Launch a production-ready backend in minutes. PocketBase delivers a REST API, realtime subscriptions, auth, and file storage as a single binary on EC2 with 24/7 cloudimg support.
Real screenshots of this software running on the cloudimg image, taken while testing the deployment guide.
This is a repackaged open source software product wherein additional charges apply for cloudimg support services.
## PocketBase on AWS - Your Backend in a Single Binary
PocketBase gives developers and small teams a complete backend - REST API, realtime subscriptions, authentication, and file storage - without managing separate database servers, message brokers, or multi-service stacks. This AMI delivers PocketBase fully configured as a system service on EC2, so you go from launch to a live API endpoint in minutes.
## Why PocketBase Over Other BaaS Platforms
Unlike hosted backend-as-a-service platforms, PocketBase runs entirely on your EC2 instance. You get full data ownership with a single SQLite file you can snapshot and move, no per-request pricing surprises, no vendor lock-in, and zero external dependencies. Your data never leaves your AWS account. For startups, indie developers, and small teams who want predictable EC2-only costs without sacrificing a modern API layer, this is the simplest path to production.
## Application Stack
## Instant CRUD API With Realtime Subscriptions
Define collections (database tables) from the admin dashboard or programmatically, and PocketBase instantly exposes a full CRUD REST API with filtering, sorting, and pagination. Realtime subscriptions over Server-Sent Events let you build collaborative apps and live dashboards. File upload with automatic thumbnail generation and a flexible rules-based authorization layer are included out of the box.
## Authentication and OAuth2 Integration
Built-in authentication supports email/password and one-time codes. Connect external OAuth2 providers such as Google, GitHub, Apple, or Microsoft to let users sign in with existing accounts. Configure providers directly from the admin dashboard without writing custom middleware.
## Security and Hardening
## Getting Started
The admin dashboard is served at the /_/ path on port 80. Retrieve the generated superuser password from the root-only file, sign in, and begin creating collections. Point your web or mobile application at the same host to consume the REST and realtime API. For TLS, attach an ACM certificate via an ALB or configure Let's Encrypt directly on the instance.
## Use Cases
## cloudimg Support
24/7 technical support by email and live chat covers deployment, collection and schema design, authentication and OAuth2 setup, API rules, file storage, realtime subscriptions, backups, TLS configuration, and performance tuning. To discuss your architecture or get a guided deployment walkthrough, contact our engineering team.
All product and company names are trademarks or registered trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.