Deployed Applications

This section contains documentation for applications deployed on the KUP6S cluster.

Each application follows the Diátaxis framework, with documentation organized into:

• Explanation - Understanding WHY architectural decisions were made

• Reference - Complete technical specifications for lookup

• How-To - Step-by-step guides for specific tasks

• Tutorials - Complete learning-oriented walkthroughs

Applications

CloudNativePG

PostgreSQL Operator and Backup Management

PostgreSQL cluster lifecycle management with:

• CloudNativePG operator for PostgreSQL orchestration

• Automated backups to S3 with Barman Cloud Plugin

• High availability with automatic failover

• Connection pooling with PgBouncer

• Point-in-time recovery (PITR)

View Documentation →

CloudNativePG Operator

GitLab BDA

Complete Git Platform with CI/CD and Container Registry

GitLab deployment for Blue Dynamics Alliance with:

• GitLab CE with external PostgreSQL and Redis

• Harbor container registry with Trivy vulnerability scanning

• GitLab Pages for static site hosting

• S3 object storage for artifacts, uploads, and LFS

• High availability with CloudNativePG and Redis Sentinel

View Documentation →

GitLab BDA

Monitoring Stack

Complete Observability Platform with Metrics and Logs

Monitoring stack providing cluster-wide observability with:

• Prometheus + Thanos for metrics collection and long-term storage

• Grafana for visualization and dashboards

• Loki for log aggregation with S3 storage

• Alloy for unified metrics and logs collection

• Alertmanager for alert routing and notification

View Documentation →

Monitoring Stack

Mailu Mail Server

Complete Mail Server with SMTP, IMAP, and Webmail

Mailu deployment providing full-featured mail services with:

• SMTP sending/receiving with spam filtering (Rspamd)

• IMAP and POP3 with Dovecot

• Roundcube webmail interface

• Traefik TLS termination for all protocols

• Cilium egress gateway for consistent sender IP (SPF compliance)

• PostgreSQL backend with CloudNativePG

• Integrated admin interface and SSO

View Documentation →

Mailu Mail Server

Capsule Multi-Tenancy

Self-Service Namespace Management for Teams

Capsule deployment providing multi-tenancy with:

• Self-service namespace creation for tenant owners

• Automatic RBAC inheritance within tenant namespaces

• Aggregated resource quotas across tenant namespaces

• Namespace prefix-based tenant assignment

• Network policy isolation between tenants

View Documentation →

Capsule Multi-Tenancy

Nextcloud

Self-Hosted File Sync and Collaboration Platform

Nextcloud deployment providing file storage and collaboration with:

• File sync, sharing, and versioning

• Collabora Online for browser-based document editing

• Whiteboard for real-time collaboration

• S3 primary storage with Hetzner Object Storage

• CloudNativePG PostgreSQL with automated backups

• Multiple instances with shared CDK8S constructs

View Documentation →

Nextcloud

kup6s-pages

Multi-Tenant Static Site Hosting Operator

Static site hosting from Git repositories with:

• StaticSite CRD for declarative site management

• Automatic TLS via cert-manager integration

• Traefik IngressRoute creation

• Webhook support for instant updates on push

• Private repository support with deploy tokens

• Multi-tenant architecture with shared nginx

View Documentation →

kup6s-pages

Table of Contents

Deployments

• Capsule Multi-Tenancy
  • Create a New Tenant
  • Generate Kubeconfig for Tenant Owner
  • Troubleshoot Capsule
  • Capsule Multi-Tenancy Model
  • RBAC Inheritance in Capsule
  • Configuration Options
  • Tenant CRD Reference
• CloudNativePG Operator
  • Create a PostgreSQL Cluster
  • Configure Automated Backups
  • Manual Backup and Restore
  • Update CNPG Operator Version
  • Troubleshoot CNPG Issues
  • CNPG Operator Architecture
  • Backup and Recovery Strategy
  • High Availability Configuration
  • Storage Strategy
  • Resource Management
  • Configuration Options
  • Project Structure
  • CDK8S Constructs API
  • Cluster CRD Reference
• GitLab BDA
  • Architecture Overview
  • ArgoCD GitOps Workflow for GitLab BDA
  • CDK8S Approach for GitLab BDA
  • Storage Architecture for GitLab BDA
  • GitLab Components Architecture
  • Harbor Container Registry Integration
  • Security Model
  • Monitoring & Observability
  • ArgoCD Configuration
  • Configuration
  • CDK8S Constructs API
  • GitLab BDA Secrets Configuration
  • S3 Buckets
  • Resource Requirements
  • Environment Variables
  • Version Compatibility
  • Endpoints & Ports
  • Troubleshooting
  • kubectl Commands
  • How-To Guides
  • Tutorials
• kup6s-pages
• Mailu Mail Server
• Monitoring Stack
  • Setup: Grafana Admin Password with ESO
  • Upgrade Monitoring Components
  • Scale Monitoring Resources
  • Debug Monitoring Issues
  • Monitoring Stack Architecture Overview
  • Prometheus and Thanos Integration
  • Loki Architecture and SimpleScalable Mode
  • CDK8S Approach for Monitoring Stack
  • Resource Optimization and Sizing Methodology
  • Storage Architecture for Monitoring Stack
  • Configuration Reference
  • Constructs API Reference
  • Helm Values Reference
  • Resource Requirements Reference
  • S3 Buckets Reference
  • Troubleshooting Guide
• Nextcloud
  • Architecture Overview
  • Storage Strategy
  • Shared Constructs Architecture
  • Configuration Reference
  • occ Commands Reference
  • Troubleshooting Reference
  • How to Migrate from Docker Swarm to Kubernetes
  • How to Add a New Nextcloud Instance
  • How to Update Nextcloud Version