bakery-admin/bakery-ia
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4e4a48bf0310a8fb85b4ea1be9c6ad2e6c08858c
bakery-ia/infrastructure/kubernetes/overlays/dev/kustomization.yaml

700 lines
16 KiB
YAML
Raw Normal View History

Add base kubernetes support
2025-09-27 11:18:13 +02:00
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
metadata:
name: bakery-ia-dev
Add role-based filtering and imporve code
2025-10-15 16:12:49 +02:00
# Note: Removed global namespace to prevent monitoring namespace conflict
# All base resources already have namespace: bakery-ia defined
Add base kubernetes support
2025-09-27 11:18:13 +02:00
resources:
- ../../base
Add role-based filtering and imporve code
2025-10-15 16:12:49 +02:00
# Monitoring disabled for dev to save resources
# - ../../base/components/monitoring
Add base kubernetes support final fix 2
2025-09-28 19:48:05 +02:00
- dev-ingress.yaml
Enable HTTPS by default in development environment This commit enables HTTPS in the development environment using self-signed certificates to further improve dev-prod parity and catch SSL-related issues early. Changes made: 1. Created self-signed certificate for localhost - File: infrastructure/kubernetes/overlays/dev/dev-certificate.yaml - Type: Self-signed via cert-manager - Validity: 90 days (auto-renewed) - Valid for: localhost, bakery-ia.local, *.bakery-ia.local, 127.0.0.1 - Issuer: selfsigned-issuer ClusterIssuer 2. Updated dev ingress to enable HTTPS - File: infrastructure/kubernetes/overlays/dev/dev-ingress.yaml - Enabled SSL redirect: ssl-redirect: false → true - Added TLS configuration with certificate - Updated CORS origins to prefer HTTPS (HTTPS URLs first, HTTP fallback) - Access: https://localhost (instead of http://localhost) 3. Added cert-manager resources to dev overlay - File: infrastructure/kubernetes/overlays/dev/kustomization.yaml - Added dev-certificate.yaml - Added selfsigned-issuer ClusterIssuer 4. Created comprehensive HTTPS setup guide - File: docs/DEV-HTTPS-SETUP.md - Includes certificate trust instructions for macOS, Linux, Windows - Testing procedures with curl and browsers - Troubleshooting guide - FAQ section 5. Updated dev-prod parity documentation - File: docs/DEV-PROD-PARITY-CHANGES.md - Added HTTPS as 4th improvement - Updated "What Stays Different" table (SSL/TLS → Certificates) - Added HTTPS benefits section Benefits: ✓ Matches production HTTPS-only behavior ✓ Tests SSL/TLS configurations in development ✓ Catches mixed content warnings early ✓ Tests secure cookie handling (Secure, SameSite attributes) ✓ Validates cert-manager integration ✓ Tests certificate auto-renewal ✓ Better security testing capabilities Impact: - Browser will show certificate warning (self-signed) - Users can trust certificate or click "Proceed" - No additional resource usage - Access via https://localhost (was http://localhost) Certificate details: - Type: Self-signed - Algorithm: RSA 2048-bit - Validity: 90 days - Auto-renewal: 15 days before expiration - Common Name: localhost - DNS Names: localhost, bakery-ia.local, *.bakery-ia.local - IP Addresses: 127.0.0.1, ::1 Setup required: - Optional: Trust certificate in system/browser (see DEV-HTTPS-SETUP.md) - Required: cert-manager must be installed in cluster - Access at: https://localhost What stays different from production: - Certificate type: Self-signed (dev) vs Let's Encrypt (prod) - Trust: Manual (dev) vs Automatic (prod) - Domain: localhost (dev) vs real domain (prod) This completes the dev-prod parity improvements, bringing development environment much closer to production with: 1. 2 replicas for critical services ✓ 2. Rate limiting enabled ✓ 3. Specific CORS origins ✓ 4. HTTPS enabled ✓ See docs/DEV-HTTPS-SETUP.md for complete setup and testing instructions.
