bmann.ca / bmannconsulting.com
The bmannconsulting.com website
fork atom

co-op cloud

bmann.ca 6f13ef38 2c11ea88

options
unified split
Changed files
+66 -4
_notes
Co-op Cloud Alternatives.md
Co-op Cloud.md
+55 -4
_notes/Co-op Cloud Alternatives.md 
···

       
12

       
12

       
 

       
- πŸ‘ Large library of apps.


     

       
13

       
13

       
 

       
- πŸ‘ Built-in SSO using LDAP, which is compatible with more apps and often has a better user interface than OAuth.


     

       
14

       
14

       
 

       
- πŸ‘ Apps are actively maintained by the Cloudron team.


     

       
15

       

       
-

       



     

       
16

       
15

       
 

       
### Cons


     

       
17

       
16

       
 

       



     

       
18

       
17

       
 

       
- πŸ‘Ž Moving away from open source. The core is now proprietary software.


     
···

       
24

       
23

       
 

       
- πŸ‘Ž Limited to vertical scaling.


     

       
25

       
24

       
 

       
- πŸ‘Ž Tension between needs of hosting provider and non-technical user.


     

       
26

       
25

       
 

       
- πŸ‘Ž LDAP introduces security problems - one vulnerable app can expose a user's password for all apps.


     

       
27

       

       
-

       
- πŸ‘Ž Bit of aΒ [black box](https://en.wikipedia.org/wiki/Black_box).


     

       

       
26

       
+

       
- πŸ‘Ž Bit of aΒ black box


     

       

       
27

       
+

       



     

       

       
28

       
+

       
_**@boris commentary:** do I wish that Cloudron were fully open source? Yes. But I also like that the team has a sustainable business where they keep all of these apps packaged and updated over time! They mention the SSO model here as LDAP, but in fact it's OIDC now._


     

       
28

       
29

       
 

       



     

       
29

       
30

       
 

       
## [[Yunohost]]


     

       
30

       
31

       
 

       



     
···

       
36

       
37

       
 

       
- πŸ‘ Supports hosting apps in subdirectories as well as subdomains.


     

       
37

       
38

       
 

       
- πŸ‘ Doesn't require a public-facing IP.


     

       
38

       
39

       
 

       
- πŸ‘ Supports system-wide mutualisation of resources for apps (e.g. sharing databases by default)


     

       
39

       

       
-

       



     

       
40

       
40

       
 

       
### Cons


     

       
41

       
41

       
 

       



     

       
42

       
42

       
 

       
- πŸ‘Ž Upstream libre software communities aren't involved in packaging.


     

       
43

       
43

       
 

       
- πŸ‘Ž Uninstalling apps leaves growing cruft.


     

       
44

       
44

       
 

       
- πŸ‘Ž Limited to vertical scaling.


     

       
45

       

       
-

       
- πŸ‘Ž Not intended for use by hosting providers.

     

       

       
45

       
+

       
- πŸ‘Ž Not intended for use by hosting providers.


     

       

       
46

       
+

       



     

       

       
47

       
+

       
_**@boris commentary:** I took a look at Yunohost and found it scary from a security perspective. Packaging is a pile of bash scripts. More apps but they're mostly undermaintained_


     

       

       
48

       
+

       
##  [[Caprover]]


     

       

       
49

       
+

       



     

       

       
50

       
+

       
### Pros


     

       

       
51

       
+

       



     

       

       
52

       
+

       
- πŸ‘ Bigger library of apps.


     

       

       
53

       
+

       
- πŸ‘ Easy set-up using a DigitalOcean one-click app.


     

       

       
54

       
+

       
- πŸ‘ Works without a domain name or a public IP, in non-HTTPS mode (good for homeservers).


     

       

       
55

       
+

       
- πŸ‘ Deploy any app with aΒ `docker-compose.yml`Β file as a "One Click App" via the web interface.


     

       

       
56

       
+

       
- πŸ‘ Multi-node (multi-server) set-up works by default.


     

       

       
57

       
+

       
### Cons


     

       

       
58

       
+

       



     

       

       
59

       
+

       
- πŸ‘Ž Single-file app definition format, difficult to tweak using entrypoint scripts.


     

       

       
60

       
+

       
- πŸ‘Ž Nginx instead of Traefik for load-balancing.


     

       

       
61

       
+

       
- πŸ‘Ž Command-line client requires NodeJS /Β `npm`.


     

       

       
62

       
+

       
- πŸ‘ŽΒ [Requires 512MB RAM for a single app](https://github.com/caprover/caprover/issues/28).


