Citrix Secure Developer Spaces Setup Guide
This repository contains various guides on how to set up the Citrix Secure Developer Spaces platform. It is intended for administrators of the platform.
Need help? Support Center
Technical Requirements
- An AWS, Azure, GCP account or any on-prem Kubernetes (Openshift, Tanzu) deployment with appropriate permissions for cloud infrastructure
- Kubernetes cluster, version 1.20+, we can share the cluster with other applications (not recommended)
- Ingress gateway: we are using the Nginx ingress controller Welcome - Ingress-Nginx Controller. NetScaler and Istio gateway are supported as well.
-
Network Policy: we are relying on the networking.k8s.io/v1 API. If not available you can install: Calico ( [Project Calico Tigera - Creator of Calico](https://www.tigera.io/project-calico/) ) or (Cilium) (Cilium - Cloud Native, eBPF-based Networking, Observability, and Security ) - Persistent Volume Claims API, for creating persistent volumes.
- In case of AWS, Amazon Linux should be used for Kubernetes nodes.
-
Helm CLI tool for deploying the product, we provide a helm chart to our customers. Installation guide: [Helm Installing Helm](https://helm.sh/docs/intro/install/) - Two DNS domains with appropriate SSL certificates (optional but recommended for PoC deployment), one is a wildcard domain. We recommend the following: example.com and *.proxy.example.com
- For production deployments it is recommended to use a MongoDB Atlas subscription for database management, for PoC by default we deploy an internal MongoDB container
- For production deployments it is recommended to use an identity provider (SAML or OIDC), such as Okta, for identity and access management. Email/password identities
You should also be able to access the following URLs needed for the installation:
-
Our license server is at: api.enterprise.strong.network It is used to get a license and generate a temporary access token to the artifactory where we store images. It is also possible to perform the installation (production or PoC) without having access to this endpoint and in that case we can supply you with an offline license.
-
europe-docker.pkg.dev/strong-network-release/images is the artifactory URL hosted on GCP. We have mirrors in the US and Asia, if needed:
asia-docker.pkg.dev/strong-network-release/images and us-docker.pkg.dev/strong-network-release/images
-
gs://strong-network-helm-chart (https://storage.cloud.google.com/strong-network-helm-chart/) It is a Google bucket where the helm chart is stored
-
The installer itself is stored on dockerhub under our account: https://hub.docker.com/r/strongnetwork/strong_installer (
docker pull strongnetwork/strong_installer
)
The exact list of URLS that you should be able to access is:
Helm chart package:
https://storage.cloud.google.com/strong-network-helm-chart/ninjahchart-2025.5.4.tgz
List of service images:
europe-docker.pkg.dev/strong-network-release/images/browser_in_browser:2025.5.4 europe-docker.pkg.dev/strong-network-release/images/cloud_editor_sidecar_proxy:2025.5.4 europe-docker.pkg.dev/strong-network-release/images/frontend:2025.5.4 europe-docker.pkg.dev/strong-network-release/images/sn_enterprise_bundle:2025.5.4
Workspace Images:
europe-docker.pkg.dev/strong-network-release/images/ws-images/android_studio:2.2.5
europe-docker.pkg.dev/strong-network-release/images/ws-images/cloud_editor_generic:2.2.9
europe-docker.pkg.dev/strong-network-release/images/ws-images/goland_go:2.2.5
europe-docker.pkg.dev/strong-network-release/images/ws-images/intellij_java:2.2.5
europe-docker.pkg.dev/strong-network-release/images/ws-images/intellij_ultimate:2.2.5
europe-docker.pkg.dev/strong-network-release/images/ws-images/phpstorm_php:2.2.5
europe-docker.pkg.dev/strong-network-release/images/ws-images/pycharm_python:2.2.5
europe-docker.pkg.dev/strong-network-release/images/ws-images/webstorm_image:2.2.5
Installer Image:
strongnetwork/strong_installer:2025.5.4