OpenSource Portfolio
Project references
OpenShift 4 Container Platform
Design, build and integration of a new OpenShift 4 Container Platform as well as: Platform and Application deployment and associated CI/CD Pipelines. Integration with multiple external tools as Active Directory (LDAP Services), Splunk (Log monitoring) or Check_MK (Platform/App monitoring)
Technology: OpenShift 4, GitLab CI/CD, Splunk, Active Directory, Check MK
4Dmetrics OpenShift Migration
Migration of 4Dmetrics V1 from Podman to 4Dmetrics V2 on OpenShift 4. Creation of Helm charts for deployments into fully isolated environment, along with Argo CD pipeline to perform standard deployments.
Technology: Grafana, VictoriaMetrics, ReactJs, Honkit, Nginx, OpenShift 4, Helm, Argo CD
Tyk API Management Platform
Implementation of the Tyk API Management Platform (Enterprise) for a customer in the banking sector. The platform was initially deployed into Docker Swarm and later migrated to OpenShift 4.
Technology: Tyk API Management Platform, Docker Swarm, OpenShift 4
KrakenD API Gateway
KrakenD is a high performance stateless API Gateway and one of the fastest for working with Microservice Aggregation using the Backend for Frontend (BFF) pattern. A powerful engine that can transform, aggregate or remove data from services. We use KrakenD in our own infrastructure
Technology: KrakenD API Gateway
Jenkins (CI/CD)
Using the Blue Ocean plugin on top of Jenkins to run Groovy based pipelines. These pipelines are used for CI/CD on container based environments, but also for many other tasks.
Technology: Jenkins, Blue Ocean Plugin, Groovy
Nginx
Used as a web server, reverse proxy and load balancer for many different projects. Configured as custom ingress for OpenShift 4 clusters
Technology: Nginx, OpenShift 4
MongoDB
Configured MongoDB with 3 Replica-Sets running as a cluster to ensure high-availability. This NoSQL database was used to save Tyk API definitions policies and other configuration objects.
Technology: MongoDB, Tyk API Management Platform
Redis
Redis in-memory data store was required for Tyk to manage API keys and certificates. So we configured a Redis Cluster and migrated it later to a Redis Sentinel configuration to support container based deployments.
Technology: Redis, Tyk API Management Platform
PostgreSQL
The micro-service architecture required a SQL-based database, so we deployed PostgreSQL running as container on Docker Swarm and later on OpenShift. The Crunchy operator was used to configure database replication, automatic faileover using PgBouncer, backups using pgBackRest and native Psql clients.
Technology: PostgreSQL, Crunchy Operator, PgBouncer, PgBackRest, OpenShift 4, Docker Swarm
Let's Encrypt
We've been using Let's Encrypt to generate TLS certificates in order to provide security to any web service. Some basic Bash scripts are used to generate and renew certificates automatically.
Technology: LetsEncrypt
NextCloud
The file-share and collaboration platform NextCloud is deployed for 4data and customers to synchronize documents between teams, share contacts and calenders.
Technology: NextCloud
HAproxy
In combination with keepalived, HAproxy was deployed to act as the ingress interface for a Docker Swarm environment. And of course we managed additional ingress interfaces for OpenShift as well.
Technology: HAproxy, OpenShift 4, Docker Swarm
ElasticSearch
As a requirement for Graylog we deployed an ElasticSearch cluster, with mulpile Master, Coordinator and Data nodes, to ensure high-availability.
Technology: ElasticSearch, Graylog
Victoria Metrics
Victoria Metrics was built as a high-performance time-series database. Its high ingest rate and fast data processing, makes it the preferred time-series database for Capacity- and Performance-Monitoring. Our 4Dmetrics service is based on it.
Technology: Victoria Metrics, 4Dmetrics
HashiCorp Vault
HashiCorp Vault is one of the top solutions for secret and certificate management. Secure, store and tightly control access to tokens, passwords, certificates, encryption keys for protecting secrets and other sensitive data using a UI, CLI, or HTTP API. We integrated Hashi Vault with Vault CSI Provider for Kubernetes to provision secrets to our customer's application running on Kubernetes. We completely eliminated outages caused by expired certificates. By automating the issuing and renewal of certificates with cert-manger for Kubernetes and Vault.
Technology: HashiCorp Vault, Vault CSI Provider, cert-manger
Grafana
Grafana is a popular open source observability solution, that allows you to query and visualize metrics, logs and traces. So that you can monitor, analyse and understand your platform and application stack. We use Grafana as part of our 4Dmetrics. We build and maintain customer dashboards for our customers next to the 4Dmetrics.
Technology: Grafana
Ansible
Ansible is an open source agentless tool that simplifies the process of automating configuration management. We use Ansible internal as well in many customer projects.
Technology: Ansible
InfluxData
Observability is one of 9 pillars of DevOps and SRE practices. InfluxData provides InflxuDB (a Times series Database) and Telegraf (metric collector) a Framework to build your observability solution. We are great believers in Open Source, and continue to contribute improvements, and features to several projects that we use. The ability to be able to fix issues ourselves, and contribute back to the community is a big plus for us as it allows us to deliver a better and faster service to our customers, while giving back to the community when possible
Technology: InfluxData
Crunchy Postgres Operator
We use this extensively for production deployments needing PostgreSQL databases Crunchy Postgres Operator.
Technology: Crunchy PGO
Terraform
HashiCorp Terraform is an infrastructure as code (IaC) tool, that lets us define our on-prem and cloud resources. We extend Terraform by using the GitOps approache to have git as a single point of truth
Technology: Terraform
Crossplane
It enables a lot of possibilities like shift left Infrastructure Management using Crossplane Composites. Crossplane combined with Argo CD provides a nice solution for managed infrastructure as code (IaC) using the GitOps approach.
Technology: Crossplane
Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. GitOps is a set of practices that empowers developers to perform tasks that typically fall under the purview of IT operations, with Git as the single point of truth. Therefore it is the perfect solution for provisioning our 4Dmetrics service on-prem at the customer's site.
Technology: Argo CD