Cloud Native GeoServer Deployment Guide

Docker images for all the services are available on DockerHub, under the geoservercloud organization.

Starting with version 1.8.6, all Docker images are signed with cosign.

In order to verify the signatures, install cosign,download the cosign.pub file containing the public key, and run

cosign verify --key cosign.pub geoservercloud/<image name>:1.8.6

The public key can also be an environment variable. For example:

export GSC_COSIGN_PUB_KEY=`cat cosign.pub`
cosign verify --key env://GSC_COSIGN_PUB_KEY geoservercloud/<image name>:1.8.6

In any case, replace 1.8.6 with the specific version you’re using

Available Docker images

Infrastructure

• geoservercloud/geoserver-cloud-config: Spring Cloud Config server providing support for externalized configuration in a distributed system, as a central place to manage external properties for applications across all environments.

  Usually you’d only use the config service in Docker Compose deployments. In a Kubernetes environment, we prefer to use the externalized configuration embedded in the Docker images under /etc/geoserver/ and Kubernetes ConfigMaps or Secrets.

• geoservercloud/geoserver-cloud-discovery: Netflix Eureka service registry for service discovery and client-side load balancing.

  This service is primarily used in Docker Compose deployments. For Kubernetes deployments, it’s recommended to use the standalone Spring profile and rely on Kubernetes Services for service discovery and load balancing.

• geoservercloud/geoserver-cloud-gateway: Spring Cloud Gateway reverse proxy providing a single entry point to all GeoServer services.

GeoServer Services

• geoservercloud/geoserver-cloud-wms GeoServer Web Map Server
• geoservercloud/geoserver-cloud-wfs GeoServer Web Feature Server
• geoservercloud/geoserver-cloud-wcs GeoServer Web Coverage Server
• geoservercloud/geoserver-cloud-wps GeoServer Web Processing Server
• geoservercloud/geoserver-cloud-gwc GeoServer GeoWebCache service
• geoservercloud/geoserver-cloud-rest GeoServer REST API service
• geoservercloud/geoserver-cloud-webui GeoServer configuration Web User Interface service

Optional security services

• geoservercloud/geoserver-acl Access Control List service is an advanced authorization system for GeoServer.

Test-only/non-production images

• geoservercloud/geoserver-cloud-admin-server: this is a simple spring-boot-admin image we use during development and it’s not intended for production deployments.

Docker compose deployments

Please check out the docker-compose deployment document.

Kubernetes

Please check out the example Helm chart on this helm-geoserver-cloud repository as a starting point to deploy to K8s.

Podman

Follow the Podman’s deployment guide to use Podman’s daemonless container engine for Cloud Native GeoServer containers.