# sovereign/sovereign

**Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/sovereign-sovereign).**

10,506 stars · 819 forks · HTML · NOASSERTION

## Links

- GitHub: https://github.com/sovereign/sovereign
- awesome-repositories: https://awesome-repositories.com/repository/sovereign-sovereign.md

## Description

Sovereign is a self-hosted cloud orchestrator and infrastructure-as-code toolkit designed to establish personal data sovereignty. It provides a suite of automation scripts to deploy a private cloud infrastructure consisting of open-source services for data storage, communication, and web hosting on private hardware.

The project focuses on the independent management of digital assets through the deployment of private email servers, git hosting, and file synchronization systems. It distinguishes itself by automating the full stack of server administration, from initial Linux server automation to the orchestration of containerized services.

The capability surface covers secure remote access via encrypted VPN tunnels and multi-factor authentication, alongside server security hardening and SSL termination. It also includes system observability through heartbeat-based monitoring and data protection via versioned, encrypted offsite backup pipelines.

## Tags

### DevOps & Infrastructure

- [Infrastructure as Code](https://awesome-repositories.com/f/devops-infrastructure/infrastructure/infrastructure-as-code.md) — Automates the deployment and configuration of server-level software through version-controlled, repeatable infrastructure-as-code scripts.
- [Personal Cloud Orchestrators](https://awesome-repositories.com/f/devops-infrastructure/personal-cloud-orchestrators.md) — Automates the installation and orchestration of a comprehensive personal cloud infrastructure on private hardware. ([source](https://github.com/sovereign/sovereign/blob/master/site.yml))
- [Self-Hosted Infrastructure](https://awesome-repositories.com/f/devops-infrastructure/self-hosted-infrastructure.md) — Deploys a comprehensive suite of open-source services to establish a self-managed private cloud infrastructure.
- [Cloud Suite Deployers](https://awesome-repositories.com/f/devops-infrastructure/cloud-deployment-platforms/cloud-suite-deployers.md) — Orchestrates the deployment of an integrated suite of open-source productivity and communication tools. ([source](https://github.com/sovereign/sovereign/blob/master/tests.py))
- [Container Orchestration](https://awesome-repositories.com/f/devops-infrastructure/container-orchestration.md) — Deploys open-source applications as isolated containerized units to simplify dependency management and scaling.
- [Containerized Service Orchestration](https://awesome-repositories.com/f/devops-infrastructure/containerized-service-orchestration.md) — Provides utilities for deploying and managing backend services within isolated container environments.
- [Infrastructure as Code Toolkits](https://awesome-repositories.com/f/devops-infrastructure/infrastructure-as-code-toolkits.md) — Ships a suite of automation scripts to provision a full stack of personal cloud services via code.
- [Installation Scripts](https://awesome-repositories.com/f/devops-infrastructure/installation-scripts.md) — Uses automated installation scripts for provisioning system configurations and server-level software.
- [Personal Cloud Infrastructure](https://awesome-repositories.com/f/devops-infrastructure/personal-cloud-infrastructure.md) — Bootstraps personal data sovereignty by deploying private storage, email, and web services on own hardware.
- [Personal Cloud Platforms](https://awesome-repositories.com/f/devops-infrastructure/personal-cloud-platforms.md) — Provides an extensible software stack for hosting private data management and digital infrastructure on personal hardware. ([source](https://github.com/sovereign/sovereign/blob/master/LICENSE.md))
- [Cloud Orchestrators](https://awesome-repositories.com/f/devops-infrastructure/self-hosted-deployments/cloud-orchestrators.md) — Provides an automation suite for deploying and managing a collection of open-source servers for mail and storage.
- [Email Delivery Infrastructure](https://awesome-repositories.com/f/devops-infrastructure/self-hosted-infrastructure/email-delivery-infrastructure.md) — Sets up privately hosted systems for managing the delivery and transmission of electronic mail. ([source](https://github.com/sovereign/sovereign/blob/master/tests.py))
- [Heartbeat Monitors](https://awesome-repositories.com/f/devops-infrastructure/automation-orchestration/task-execution-frameworks/heartbeat-monitors.md) — Implements mechanisms that perform periodic health pings to verify the status of critical background services.
- [Email Server Appliances](https://awesome-repositories.com/f/devops-infrastructure/platform-as-a-service/email-server-appliances.md) — Deploys a complete, interdependent suite of mail services as a single automated system appliance. ([source](https://github.com/sovereign/sovereign#readme))
- [Private Repository Hosting](https://awesome-repositories.com/f/devops-infrastructure/private-repository-hosting.md) — Provides automation for hosting private version control repositories on self-managed hardware.
- [Reverse Proxies](https://awesome-repositories.com/f/devops-infrastructure/reverse-proxies.md) — Implements reverse proxies to handle HTTPS redirection and SSL certificate management for internal services.

