Overview
Features
Upsun frees modern development teams to easily experiment, quickly iterate, and effortlessly scale on every dimension. A self-service, fully managed, secure, developer-focused PaaS, with built-in observability, multicloud edge-caching, reliable deployment, and the freedom to choose your stack and cloud provider.
Build and run
Features that empower your development team with the flexibility to build and—the firepower to run—diverse applications. With instantly cloned preview environments including all your data, flexible resources, automated infrastructure provisioning, Git-based workflows, and more.
Languages, runtimes, stacks, and services
Choose from 10 programming languages (including Node.js, Python, and PHP), virtually any framework (including Django, Express, Symfony, and Strapi), and an array of runtimes and services—including databases, search, and cache tooling—to find the perfect fit for every challenge. Fully managed and automated, with the latest updates and versions always available. Learn moreInstant preview environments including all your data
Instantly clone production-to-preview environments on demand, creating perfect, byte-for-byte copies that include configuration, code, and data to reduce release risk and feel confident your deployment will run as expected. Learn moreThird-party Git repository
Already host your code in GitHub, GitLab, or Bitbucket? You can easily link it to your Upsun projects as a third-party repository, enabling your project to become a mirror of your repository. Create a new environment when a branch is created or a pull request is opened, rebuild the environment when new code is pushed to GitHub, or delete the environment when a pull request is merged effortlessly with robust automation. Learn moreActivity scripts
Activity scripts are custom pieces of JavaScript code added to your project via a single API call or CLI command that enables your project to interact with third-party services (e.g., Slack, Twilio, PagerDuty). Automate complex tasks when an activity is triggered or has been completed. Set up custom notifications, alerts, or reminders. And so much more—the only limit is your imagination. Learn moreConsole
Managing multiple applications and projects at the same time? Our console is home base, where you can interact with projects and manage environments from a single location with a clear, interactive overview. Learn moreCLI
Everything you can do with Upsun can be done with our command-line interface (CLI), where you can manage your daily work environments and projects more efficiently, directly from a terminal. Learn moreAPI
As a container-based PaaS, our main API is Git. We also offer a REST API that enables you to manage every aspect of our platform—from managing projects and environments to creating robust workflows and integrations with your CI systems and internal services. Learn moreGlobal support
Build your applications on our stable, reliable infrastructure with, a 24x7, globally distributed support team. Learn moreBackups and customer-data recovery
Don’t lose sleep over lost customer data. Every Upsun project has 2 daily automated backups and 2 manual backups available to revert to at all times. With more flexibility and customization for our backups’ feature firmly on the horizon. Learn moreSecure and comply
Secure by design; gain peace of mind and get more time to focus on your code with high levels of built-in security and compliance. Fully automated and managed by Upsun and strengthened by Git-driven architecture to help ensure every change to infrastructure configuration is versioned, auditable, and reversible.
DDoS protection
Using our high-bandwidth, globally distributed network built to absorb distributed denial-of-service (DDoS) attacks, applications hosted on our PaaS are protected with our robust security implementation. Learn moreRead-only file system
Every application is deployed to a read-only file system— meaning no unwanted changes can be made to your code post-deployment. Any software installation or change to the application can only be done through a secure, auditable process, reducing the attack vector of your environments while enhancing your application security. Learn moreEncryption
Protect your data from unwanted eyes with either at-rest (on Amazon Web Services, Microsoft Azure, OVHcloud, Google Cloud Platform, or Orange Cloud) or in-transit data encryption. Use IaaS-provided key management services to protect your data with at-rest encryption. Or opt for our controlled networks protected by private networking rules, with in-transit encryption to keep data secure.User management
Take full control of who has access to your projects, invite users to your organization, and grant them permissions to keep things moving with simple, flexible user management. Add, edit, or remove permissions at any time to reflect your project’s and team’s requirements. Learn morePatches and updates
Biweekly releases of fully tested patches, versions, and upgrades of runtimes and services ensure your applications remain up to date without bugs or breakages. All new security updates are deployed within 30 days—as per our PCI certificate specifications—with major security releases typically rolled out across our entire infrastructure within 2 hours.Automated TLS certificates
Upsun automatically provides Transport Layer Security (TLS) certificates from Let’s Encrypt for all sites and environments at no additional cost. Each certificate is valid for 90 days and is automatically renewed 28 days before expiration. So you can rest easy and forget about the admin. Learn more
Keyless SSH
Access your applications without having to worry about the keys. Keyless Secure Shell (SSH) access—powered by OAuth 2 and SSH certificates—securely connects users to their application server faster. Learn moreMultifactor authentication
