Merge pull request #2738 from jonasfrisell/add-railway-docs

docs: add Railway deployment guide

Author: ucatbas

docs/mint.json

@@ -311,6 +311,7 @@
             "setting-up/installation/brew",
             "setting-up/installation/container",
             "setting-up/installation/fly",
+            "setting-up/installation/railway",
             "setting-up/installation/google",
             "setting-up/installation/helm",
             "setting-up/installation/kubernetes",

docs/setting-up/installation/intro.mdx

@@ -53,6 +53,16 @@ Here is some options that you can use to set up and deploy Permify in your serve
      Deploying Permify with Helm Charts.
     </Card>
   </div>
+  <div style={{ flex: "1 1 calc(50% - 20px)", margin: "10px" }}>
+    <Card title="Fly.io" icon="paper-plane" href="/setting-up/installation/fly">
+      Deploy Permify on Fly.io with PostgreSQL.
+    </Card>
+  </div>
+  <div style={{ flex: "1 1 calc(50% - 20px)", margin: "10px" }}>
+    <Card title="Railway" icon="train" href="/setting-up/installation/railway">
+      One-click deploy Permify on Railway with PostgreSQL.
+    </Card>
+  </div>
 </div>
 
 If you have any questions, feel free to join our [Discord community](https://discord.gg/n6KfzYxhPp) and start a discussion!

docs/setting-up/installation/railway.mdx

@@ -0,0 +1,127 @@
+---
+title: Deploy on Railway
+---
+
+This guide covers deploying Permify on Railway, either via a one-click template or manual setup.
+
+## One-Click Deploy
+
+The fastest way to get started:
+
+[![Deploy on Railway](https://railway.com/button.svg)](https://railway.com/deploy/permify)
+
+This template automatically provisions:
+- A Permify instance with API authentication enabled
+- A PostgreSQL database for persistent storage
+- Private networking between services
+
+## What Gets Deployed
+
+### Permify Service
+
+The template deploys the latest Permify container image with the following default configuration:
+
+| Variable | Default Value | Description |
+|----------|---------------|-------------|
+| `PERMIFY_DATABASE_ENGINE` | `postgres` | Database backend |
+| `PERMIFY_DATABASE_URI` | Auto-configured | Connection string to PostgreSQL |
+| `PERMIFY_AUTHN_ENABLED` | `true` | Enable API authentication |
+| `PERMIFY_AUTHN_METHOD` | `preshared` | Authentication method |
+| `PERMIFY_AUTHN_PRESHARED_KEYS` | Auto-generated | 32-character secret key |
+| `PERMIFY_LOG_LEVEL` | `info` | Logging verbosity |
+
+### PostgreSQL Database
+
+A dedicated PostgreSQL instance is provisioned and connected to Permify over Railway's private network. The database connection is configured automatically—no manual setup required.
+
+## Connecting Your Application
+
+After deployment, add these environment variables to your application service to connect to Permify:
+```shell
+PERMIFY_HOST=${{Permify.RAILWAY_PRIVATE_DOMAIN}}
+PERMIFY_GRPC_PORT=3478
+PERMIFY_REST_PORT=3476
+PERMIFY_API_KEY=${{Permify.PERMIFY_AUTHN_PRESHARED_KEYS}}
+```
+
+### Available Endpoints
+
+Permify exposes two ports:
+
+| Port | Protocol | Description |
+|------|----------|-------------|
+| 3476 | HTTP/REST | REST API and health checks |
+| 3478 | gRPC | High-performance gRPC API |
+
+<Note>
+Both ports are accessible over Railway's private network by default. To expose them publicly, configure a public domain in your Railway service settings.
+</Note>
+
+## Verifying the Deployment
+
+By default, Permify runs on Railway's private network with no public access. To verify the deployment:
+
+**Option 1: Check Railway logs**
+
+View the deployment logs in Railway's dashboard. A successful start shows:
+```
+🚀 grpc server successfully started: 3478
+🚀 http server successfully started: 3476
+```
+
+**Option 2: Expose a public domain**
+
+To test externally, add a public domain in Railway's service settings (Settings → Networking → Public Networking). Then:
+```
+curl https://<your-public-domain>/healthz
+```
+
+You should see:
+```json
+{"status":"SERVING"}
+```
+
+**Option 3: From another Railway service**
+
+Your application can reach Permify on the private network at:
+```
+http://permify.railway.internal:3476/healthz
+```
+
+## Manual Deployment
+
+If you prefer to deploy manually instead of using the template:
+
+### 1. Create a New Project
+
+Create a new project in Railway and add a PostgreSQL database.
+
+### 2. Add the Permify Service
+
+Add a new service and deploy from the Docker image:
+```
+ghcr.io/permify/permify:latest
+```
+
+### 3. Configure Environment Variables
+
+Set the following environment variables on your Permify service:
+```shell
+PERMIFY_DATABASE_ENGINE=postgres
+PERMIFY_DATABASE_URI=${{Postgres.DATABASE_URL}}
+PERMIFY_AUTHN_ENABLED=true
+PERMIFY_AUTHN_METHOD=preshared
+PERMIFY_AUTHN_PRESHARED_KEYS=<your-secret-key>
+PERMIFY_LOG_LEVEL=info
+```
+
+### 4. Set the Start Command
+
+Configure the start command:
+```
+permify serve --database-auto-migrate=true
+```
+
+### 5. Expose Ports
+
+In the service settings, expose ports 3476 (REST) and/or 3478 (gRPC) as needed.