The container deployment system of the present disclosure provides systems and processes to perform authorization of each unique container instance by the enterprise organization that published the container image and requested the container instance. A controller may be programmed or configured to apply one or more authorization policies to determine if a container instance should be executed or not. The authorization policies may include rules that restrict the number of containers running, cost consideration for executing a container, violations of time constraints for the execution of a container image, and violations of location constraints for execution of a container image, among other variations.