Self-Hosting
Loading...
Self-hosting Tambo
Deploy and run Tambo on your own infrastructure with Docker Compose or Kubernetes.
Tambo Cloud is the hosted platform behind Tambo AI. Self-hosting gives you full control over your data, infrastructure, and authentication.
Architecture
Tambo consists of three services:
| Service | Technology | Host Port | Description |
|---|---|---|---|
| Web | Next.js | 8260 | Dashboard and user interface |
| API | NestJS | 8261 | REST API for client requests |
| PostgreSQL | PostgreSQL 17 | 5433 | Database |
The web service serves the dashboard UI and communicates with the API. The API handles all client requests, manages threads, and orchestrates LLM calls. PostgreSQL stores all persistent data including projects, threads, messages, and user accounts.
Authentication model
Tambo supports two mutually exclusive authentication modes:
- OAuth (Google and/or GitHub) — used when any OAuth provider is configured
- Email login (via Resend magic links) — only active when no OAuth providers are configured
You must configure at least one mode. See Authentication setup for details.
Security considerations
These apply regardless of your deployment method (Docker Compose or Kubernetes):
- Change all default passwords — use strong, unique values for every secret
- Use HTTPS — always use TLS in production
- Restrict database access — don't expose the PostgreSQL port publicly
- Use secrets management — consider Docker secrets, Kubernetes secrets, or a vault
- Set
ALLOWED_LOGIN_DOMAIN— restrict access to your organization's email domain
In this section
Quickstart
Get a local deployment running in 5 minutes
Environment Variables
Full reference for all configuration options
Authentication
Set up OAuth or email login for your deployment
Docker Compose
Deploy to production with Docker Compose
Kubernetes
Deploy to a Kubernetes cluster
Operations
Backup, restore, upgrade, and monitor your deployment
Scripts
All helper scripts and npm aliases
Troubleshooting
Common issues and how to fix them