#AWS Deployment

The Docker container for the walt.id can be deployed in any Docker environment. Within the AWS cloud, it is recommended to use the ECS or EKS services, but it is also possible to set up test-environments directly on an EC2 instance.

The following picture depicts the AWS deployment of the walt.id enterprise backend as well as the used services in AWS:

AWS Identity and Access Management - for configuring role-based access control from the application to the KMS.

AWS Key Management Service - for managing keys and performing cryptographic operations. Continue reading how to configure access to the KMS here.

Amazon S3 - as persistence layer for the Revocation Registry.

AWS DocumentDB Service - for hosting the MongoDB. Continue reading, how to set up the connection here.

Please ensure that all openid/* endpoints of the Enterprise Stack API are publicly accessible. This is necessary for successful credential exchanges with external systems.

Kubernetes Deployment Feature Manger