====== Architecture & Deployment ======

This page describes the 3DM Cloud architecture. \\
For documentation on the DNS Records, see [[241:cloud:concepts:dns_records|]].

===== Deployment =====

=== About the 3DM Cloud Portal ===

  * Runs on Azure
  * Azure datacenter location: West Europe
  * Single VM with Ubuntu Linux 20.04.2 (LTS)
  * Database: Azure managed MySQL (8.0.15)
  * API: PHP 7.4.3-4ubuntu2.19
  * Website: Apache 2.4.41-4ubuntu3.14
  * Wordpress: version 5.7.1

=== About the 3D Cloud Storage===

  * Runs on Azure and Amazon, at different datacenters across the world
  * Azure datacenter locations: Australia,East US,North Europe,South Central US,West Europe,West US
  * Amazon datacenter locations: Singapore
  * Single VM per datacenter, with Flatcar container Linux (auto-updating, security focus)
  * Single Docker container based on Java 11 (LTS) Alpine Linux (trimmed down attack surface)
  * Only TLS 1.2 and later, no older technologies like SSL
  * HTTPS only, no insecure HTTP
  * Secure Websockets (WSS) on top of HTTPS for better streaming performance
  * No direct access to the backend blob storage account, all access is through the service

=== Live and Test Environment ===

Orbit 3DM Cloud comes with a Live (production) and Test (staging) environment.  \\
The staging environment is a complete copy of the live deployment. 

Users are granted access upon request and are provided with 2TB Orbit 3DM Cloud Storage free of charge. \\
Orbit 3DM Cloud Storage Test does not provide access to iTwin Staging environment. 

Access to the Orbit 3DM Cloud Test environment is privileged to specified IP addresses. \\
To get access to Orbit 3DM Cloud Test, contact Bentley Support and share the IP address from where you would like to have access. 
 


===== Product Components & User Roles ======

{{:241:cloud:concepts:2023-09-12_13-42-12.png?1000&nolink|}}

\\
===== Reality Data Flowchart =====

{{:241:technology:core:scheme_cloud_01.png?1000&nolink|}}