2026-01-02 19:25:45 +00:00
# Dev-Prod Parity: Enable HTTPS with self-signed certificates
- dev-certificate.yaml
- ../../base/components/cert-manager/cluster-issuer-staging.yaml
Add base kubernetes support
2025-09-27 11:18:13 +02:00
Add role-based filtering and imporve code
2025-10-15 16:12:49 +02:00
# Exclude nominatim from dev to save resources
# Using scale to 0 for StatefulSet to prevent pod creation
Add base kubernetes support final
2025-09-28 13:54:28 +02:00
patches:
Add role-based filtering and imporve code
2025-10-15 16:12:49 +02:00
# Override specific ConfigMap values for development
- target:
kind: ConfigMap
name: bakery-config
patch: |-
- op: replace
path: /data/ENVIRONMENT
value: "development"
- op: replace
path: /data/DEBUG
value: "true"
- op: replace
path: /data/LOG_LEVEL
value: "DEBUG"
- op: replace
path: /data/AUTO_RELOAD
value: "true"
- op: replace
path: /data/PROFILING_ENABLED
value: "true"
- op: replace
path: /data/MOCK_EXTERNAL_APIS
Improve kubernetes for prod
2025-11-06 11:04:50 +01:00
value: "false"
Add role-based filtering and imporve code
2025-10-15 16:12:49 +02:00
- op: replace
path: /data/TESTING
value: "false"
- op: replace
path: /data/DOMAIN
value: "localhost"
- op: replace
path: /data/API_DOCS_ENABLED
value: "true"
- op: replace
path: /data/CORS_ORIGINS
value: "http://frontend-service:3000,http://localhost:3000,http://localhost:3001,http://localhost,http://127.0.0.1:3000,http://127.0.0.1:3001,http://bakery-ia.local,https://localhost,https://127.0.0.1"
- op: replace
path: /data/VITE_ENVIRONMENT
value: "development"
- op: replace
path: /data/VITE_API_URL
value: "/api"
- op: replace
path: /data/STRIPE_PUBLISHABLE_KEY
value: "pk_test_your_stripe_publishable_key_here"
- op: replace
path: /data/SQUARE_ENVIRONMENT
value: "sandbox"
- op: replace
path: /data/TOAST_ENVIRONMENT
value: "sandbox"
- op: replace
path: /data/LIGHTSPEED_ENVIRONMENT
value: "sandbox"
- op: replace
path: /data/RATE_LIMIT_ENABLED
Implement dev-prod parity improvements (Option 1: Conservative) This commit implements targeted improvements to align development and production environments while maintaining development-friendliness. Changes made: 1. Increased replicas for critical services - gateway: 1 → 2 replicas - auth-service: 1 → 2 replicas - Benefits: Catches load balancing, session management, and race condition issues early - Impact: +2 pods, ~30% more RAM 2. Enabled rate limiting with dev-friendly limits - RATE_LIMIT_ENABLED: false → true - RATE_LIMIT_PER_MINUTE: 1000 (vs 60 in prod) - Benefits: Tests rate limiting code paths without hindering development - Impact: Validates middleware and headers 3. Fixed CORS configuration - Changed from wildcard (*) to specific origins - Covers all dev access patterns (localhost, 127.0.0.1, bakery-ia.local) - Benefits: Catches CORS issues in development instead of production - Impact: More realistic testing environment Resource impact: - Before: ~20 pods, 2-3GB RAM - After: ~22 pods, 3-4GB RAM (+30%) - Required: 8GB RAM minimum (12GB recommended) What stays different (intentionally): - DEBUG=true (need verbose debugging) - LOG_LEVEL=DEBUG (need detailed logs) - PROFILING_ENABLED=true (performance analysis) - HTTP instead of HTTPS (simpler local dev) - Most services stay at 1 replica (resource efficiency) Benefits achieved: ✓ Multi-instance testing (load balancing, service discovery) ✓ CORS validation (no wildcard masking) ✓ Rate limiting testing (code paths validated) ✓ Minimal resource increase (only 30%) ✓ Catches ~80% of common production issues Files modified: - infrastructure/kubernetes/overlays/dev/kustomization.yaml - infrastructure/kubernetes/overlays/dev/dev-ingress.yaml - docs/DEV-PROD-PARITY-CHANGES.md (new) See docs/DEV-PROD-PARITY-CHANGES.md for full details, testing instructions, and rollback procedures.
