreSQL and Redis dependencies
- ConfigMaps for environment configuration
External Executors
Run Code nodes in isolated environments instead of the Brokoli process:
- Docker executor: Spin up a container per Code node
- Kubernetes executor: Run Code nodes as Kubernetes Jobs
This provides resource isolation and custom Python environments per pipeline.
Notifications
Configurable alerts for pipeline events:
| Provider | Events |
|---|---|
| Slack | Run started, completed, failed |
| PagerDuty | Run failed (critical severity) |
| Run completed, failed | |
| Webhook | All events |
Configure via the UI (Settings > Notifications) or API.