PolyForm Noncommercial 1.0.0 Alpha a.1.0-45

Data Sovereignty by Design.

Run your internal messaging stack on infrastructure you control, so ownership, access, and retention stay with your organization.

Plexichat is a modular, high-performance messaging ecosystem. It is engineered to give organizations total control over their data infrastructure through hardware-rooted security and self-hosted sovereignty.

Access the Alpha

Explore Capabilities Request Access

Self-Hosted vs Cloud

Core Capability	Plexichat (Self-Hosted)	Standard SaaS / Cloud
Key Custody	✓ Keys live with your infrastructure	✗ Vendor-managed key custody
Data Location	✓ Your database and storage	✗ Vendor-controlled storage
Network Boundary	✓ Private network or on-prem	✗ Shared public cloud
Operational Control	✓ Your logs, backups, and policies	✗ Export-limited by vendor
Integration Model	✓ Standard protocols and self-hosted APIs	✗ Vendor-only integrations

Platform Overview

Plexichat ships as a coordinated stack with clear boundaries between API, gateway, and client services.

FastAPI Server

REST API for users, messages, servers, roles, and admin workflows.

WebSocket Gateway

Real-time event stream with opcode-based dispatch and intent filtering.

Flask Web Client

Browser UI that connects to the API and gateway with configurable base URLs.

Voice & Video

WebRTC signaling with Mediasoup or Janus for scalable media delivery.

Storage Backends

PostgreSQL for persistence, Redis for caching, and S3-compatible media storage.

Admin Tooling

Admin UI, audit visibility, and policy enforcement without external dependencies.

Security Architecture Snapshot

Key Custody by Default

Plexichat keeps the encryption root inside your infrastructure, using TPM-backed keys when available or environment-managed keys for container deployments.

TPM 2.0 hardware root of trust or environment variable key source.

Encryption at rest with local key custody and backups under your control.

Self-hosted database, media storage, and retention policies.

View Full Security Architecture

Deployment Model

Run It Your Way

Deploy via Docker Compose or a manual Gunicorn service, and place the API behind your own reverse proxy with TLS.

Configuration lives in ~/.plexichat/config/config.yaml.

Health check endpoint: /api/v1/health.

Documentation endpoints: /docs, /redoc, /docs/api.

Deployment Details

Repository Footprint

Current repo snapshots from the Plexichat GitLab group.

Plexichat (Server)

Core FastAPI backend and real-time gateway services.

1,115 Commits

2 Contributors

825 Source Files

plexichat-client (Web UI)

Web client that connects to the Plexichat API and Gateway.

509 Commits

2 Contributors

113 Source Files

View Full Repo Breakdown

Versioning Strategy

Plexichat Semantic Versioning

We utilize a modified semantic versioning scheme to clearly communicate the state and maturity of each component in the ecosystem:

[stage].[major].[minor]-[build]

Stages:
- a (Alpha): Active development, core refactoring, breaking changes common.
- b (Beta): Feature complete, focusing on stability and performance.
- c (Candidate): Final validation, candidate for production release.
- r (Release): Stable, production-ready release.

Operational Footprint

Gateway Efficiency

Opcode-based event flow with intent filtering for predictable real-time performance.

Storage Separation

PostgreSQL persistence, Redis caching, and S3-compatible media storage.

Identity & Sessions

Token-based auth, multi-session tracking, and configurable security policies.

Operational Visibility

Health checks, telemetry endpoints, and admin dashboards for system control.

Moderation & Reports

Built-in reporting flows, audit visibility, and configurable enforcement rules.

Media Safety

Media proxying and validation to reduce exposure to unsafe external content.