BYOK AI SaaS Boilerplate

Audit every AI decision. Own every API call. Trust nothing blindly.

A production-oriented starter for multi-tenant AI workflows, source-cited answers, approval gates, and audit hash-chain logging.

BYOK Multi-tenant RAG citations Approval workflow Audit hash chain

Client-side BYOK Provider keys stay in the user's browser or customer-owned proxy.

RAG with citations Retrieved context is mapped to source documents and chunk indexes.

Audit-first workflow AI output, retrieved context, risk, and approvals are traceable.

Knowledge Base

Paste, chunk, retrieve

Document title Tenant

Document text

Ready to create searchable chunks.

Ask AI

Question

Click "Run Demo Flow" to retrieve context, generate an answer, and record an audit event.

Drafts

Workflow	Status	Risk	Approval
Probation termination memo	WAITING_APPROVAL	HIGH 70	Required
Policy FAQ draft	RUNNING	LOW 10	Not required

Approvals

Workflow	Reason	Status
Probation termination memo	Critical HR term matched: terminate employee	PENDING

Audit Logs

#12 AI_OUTPUT_RECORDED
previous_hash: 7c4218...
entry_hash: b91f0a...
payload: userInput, retrievedContext, model, provider, aiOutput

Settings

Provider Model

API Key

In the real app, this is encrypted with Web Crypto and never sent to the hosted backend.