Skip to content

Deploying a TPAT

Matthew Moyer edited this page Jun 26, 2020 · 14 revisions

This page is part of the TPAT User Guide.


The Trust Policy Authoring Tool (TPAT) is a web-based software tool that you can use to develop and publish trust policies for Information Sharing & Safeguarding (IS&S) and Federated Identity, Credential, and Access Management (Federated ICAM) transactions. You can deploy an instance of the TPAT at a public-facing location, so that your information sharing partners can view and download your published policies. You can also deploy a TPAT for personal, non-public use on a workstation or laptop.

There are two basic ways to deploy the TPAT software.

Deploying a TPAT the Hard Way from Source Code

You can deploy a TPAT instance directly from the TPAT source code, but this option requires expertise in setting up a Java runtime environment, deploying a web server, and configuring a back-end database. In other words, it can be done, but it is not easy. We do not provide instructions for this option, since there is no "best" way to do it, and we assume that anybody who chooses this option has enough system administration skills to figure out the details and tailor their deployment to their preferences and needs.

Deploying a TPAT the Easy Way Using Docker

A much easier option is to deploy a TPAT using the TPAT Deployer. It enables you to deploy a TPAT in just a few steps, using the Docker virtualization platform. We believe this is the best option for most TPAT users. This option is suitable for all deployment use cases, from deployment of a public-facing TPAT by a system administrator in a data center to setting up a private, one-person TPAT on your laptop. Please see the TPAT Deployer Tutorial for more information about this option.


Previous: Trustmark Framework Background and Basic Concepts | Next: The Trust Policy Authoring Process