2026-01-02 19:19:26 +00:00
value: "true" # Changed from false for dev-prod parity
- op: add
path: /data/RATE_LIMIT_PER_MINUTE
value: "1000" # High limit for development (prod: 60)
Add role-based filtering and imporve code
2025-10-15 16:12:49 +02:00
- op: replace
path: /data/DB_FORCE_RECREATE
value: "false"
- op: add
path: /data/DEVELOPMENT_MODE
value: "true"
- op: add
path: /data/DEBUG_LOGGING
value: "true"
- op: add
path: /data/SKIP_MIGRATION_VERSION_CHECK
value: "false"
- target:
kind: StatefulSet
name: nominatim
patch: |-
- op: replace
path: /spec/replicas
value: 0
# Suspend nominatim-init job in dev (not needed when nominatim is scaled to 0)
- target:
kind: Job
name: nominatim-init
patch: |-
- op: replace
path: /spec/suspend
value: true
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
- target:
group: apps
version: v1
kind: Deployment
name: auth-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
Add base kubernetes support final
2025-09-28 13:54:28 +02:00
cpu: "25m"
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
limits:
Add base kubernetes support final
2025-09-28 13:54:28 +02:00
memory: "256Mi"
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: redis
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
Add base kubernetes support final
2025-09-28 13:54:28 +02:00
cpu: "25m"
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
limits:
Add base kubernetes support final
2025-09-28 13:54:28 +02:00
memory: "256Mi"
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: rabbitmq
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "128Mi"
cpu: "100m"
limits:
memory: "256Mi"
cpu: "300m"
- target:
group: apps
version: v1
kind: Deployment
name: auth-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "128Mi"
cpu: "50m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: frontend
patch: |-
- op: replace
path: /spec/template/spec/containers/0/imagePullPolicy
value: Never
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
New alert system and panel de control page
2025-11-27 15:52:40 +01:00
memory: "512Mi"
cpu: "200m"
Add base kubernetes support 3
2025-09-27 14:51:06 +02:00
limits:
New alert system and panel de control page
2025-11-27 15:52:40 +01:00
memory: "1Gi"
cpu: "1000m"
Add base kubernetes support 3
2025-09-27 14:51:06 +02:00
- target:
group: apps
version: v1
kind: Deployment
name: gateway
patch: |-
- op: replace
path: /spec/template/spec/containers/0/imagePullPolicy
value: Never
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
limits:
Add base kubernetes support 3
2025-09-27 14:51:06 +02:00
memory: "128Mi"
cpu: "100m"
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
- target:
group: apps
version: v1
kind: Deployment
New alert service
2025-12-05 20:07:01 +01:00
name: alert-processor
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
Add base kubernetes support final
2025-09-28 13:54:28 +02:00
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
# Database patches
- target:
group: apps
version: v1
kind: Deployment
name: external-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: forecasting-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: inventory-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: notification-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: orders-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: pos-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: production-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: recipes-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: sales-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: suppliers-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: tenant-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: training-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
Improve AI logic
2025-11-05 13:34:56 +01:00
- target:
group: apps
version: v1
kind: Deployment
name: ai-insights-db
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
Add base kubernetes support final
2025-09-28 13:54:28 +02:00
# Service patches
- target:
group: apps
version: v1
kind: Deployment
name: external-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: forecasting-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: inventory-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: notification-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: orders-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: pos-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: production-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: recipes-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
limits:
memory: "256Mi"
cpu: "200m"
Add base kubernetes support final
2025-09-28 13:54:28 +02:00
- target:
group: apps
version: v1
kind: Deployment
name: sales-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: suppliers-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: tenant-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "64Mi"
cpu: "25m"
limits:
memory: "256Mi"
cpu: "200m"
- target:
group: apps
version: v1
kind: Deployment
name: training-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "256Mi"
cpu: "100m"
limits:
memory: "1Gi"
cpu: "500m"
Improve AI logic
2025-11-05 13:34:56 +01:00
- target:
group: apps
version: v1
kind: Deployment
name: ai-insights-service
patch: |-
- op: replace
path: /spec/template/spec/containers/0/resources