     

       

       
63

       
+

       
- πŸ‘ŽΒ [Backup/restore is "experimental"](https://caprover.com/docs/backup-and-restore.html), and doesn't currently help with backing up Docker volumes.


     

       

       
64

       
+

       
- πŸ‘Ž Exposes its bespoke management interface to the internet via HTTPS by default.


     

       

       
65

       
+

       
## [[Ansible]]


     

       

       
66

       
+

       



     

       

       
67

       
+

       
### Pros


     

       

       
68

       
+

       



     

       

       
69

       
+

       
- πŸ‘ Includes server creation and bootstrapping.


     

       

       
70

       
+

       
### Cons


     

       

       
71

       
+

       



     

       

       
72

       
+

       
- πŸ‘Ž Upstream libre software communities aren't publishing Ansible roles.


     

       

       
73

       
+

       
- πŸ‘Ž Lots of manual work involved in things like app isolation, backups, updates.


     

       

       
74

       
+

       
## [[Kubernetes]]


     

       

       
75

       
+

       



     

       

       
76

       
+

       
### Pros


     

       

       
77

       
+

       



     

       

       
78

       
+

       
- πŸ‘ Helm charts are available for some key apps already.


     

       

       
79

       
+

       
- πŸ‘ Scale all the things.


     

       

       
80

       
+

       
### Cons


     

       

       
81

       
+

       



     

       

       
82

       
+

       
- πŸ‘Ž Too big -- requires 3rd party tools to run a single-node instance.


     

       

       
83

       
+

       
- πŸ‘Ž Not suitable for a small to mid size hosting provider.


     

       

       
84

       
+

       



     

       

       
85

       
+

       
## [[Docker-compose]]


     

       

       
86

       
+

       



     

       

       
87

       
+

       
### Pros


     

       

       
88

       
+

       



     

       

       
89

       
+

       
- πŸ‘ Quick to set up and familiar for many developers.


     

       

       
90

       
+

       
### Cons


     

       

       
91

       
+

       



     

       

       
92

       
+

       
- πŸ‘Ž Manual work required for process monitoring.


     

       

       
93

       
+

       
- πŸ‘Ž Secret storage not available yet.


     

       

       
94

       
+

       
- πŸ‘ŽΒ [Swarm is the new best practice](https://github.com/BretFisher/ama/issues/8#issuecomment-367575011).


     

       

       
95

       
+

       



     

       

       
96

       
+

       
I'll skip the the "doing it manually" old school version of server + app maintenance.
+11
_notes/Co-op Cloud.md 
···

       
6

       
6

       
 

       



     

       
7

       
7

       
 

       
> Co-op Cloud aims to make hosting libre software apps simple for small service providers such as tech co-operatives who are looking to standardise around an open, transparent and scalable infrastructure. It uses the latest container technologies and configurations are shared intoΒ [the commons](https://en.wikipedia.org/wiki/Commons)Β for the benefit of all.


     

       
8

       
8

       
 

       



     

       

       
9

       
+

       
> The project was started by workers atΒ [Autonomic](https://autonomic.zone/)Β which is aΒ [worker-owned co-operative](https://en.wikipedia.org/wiki/Worker_cooperative). We provide technologies and infrastructure to empower users to make a positive impact on the world. We're using Co-op Cloud in production, amongst other systems.


     

       

       
10

       
+

       



     

       

       
11

       
+

       
> The core technologies of Co-op Cloud are libre software and enjoy wide adoption across software developer communities.


     

       

       
12

       
+

       
> 


     

       

       
13

       
+

       
> - [Containers](https://docs.coopcloud.tech/intro/faq/#why-containers)


     

       

       
14

       
+

       
> - [Compose specification](https://docs.coopcloud.tech/intro/faq/#why-docker-compose)


     

       

       
15

       
+

       
> - [Docker swarm](https://docs.coopcloud.tech/intro/faq/#why-docker-swarm)


     

       

       
16

       
+

       
> - [Abra command-line tool](https://git.autonomic.zone/coop-cloud/abra)


     

       

       
17

       
+

       



     

       

       
18

       
+

       
_**@boris commentary:** it's unclear whether Docker swarm IS going to keep going. One of the sites they link to, dockerswarm.rocks, has a [kubernetes won](https://dockerswarm.rocks/swarm-or-kubernetes/) post. The [awesome-swarm](https://github.com/BretFisher/awesome-swarm) appears to continue to be updated._


     

       

       
19

       
+

       



     

       
9

       
20

       
 

       
Their [FAQ](https://docs.coopcloud.tech/intro/faq/) has a really good section on comparing to other solutions, which I’m reproducing at [[Co-op Cloud Alternatives]]