Enhanced security with multifactor authentication (MFA) requires a second security factor from users to gain SSH access to their Upsun projects. Selected on a per-project basis, Upsun users can implement MFA through the Upsun console on as few or as many projects as they want. Learn moreWeb application firewall
Our built-in Platform.sh web application firewall (WAF) protects every application and environment hosted on Upsun by monitoring requests to your application and blocking anything suspicious. Learn morePCI DSS and SOC 2 compliance
SOC 2 Type 2 and PCI DSS Level 1-compliant cloud hosting—fully automated and managed by Upsun—gives you more time to focus on code. Regular, independent third-party audits provide an external examination of the controls we’ve implemented on our infrastructure and operations, helping to ensure the highest security standards.Insurance
We’ve got you covered. Upsun, powered by Platform.sh, has group-level Public Liability and Technology Error and Omission insurance securely in place. All Platform.sh subsidiaries, including Upsun, are covered by these policies to give you true peace of mind.Privacy
We care about our customers and strive to be good custodians of their data. We don’t sell your data and remain transparent about how we use it. Adhering to GDPR, CCPA/CPRA, SOC 2, the Australian Privacy Act, and PIPEDA to ensure the highest standards of data privacy regulation.Subprocessors
Upsun engages subprocessors in countries within and outside of the EU and ensures that all data transfers are executed with the proper contract templates: our EU DPA for transfers to the EU and countries with an adequacy decision as designated by the European Commission, or SCCs plus Supplementary Measures Assessments for transfers to countries lacking an adequacy decision.Policies and procedures
Built with a security-first mindset, Upsun policies and procedures are designed to cover the core aspects of information security: confidentiality, integrity, and availability. From data retention and data breach to firewall policy and vendor management, our extensive policies secure data and applications in line with cybersecurity best practices.Scale
Scalable on every dimension, adapts seamlessly to your applications’ requirements, and helps improve application performance and availability. Gain efficiency across the board with smooth vertical and horizontal scaling, scalable team management, and more.
Horizontal scaling
Increase reliability, fault tolerance, and flexibility by adding or removing instances of your application container depending on its needs. Full-control horizontal scaling empowers you to make the necessary decisions to keep your application running smoothly, seamlessly managing traffic surges. Learn moreVertical scaling
Our projects are container-based, each service/runtime is given its very own container, each with its own CPU/RAM and disk resources available. Need to scale up or down? Flexible resource allocation makes this as simple as possible, enabling you to change container storage and CPU/RAM per container, per environment, at any time. Learn moreScalable team management
Manage user permissions across all of your projects from a single screen with our centralized user management system. Grant, edit, and remove access permissions for your team as needed, and keep projects moving with simplified Upsun user management. Learn moreAutomated code updates
Run automatic code updates through our Source Operations feature to specify commands that commit changes to your project’s repository—without your team having to lift a finger. Effortlessly update your application dependencies or a site from an upstream repository. Or revert to the last commit pushed to your Git repository, and much more. Learn moreEdge
Upsun comes with its own Edge layer and a feature set that will continue to expand in the coming months with a Content Delivery Network (CDN) and many more features coming soon.Observe
Analyze and optimize your application performance through code and continuous profiling, and identify how, when, and where performance has been impacted with detailed Application Performance Monitoring (APM). Get a real-time view of your applications and services resources’ usage and implement recommended changes for best performance in minimal time.
Infrastructure metrics
Built-in observability offers infrastructure metrics that can give you valuable insights into how site components are behaving. Identify bottlenecks, and zoom in on smaller intervals. Or get the bigger picture of how, when, and where your applications are consuming resources. Learn moreApplication Performance Monitoring
Through Upsun observability, Python and PHP APM recommendations identify how, when, and where performance is impacted, so you can rapidly implement recommended changes and maintain optimal performance. Learn moreProfiling
Collects function-call-level metrics from the Upsun PHP profiler, providing accurate insight into how your code is behaving and consuming resources at runtime. Pinpoint performance bottlenecks, measure data from production, and reproduce measurements on local machines to fix and merge changes to production in no time. Learn moreContinuous profiling
Continuous profiling on console enables you to pinpoint which functions of your Go, Node.js, PHP, Python, Ruby, or Rust applications consume the most resources, then improve their performance directly from Upsun.With insights garnered from your systems’ resource consumption over time, locate, debug, and fix issues that impact short-term and optimize long-term performance. Compare and contrast time frames to help uncover performance regression/opportunities for application optimization.