value:
requests:
memory: "128Mi"
cpu: "50m"
limits:
memory: "512Mi"
cpu: "300m"
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
Add base kubernetes support
2025-09-27 11:18:13 +02:00
secretGenerator:
- name: dev-secrets
literals:
- DEV_MODE=true
Add base kubernetes support 2
2025-09-27 12:10:43 +02:00
labels:
- includeSelectors: true
pairs:
environment: development
tier: local
Add base kubernetes support
2025-09-27 11:18:13 +02:00
images:
- name: bakery/auth-service
newTag: dev
- name: bakery/tenant-service
newTag: dev
- name: bakery/training-service
newTag: dev
- name: bakery/forecasting-service
newTag: dev
- name: bakery/sales-service
newTag: dev
- name: bakery/external-service
newTag: dev
- name: bakery/notification-service
newTag: dev
- name: bakery/inventory-service
newTag: dev
- name: bakery/recipes-service
newTag: dev
- name: bakery/suppliers-service
newTag: dev
- name: bakery/pos-service
newTag: dev
- name: bakery/orders-service
newTag: dev
- name: bakery/production-service
newTag: dev
- name: bakery/alert-processor
newTag: dev
Improve AI logic
2025-11-05 13:34:56 +01:00
- name: bakery/ai-insights-service
newTag: dev
Add DEMO feature to the project
2025-10-03 14:09:34 +02:00
- name: bakery/demo-session-service
newTag: dev
Add base kubernetes support
2025-09-27 11:18:13 +02:00
- name: bakery/gateway
newTag: dev
- name: bakery/dashboard
newTag: dev
replicas:
Implement dev-prod parity improvements (Option 1: Conservative) This commit implements targeted improvements to align development and production environments while maintaining development-friendliness. Changes made: 1. Increased replicas for critical services - gateway: 1 → 2 replicas - auth-service: 1 → 2 replicas - Benefits: Catches load balancing, session management, and race condition issues early - Impact: +2 pods, ~30% more RAM 2. Enabled rate limiting with dev-friendly limits - RATE_LIMIT_ENABLED: false → true - RATE_LIMIT_PER_MINUTE: 1000 (vs 60 in prod) - Benefits: Tests rate limiting code paths without hindering development - Impact: Validates middleware and headers 3. Fixed CORS configuration - Changed from wildcard (*) to specific origins - Covers all dev access patterns (localhost, 127.0.0.1, bakery-ia.local) - Benefits: Catches CORS issues in development instead of production - Impact: More realistic testing environment Resource impact: - Before: ~20 pods, 2-3GB RAM - After: ~22 pods, 3-4GB RAM (+30%) - Required: 8GB RAM minimum (12GB recommended) What stays different (intentionally): - DEBUG=true (need verbose debugging) - LOG_LEVEL=DEBUG (need detailed logs) - PROFILING_ENABLED=true (performance analysis) - HTTP instead of HTTPS (simpler local dev) - Most services stay at 1 replica (resource efficiency) Benefits achieved: ✓ Multi-instance testing (load balancing, service discovery) ✓ CORS validation (no wildcard masking) ✓ Rate limiting testing (code paths validated) ✓ Minimal resource increase (only 30%) ✓ Catches ~80% of common production issues Files modified: - infrastructure/kubernetes/overlays/dev/kustomization.yaml - infrastructure/kubernetes/overlays/dev/dev-ingress.yaml - docs/DEV-PROD-PARITY-CHANGES.md (new) See docs/DEV-PROD-PARITY-CHANGES.md for full details, testing instructions, and rollback procedures.
2026-01-02 19:19:26 +00:00
# Dev-Prod Parity: Run 2 replicas of critical services
# This helps catch load balancing, session management, and race condition issues
Add base kubernetes support
2025-09-27 11:18:13 +02:00
- name: auth-service
Implement dev-prod parity improvements (Option 1: Conservative) This commit implements targeted improvements to align development and production environments while maintaining development-friendliness. Changes made: 1. Increased replicas for critical services - gateway: 1 → 2 replicas - auth-service: 1 → 2 replicas - Benefits: Catches load balancing, session management, and race condition issues early - Impact: +2 pods, ~30% more RAM 2. Enabled rate limiting with dev-friendly limits - RATE_LIMIT_ENABLED: false → true - RATE_LIMIT_PER_MINUTE: 1000 (vs 60 in prod) - Benefits: Tests rate limiting code paths without hindering development - Impact: Validates middleware and headers 3. Fixed CORS configuration - Changed from wildcard (*) to specific origins - Covers all dev access patterns (localhost, 127.0.0.1, bakery-ia.local) - Benefits: Catches CORS issues in development instead of production - Impact: More realistic testing environment Resource impact: - Before: ~20 pods, 2-3GB RAM - After: ~22 pods, 3-4GB RAM (+30%) - Required: 8GB RAM minimum (12GB recommended) What stays different (intentionally): - DEBUG=true (need verbose debugging) - LOG_LEVEL=DEBUG (need detailed logs) - PROFILING_ENABLED=true (performance analysis) - HTTP instead of HTTPS (simpler local dev) - Most services stay at 1 replica (resource efficiency) Benefits achieved: ✓ Multi-instance testing (load balancing, service discovery) ✓ CORS validation (no wildcard masking) ✓ Rate limiting testing (code paths validated) ✓ Minimal resource increase (only 30%) ✓ Catches ~80% of common production issues Files modified: - infrastructure/kubernetes/overlays/dev/kustomization.yaml - infrastructure/kubernetes/overlays/dev/dev-ingress.yaml - docs/DEV-PROD-PARITY-CHANGES.md (new) See docs/DEV-PROD-PARITY-CHANGES.md for full details, testing instructions, and rollback procedures.
