The Coder deployment model is flexible and offers various components that

platform administrators can deploy and scale depending on their use case. This

page describes possible deployments, challenges, and risks associated with them.

Learn more about our [Reference Architectures](../admin/architectures/index.md)

and platform scaling capabilities.

_coderd_ is the service created by running `coder server`. It is a thin API that

connects workspaces, provisioners and users. _coderd_ stores its state in

Postgres and is the only service that communicates with Postgres.

- Workspace Web Applications (e.g for easy access to `code-server`)

_provisionerd_ is the execution context for infrastructure modifying providers.

At the moment, the only provider is Terraform (running `terraform`).

While _coderd_ and Postgres can be orchestrated independently, our default


This architecture consists of a single load balancer, several _coderd_ replicas,

and _Coder workspaces_ deployed in the same region.

- Deploy at least one _coderd_ replica per availability zone with _coderd_

instances and provisioners. High availability is recommended but not essential

for small deployments.

- Single replica deployment is a special case that can address a

tiny/small/proof-of-concept installation on a single virtual machine. If you

are serving more than 100 users/workspaces, you should add more replicas.

**Coder workspace**

- For small deployments consider a lightweight workspace runtime like the

[Sysbox](https://github.com/nestybox/sysbox) container runtime. Learn more how

to enable

[docker-in-docker using Sysbox](https://asciinema.org/a/kkTmOxl8DhEZiM2fLZNFlYzbo?speed=2).

**HA Database**

- Monitor node status and resource utilization metrics.

- Implement robust backup and disaster recovery strategies to protect against

data loss.

**Load balancer**

- Distributes and load balances traffic from agents and clients to _Coder

Server_ replicas across availability zones.

- Layer 7 load balancing. The load balancer can decrypt SSL traffic, and

re-encrypt using an internal certificate.

- Session persistence (sticky sessions) can be disabled as _coderd_ instances

are stateless.

- WebSocket and long-lived connections must be supported.

**Single sign-on**

- Integrate with existing Single Sign-On (SSO) solutions used within the

organization via the supported OAuth 2.0 or OpenID Connect standards.

- Learn more about [Authentication in Coder](../admin/auth.md).


This architecture is for globally distributed developer teams using Coder

workspaces on daily basis. It features a single load balancer with regionally

deployed _Workspace Proxies_, several _coderd_ replicas, and _Coder workspaces_

provisioned in different regions.

Note: The _multi-region architecture_ assumes the same deployment principles as

the _single region architecture_, but it extends them to multi region deployment

with workspace proxies. Proxies are deployed in regions closest to developers to

offer the fastest developer experience.

**Workspace proxy**

- Workspace proxy offers developers the option to establish a fast relay

connection when accessing their workspace via SSH, a workspace application, or

port forwarding.

- Dashboard connections, API calls (e.g. _list workspaces_) are not served over

proxies.

- Proxies do not establish connections to the database.

- Proxy instances do not share authentication tokens between one another.

**Proxy load balancer**

- Distributes and load balances workspace relay traffic in a single region

across availability zones.

- Layer 7 load balancing. The load balancer can decrypt SSL traffic, and

re-encrypt using internal certificate.

- Session persistence (sticky sessions) can be disabled as _coderd_ instances

are stateless.

- WebSocket and long-lived connections must be supported.