TazLab K8s Operators Inventory
The TazLab cluster is an operator-driven ecosystem. This inventory details the specific files and responsibilities for each controller.
Core Services Stack
1. Traefik (Edge Router)
- Manifests:
infrastructure/operators/traefik/ - Controller:
helmrelease.yaml(Chart:traefik/traefik) - Infrastructure:
infrastructure/instances/traefik/(Service + IngressClass)
2. cert-manager (Trust Engine)
- Manifests:
infrastructure/operators/cert-manager/ - Issuers:
infrastructure/configs/cert-manager/issuer.yaml(Let’s Encrypt Prod) - Auth:
infrastructure/configs/cert-manager/cloudflare-external-secret.yaml
3. External Secrets Operator (ESO)
- Manifests:
infrastructure/operators/core/(Managed as part of the core bundle) - Store: Uses a global
ClusterSecretStorepointing to Infisical/Vault.
4. Stakater Reloader
- Role: Automatically detects changes in ConfigMaps/Secrets and performs rolling restarts of deployments.
Data & Persistence Stack
5. Crunchy PostgreSQL Operator (PGO)
- Manifests:
infrastructure/operators/postgres-operator/ - Instance:
infrastructure/instances/tazlab-db/(1 replica + S3 backup)
6. Longhorn (Block Storage)
- Manifests:
infrastructure/instances/longhorn/(Ingress + Service) - Namespace:
longhorn-system
Monitoring & Observability
7. kube-prometheus-stack
- Manifests:
infrastructure/operators/monitoring/ - Dashboards:
infrastructure/operators/monitoring/dashboards/(Managed as code)
See Also
- Mapping: Repository Mapping - Where to find these files.
- Hub: TazLab K8s Hub