Datasheet

Deployment Options

Category	Details
Types	On-Premises Managed Service: Available through partners SaaS: Available through partners
Container (recommended)	Docker Compose or Podman Kubernetes Helm Charts (available with a business subscription )
Bare-Metal (not officially supported)	OpenCloud can run as a single binary. However, integrating additional services like Collabora, Apache Tika for search, or antivirus is not documented. Bare-metal deployments are not officially supported by OpenCloud. They are great for quick evaluation but are undocumented and have a minimalist feature set.

Backup

Category	Details
Backup strategy	Snapshots: Backups can be easily done solely through storage snapshots, eliminating the need for complex database backups.

Security

Category	Details
Encryption	Transport Encryption: TLS Server-Side Encryption: S3 SSE E2EE Client-Side Encryption: Handled exclusively via OS-native encryption
Access management	RBAC (Role-Based Access Control) 2FA / MFA SSO (LDAP, SAML, OAuth)
Auditing & Logging	Detailed logs, audit trails, monitoring APIs
File Firewall	Prevent upload of restricted filetypes based on a allow- or denylist.
Antivirus	ClamAV (default) ICAP: Integrate 3rd party anti-virus scanner via Internet Content Adaptation Protocol (ICAP)
Data Loss Prevention	Collabora Secure View

Identity Management

Category	Details
Integrated	Integrated user and group management (LibreIDM) for up to 500 users. Designed for standalone or small-sized deployments that do not rely on third-party identity services, usually for friends and family.
External	OpenID Connect (OIDC): Integration of external identity providers via Keycloak. Integration of Azure AD, EntraID, ADFS

Compliance

Regulation	Details
EU-GDPR	Compliant
WCAG 2.1 / BITV 2.0 Web Accessibility	Compliant. To prevent accessibility regressions, we treat any accessibility violation as a bug and continuously fix these issues as part of our daily software development lifecycle.

High Availability

Category	Details
Redundancy & Failover	Supported in clustered environments to ensure high availability and system reliability. Automatic failover mechanisms help minimize downtime in case of hardware or software failures.

Integrations

Category	Details
Plugins & Extensibility	Web: Extension system for adding custom functionality. Server: Microservices architecture for modular and scalable server-side extensions

APIs

API	Description
WebDAV	Standard file API for remote file transfer over HTTP/HTTPS using TUS for resumable, interruption-tolerant transfers.
GraphAPI	Microsoft Graph API for managing cloud storage and collaboration spaces.
gRPC	High-performance RPC framework for microservice communication.
OCS	API for programmatic file/folder sharing and management.
OCM	Open Cloud Mesh API for federated file and folder sharing between different file cloud platforms like Cernbox, ownCloud, Nextcloud or Seafile .
SSE	Server-sent event stream for real-time client notifications.
WOPI	Microsoft API for integrating Office apps with third-party storage, e.g., Collabora.
KQL	Keyword Query Language (KQL) is a search language to perform advanced searches by filtering and querying structured data, metadata, and documents efficiently.
ICAP	Network protocol for offloading content scanning (e.g., antivirus).