2026-01-02 19:19:26 +00:00
count: 2 # Increased from 1 for dev-prod parity
Add base kubernetes support
2025-09-27 11:18:13 +02:00
- name: tenant-service
count: 1
- name: training-service
count: 1
- name: forecasting-service
count: 1
- name: sales-service
count: 1
- name: external-service
count: 1
- name: notification-service
count: 1
- name: inventory-service
count: 1
- name: recipes-service
count: 1
- name: suppliers-service
count: 1
- name: pos-service
count: 1
- name: orders-service
count: 1
- name: production-service
count: 1
New alert service
2025-12-05 20:07:01 +01:00
- name: alert-processor
Add base kubernetes support
2025-09-27 11:18:13 +02:00
count: 1
Improve AI logic
2025-11-05 13:34:56 +01:00
- name: ai-insights-service
count: 1
Add DEMO feature to the project
2025-10-03 14:09:34 +02:00
- name: demo-session-service
count: 1
Add base kubernetes support
2025-09-27 11:18:13 +02:00
- name: gateway
Implement dev-prod parity improvements (Option 1: Conservative) This commit implements targeted improvements to align development and production environments while maintaining development-friendliness. Changes made: 1. Increased replicas for critical services - gateway: 1 → 2 replicas - auth-service: 1 → 2 replicas - Benefits: Catches load balancing, session management, and race condition issues early - Impact: +2 pods, ~30% more RAM 2. Enabled rate limiting with dev-friendly limits - RATE_LIMIT_ENABLED: false → true - RATE_LIMIT_PER_MINUTE: 1000 (vs 60 in prod) - Benefits: Tests rate limiting code paths without hindering development - Impact: Validates middleware and headers 3. Fixed CORS configuration - Changed from wildcard (*) to specific origins - Covers all dev access patterns (localhost, 127.0.0.1, bakery-ia.local) - Benefits: Catches CORS issues in development instead of production - Impact: More realistic testing environment Resource impact: - Before: ~20 pods, 2-3GB RAM - After: ~22 pods, 3-4GB RAM (+30%) - Required: 8GB RAM minimum (12GB recommended) What stays different (intentionally): - DEBUG=true (need verbose debugging) - LOG_LEVEL=DEBUG (need detailed logs) - PROFILING_ENABLED=true (performance analysis) - HTTP instead of HTTPS (simpler local dev) - Most services stay at 1 replica (resource efficiency) Benefits achieved: ✓ Multi-instance testing (load balancing, service discovery) ✓ CORS validation (no wildcard masking) ✓ Rate limiting testing (code paths validated) ✓ Minimal resource increase (only 30%) ✓ Catches ~80% of common production issues Files modified: - infrastructure/kubernetes/overlays/dev/kustomization.yaml - infrastructure/kubernetes/overlays/dev/dev-ingress.yaml - docs/DEV-PROD-PARITY-CHANGES.md (new) See docs/DEV-PROD-PARITY-CHANGES.md for full details, testing instructions, and rollback procedures.
2026-01-02 19:19:26 +00:00
count: 2 # Increased from 1 for dev-prod parity
Add base kubernetes support
2025-09-27 11:18:13 +02:00
- name: frontend
Add base kubernetes support 3
2025-09-27 14:51:06 +02:00
count: 1
Reference in New Issue Copy Permalink