K8s Platform Architecture
A self-hosted Kubernetes platform running 9 full-stack applications on a K3s cluster, managed through GitOps with ArgoCD and automated CI/CD pipelines.
Platform at a Glance
| Layer | Technology |
|---|---|
| Cluster | K3s (lightweight Kubernetes) |
| GitOps | ArgoCD with automated sync, prune, and self-heal |
| CI/CD | GitHub Actions → Docker Hub → ArgoCD |
| Ingress | Traefik with Cloudflare DNS proxy |
| TLS | cert-manager with Let's Encrypt |
| Secrets | Doppler + External Secrets Operator |
| Monitoring | Prometheus + Grafana |
| Backup | Velero + Backblaze B2, database logical dumps, DNS/secrets cold storage, CloudCasa |
| Helm | portfolio-common library chart shared across all apps |
Deployed Applications
| App | Stack | Database |
|---|---|---|
| Bookmarked | React, Node.js, Express | PostgreSQL (Neon + pgvector) |
| educationELLy | React, Node.js, Express | MongoDB |
| educationELLy GraphQL | React, Apollo, Node.js | MongoDB |
| IntervalAI | React, Node.js, Express | MongoDB |
| Code Talk | React, Node.js, Express | PostgreSQL, Redis |
| TenantFlow | React, Node.js, Express | PostgreSQL |
| PodRick | React | — (K8s API) |
| Pop!_Portfolio | React, Node.js, Express | PostgreSQL |
| k8s-ui-library | Storybook | — (static) |
Architecture Diagram
Live Dashboards
- Cluster Dashboard — Live K8s metrics, ArgoCD application health, and recent deployments
- Pop!_Portfolio Dashboard — Pop!_Portfolio application dashboard
- Podrick — DevOps portfolio manager dashboard
- Component Showcase — Interactive Storybook with extracted components from all 9 applications
- Portfolio Storybook — Portfolio site component library
Documentation Sections
- Architecture — High-level system design and GitOps workflow
- Kubernetes — Cluster topology, Helm charts, HPA, ArgoCD
- Networking — Traefik ingress, TLS, middleware, and domain routing
- Security — Doppler secrets management, RBAC, and service accounts
- Databases — PostgreSQL, MongoDB, and Redis instances
- Applications — Per-app architecture and deployment details
- CI/CD — GitHub Actions workflows and Docker build strategy
- Monitoring — Prometheus metrics and Grafana dashboards
- Backup — Velero, database logical dumps, DNS/secrets cold storage, CloudCasa, automated restore verification
- AI / ML — Shared AI Gateway, Triton semantic search, and Langfuse observability