Secure Cloud Workspaces with Zero Trust
NeoSC delivers enterprise-grade virtual desktop infrastructure with integrated SSO, encrypted tunneling, and comprehensive security controls. Deploy secure workspaces in minutes.
Get Started in Minutes
Deploy your first secure workspace and connect users with SSO authentication
Deploy the infrastructure
Clone the repository and configure your environment variables. NeoSC uses Docker Compose for easy deployment.git clone https://github.com/infra-neo/NeoSC.git
cd NeoSC
cp infra/.env.example infra/.env
infra/.env to configure your Zitadel SSO credentials and domain settings. Start the services
Launch the full stack including Pomerium reverse proxy, FastAPI backend, React frontend, and MongoDB.cd infra
docker compose up -d
The platform will be available at https://portal.kappa4.com (or your configured domain). Pomerium handles authentication and proxying.
Configure Zitadel SSO
Set up your Zitadel application with the correct redirect URIs and scopes.Redirect URI: https://portal.kappa4.com/auth/callback
Post Logout URI: https://portal.kappa4.com
Grant Types: Authorization Code, Refresh Token
Launch your first workspace
Access the dashboard and launch a secure workspace. NeoSC supports Linux, Windows, browser, dev container, and admin desktop environments.curl -X POST https://api.portal.kappa4.com/api/workspaces/{id}/launch \
-H "Authorization: Bearer YOUR_TOKEN"
{
"id": "workspace-123",
"status": "running",
"connection": {
"url": "https://workspace-123.portal.kappa4.com",
"tunnel_status": "encrypted"
}
}
Explore by Topic
Dive into NeoSC’s core capabilities and security features
Secure Workspaces
Deploy Linux, Windows, browser, and dev container workspaces with full isolation and security controls.
Session Management
Track active sessions, monitor connections, and enforce security policies with real-time visibility.
Zitadel SSO
Integrate enterprise SSO with OIDC PKCE flow, supporting multiple identity providers and MFA.
Zero Trust Architecture
Implement Zero Trust networking with Pomerium reverse proxy and NetBird WireGuard tunneling.
Audit & Compliance
Comprehensive audit logging for all user actions, workspace operations, and security events.
API Integration
Full REST API for automation, integrations, and custom workflows with your existing systems.
Key Features
Enterprise security and flexibility in a modern cloud platform
Zero Trust Network
Every connection authenticated and encrypted with Pomerium reverse proxy and NetBird WireGuard tunneling.
Enterprise SSO
Zitadel OIDC integration with PKCE flow, supporting multiple identity providers and MFA enforcement.
Multi-Tenant Organizations
Isolate workspaces and users by organization with independent security policies and resource limits.
Complete Audit Trail
Track every action with comprehensive audit logs including user activity, workspace operations, and security events.
Ready to get started?
Deploy NeoSC in your infrastructure and start providing secure cloud workspaces to your team.