Overview
This is a repackaged open source software product wherein additional charges apply for Cloud Forge runtime hardening, bootstrap automation, Caddy/TLS configuration, integration scripts, maintenance, and seller support.
Cloud Forge Hardened App Runtime is an Amazon Linux 2023 based AMI for deploying self-hosted open-source applications through Cloud Forge CLI and AWS CloudFormation. It is designed as the runtime layer behind Cloud Forge catalog apps, so teams can move from an app selection to a running EC2 deployment with a repeatable command-line workflow.
What is included:
- Amazon Linux 2023 base image
- Docker and Docker Compose
- Caddy reverse proxy
- Cloud Forge bootstrap service
- Cloud Forge app installer contract
- AWS Systems Manager Agent support
- CloudWatch Agent when available from the OS package repositories
- IMDSv2 configuration in the provided CloudFormation template
- Basic host hardening and cleanup during AMI build
- Runtime capability metadata under /etc/cloud-forge/capabilities.json
Use cases:
- Self-hosting open-source applications from the Cloud Forge catalog
- Deploying repeatable single-node app stacks on AWS
- Running Caddy-fronted Docker Compose applications with CloudFormation outputs
- Testing Cloud Forge catalog templates before promoting them to production
Caddy is installed by default. When a DNS name is provided, Caddy can use automatic HTTPS for that domain. When no DNS name is provided and IP certificate mode is enabled, Cloud Forge attempts to request a Let's Encrypt certificate for the instance public IPv4 address. IP certificate mode requires inbound HTTP/HTTPS access, a public IPv4 address, and a stable public address such as an Elastic IP.
This AMI has an AWS Marketplace software fee. AWS infrastructure costs such as EC2, EBS, public IPv4, Elastic IP, and data transfer are billed separately by AWS. Cloud Forge CLI itself is open source and has no separate software fee.
Support: support@corenovacloud.com
Highlights
- Hardened Amazon Linux 2023 runtime with Docker, Docker Compose, Caddy, SSM support, and basic host security controls.
- Designed for Cloud Forge CLI and CloudFormation deployments of self-hosted open-source applications.
- Supports HTTP fallback, domain HTTPS, optional Let's Encrypt IP certificates, and internal TLS mode for private testing.
Details
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
Pricing
Dimension | Cost/hour |
|---|---|
t3.small Recommended | $0.012 |
t3.micro | $0.012 |
t3.medium | $0.012 |
t3.large | $0.012 |
t3a.micro | $0.012 |
t3a.small | $0.012 |
t3a.medium | $0.012 |
t3a.large | $0.012 |
m5.large | $0.012 |
m6i.large | $0.012 |
Vendor refund policy
30-day refund on AWS Marketplace software fees for verified technical issues. AWS infrastructure charges are billed by AWS and are not refundable by the seller.
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Cloud Forge Hardened App Runtime 0.2.1 on Amazon Linux 2023.
Includes Docker, Docker Compose, Caddy reverse proxy, Cloud Forge bootstrap service, local installer contract, SSM support, CloudWatch Agent when available, basic host hardening, and runtime capability metadata.
Caddy runs through Docker Compose and supports HTTP fallback, domain HTTPS, optional Let's Encrypt IP address certificates, and internal TLS mode for private testing.
AMI: ami-0777e5ab470bf89c1 (us-east-1)
Additional details
Usage instructions
Launch this AMI through the Cloud Forge CLI or the provided CloudFormation template.
Recommended first test:
- Deploy in us-east-1 with instance type t3.small or t3.medium.
- Use Systems Manager Session Manager where possible. SSH is optional and password login is disabled.
- Open TCP 80 and 443 for Caddy and public certificate validation. Restrict SSH to a trusted CIDR when enabled.
- Check runtime status with: sudo systemctl status cloud-forge-bootstrap sudo systemctl status docker docker compose -f /opt/cloud-forge/docker-compose.platform.yml ps sudo journalctl -u cloud-forge-bootstrap --no-pager
Caddy is installed by default. Use a DNS name for the most stable public HTTPS path. If no DNS name is provided and IP certificate mode is enabled, Cloud Forge attempts to request a Let's Encrypt certificate for the public IPv4 address. This requires inbound 80/443 and a stable public IPv4 address such as an Elastic IP.
Support: support@corenovacloud.com
Support
Vendor support
Email: support@corenovacloud.com Web: https://www.corenovacloud.com/ Refund: 30-day refund on Marketplace software fees for verified technical issues. AWS infrastructure charges are billed by AWS and are not refundable by the seller.
Include AWS Region, AMI ID, EC2 Instance ID, instance type, CloudFormation stack name, and steps to reproduce.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.