See /k8s/README.md for detailed operating instructions.
Infrastructurally the service uses (managed) Kubernetes on DigitalOcean and Google Cloud Storage (GCS) for backups.
application/Ingresspwa(frontend)redirection- ...from the original domain
grpc_gateway/api/forwarder
- backends (includes Postgres and Redis)
archiver_cronjob- writes PG dumps to GCS
restorer_cronjobpg_restoreessentially
monitoring/kube-prometheus-stack(KPS)loki-stack- connected manually to Grafana from KPS
- Caching for the frontends at 1 hour TTL.
- Throttling for the backends (
/api/...) at 80 QP10S for one IP.
All of them are installed manually at the moment, and Alertmanager hasn't been explored.
- DigitalOcean
Memory Utilizationis above 90% for 5 min for any of the cluster nodes.
- Mailgun
- 'The primary account holder will receive an e-mail notification when 50% and 75% of the limit [1k] has been crossed.'
- Google Cloud Storage
received_bytes_countin the backup bucket is less than expected for at least 25 hours (the correspondingCronJobruns every day).
- debricked.com for third-party dependencies.
- snyk.io for scanning Docker images.