### Data & Databases

- [Automated Backup Systems](https://awesome-repositories.com/f/data-databases/automated-backup-systems.md) — Provides automated systems for scheduling and managing periodic data backups to remote encrypted storage.
- [Backup Storage Backends](https://awesome-repositories.com/f/data-databases/backup-storage-backends.md) — Configures remote storage backends and protocols to protect system data via secure offsite backups. ([source](https://github.com/sovereign/sovereign/tree/master/roles))
- [Private Cloud Storage](https://awesome-repositories.com/f/data-databases/private-cloud-storage.md) — Provides self-hosted platforms for managing and storing digital assets on private infrastructure. ([source](https://github.com/sovereign/sovereign/blob/master/site.yml))
- [System Data Backup Schedules](https://awesome-repositories.com/f/data-databases/automated-backup-systems/cron-driven-backup-schedules/system-data-backup-schedules.md) — Automates daily transfers of system data to remote encrypted storage to prevent data loss. ([source](https://github.com/sovereign/sovereign#readme))

### Networking & Communication

- [Email Servers](https://awesome-repositories.com/f/networking-communication/email-servers.md) — Provides a full-featured, self-hosted mail server stack including spam filtering and webmail interfaces.
- [Private Communication Suites](https://awesome-repositories.com/f/networking-communication/private-communication-suites.md) — Deploys a combined chat and email infrastructure to enable private communication across the cloud. ([source](https://github.com/sovereign/sovereign/blob/master/site.yml))
- [Private Network Connectivity](https://awesome-repositories.com/f/networking-communication/private-networks/private-network-connectivity.md) — Configures secure, isolated communication between internal services and remote clients. ([source](https://github.com/sovereign/sovereign/tree/master/roles))
- [Virtual Private Network Servers](https://awesome-repositories.com/f/networking-communication/virtual-private-network-servers.md) — Establishes a secure VPN server to provide encrypted remote access to the private network. ([source](https://github.com/sovereign/sovereign#readme))
- [Mail Servers](https://awesome-repositories.com/f/networking-communication/mail-servers.md) — Installs and manages server-side email infrastructure for sending, receiving, and managing electronic mail. ([source](https://github.com/sovereign/sovereign/tree/master/roles))
- [VPN Tunnels](https://awesome-repositories.com/f/networking-communication/vpn-tunnels.md) — Creates secure VPN tunnels to encrypt communication between remote clients and private hardware.

### Security & Cryptography

- [Data Sovereignty](https://awesome-repositories.com/f/security-cryptography/data-sovereignty.md) — Prioritizes user control and privacy by establishing independent, self-hosted data storage and backup systems.
- [Secure Remote Access](https://awesome-repositories.com/f/security-cryptography/secure-remote-access.md) — Implements encrypted VPN tunnels and authenticated channels for secure remote management of the private cloud.
- [Encrypted Tunneling](https://awesome-repositories.com/f/security-cryptography/encrypted-tunneling.md) — Establishes secure, encrypted connections to allow remote clients to bypass network restrictions and access the private cloud.
- [Multi-Factor Authentication](https://awesome-repositories.com/f/security-cryptography/multi-factor-authentication.md) — Enforces multi-factor authentication using hardware tokens or TOTP apps to protect remote server shell entry.
- [Security & HTTPS](https://awesome-repositories.com/f/security-cryptography/network-infrastructure-security/web-network-security/security-https.md) — Manages digital certificates and SSL termination to ensure secure HTTPS communication for web services. ([source](https://github.com/sovereign/sovereign/blob/master/tests.py))
- [Server Hardening](https://awesome-repositories.com/f/security-cryptography/server-hardening.md) — Implements security best practices to harden the server environment against unauthorized access. ([source](https://github.com/sovereign/sovereign#readme))

### System Administration & Monitoring

- [Server Configuration Utilities](https://awesome-repositories.com/f/system-administration-monitoring/server-configuration-utilities.md) — Sets up essential system-level requirements and operational utilities to ensure infrastructure stability. ([source](https://github.com/sovereign/sovereign/blob/master/site.yml))
- [Server Health Monitoring](https://awesome-repositories.com/f/system-administration-monitoring/server-health-monitoring.md) — Installs tools to verify the availability and responsiveness of hosted cloud services. ([source](https://github.com/sovereign/sovereign/tree/master/roles))
- [Server Monitoring and Auditing](https://awesome-repositories.com/f/system-administration-monitoring/server-monitoring-and-auditing.md) — Tracks system logs, service health, and bandwidth usage with real-time alerts for infrastructure availability.
- [System Monitoring](https://awesome-repositories.com/f/system-administration-monitoring/system-monitoring.md) — Deploys tools to track system health and performance metrics with automated alerting. ([source](https://github.com/sovereign/sovereign#readme))

### Development Tools & Productivity

- [Git Hosting Platforms](https://awesome-repositories.com/f/development-tools-productivity/git-hosting-platforms.md) — Establishes a private, self-hosted environment for managing version-controlled code repositories. ([source](https://github.com/sovereign/sovereign#readme))
- [Server Automation Scripts](https://awesome-repositories.com/f/development-tools-productivity/server-automation-scripts.md) — Uses administrative scripts to automate the deployment of system utilities and containerized services on Linux hosts.

### Part of an Awesome List

- [Infrastructure Automation](https://awesome-repositories.com/f/awesome-lists/devops/infrastructure-automation.md) — Maintains private cloud services via Ansible playbooks.
- [Infrastructure Management](https://awesome-repositories.com/f/awesome-lists/devops/infrastructure-management.md) — Collection of Ansible playbooks for setting up a private server.
