bakery-ia/kind-config.yaml

kind: Cluster
apiVersion: kind.x-k8s.io/v1alpha4
name: bakery-ia-local

# Networking configuration
networking:
  podSubnet: "10.244.0.0/16"
  serviceSubnet: "10.96.0.0/12"

nodes:
- role: control-plane
  kubeadmConfigPatches:
  - |
    kind: InitConfiguration
    nodeRegistration:
      kubeletExtraArgs:
        node-labels: "ingress-ready=true,architecture=arm64"
        max-pods: "250"
        eviction-hard: "memory.available<500Mi,nodefs.available<10%"
        fail-swap-on: "false"
  - |
    kind: ClusterConfiguration
    apiServer:
      extraArgs:
        encryption-provider-config: /etc/kubernetes/enc/encryption-config.yaml
        max-requests-inflight: "2000"
        max-mutating-requests-inflight: "1000"
      extraVolumes:
      - name: encryption-config
        hostPath: /etc/kubernetes/enc
        mountPath: /etc/kubernetes/enc
        readOnly: true
        pathType: DirectoryOrCreate
    controllerManager:
      extraArgs:
        horizontal-pod-autoscaler-sync-period: "10s"
        node-monitor-grace-period: "20s"
    scheduler:
      extraArgs:
        kube-api-qps: "50"
        kube-api-burst: "100"
  
  extraMounts:
  - hostPath: ./infrastructure/platform/security/encryption
    containerPath: /etc/kubernetes/enc
    readOnly: true
  
  extraPortMappings:
  - containerPort: 80
    hostPort: 80
    protocol: TCP
    listenAddress: "0.0.0.0"
  - containerPort: 443
    hostPort: 443
    protocol: TCP
    listenAddress: "0.0.0.0"
  - containerPort: 30300
    hostPort: 3000
    protocol: TCP
    listenAddress: "0.0.0.0"
  - containerPort: 30800
    hostPort: 8000
    protocol: TCP
    listenAddress: "0.0.0.0"
  - containerPort: 30080
    hostPort: 30080
    protocol: TCP
    listenAddress: "0.0.0.0"
  - containerPort: 30443
    hostPort: 30443
    protocol: TCP
    listenAddress: "0.0.0.0"

containerdConfigPatches:
- |-
  [plugins."io.containerd.grpc.v1.cri"]
    sandbox_image = "registry.k8s.io/pause:3.9"
    [plugins."io.containerd.grpc.v1.cri".containerd]
      snapshotter = "overlayfs"
    [plugins."io.containerd.grpc.v1.cri".containerd.runtimes]
      [plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc]
        runtime_type = "io.containerd.runc.v2"
Add base kubernetes support 5 2025-09-27 22:55:42 +02:00			`kind: Cluster`
			`apiVersion: kind.x-k8s.io/v1alpha4`
			`name: bakery-ia-local`
Add new infra architecture 2026-01-19 11:55:17 +01:00
			`# Networking configuration`
			`networking:`
			`podSubnet: "10.244.0.0/16"`
			`serviceSubnet: "10.96.0.0/12"`

Add base kubernetes support 5 2025-09-27 22:55:42 +02:00			`nodes:`
			`- role: control-plane`
			`kubeadmConfigPatches:`
			`- \|`
			`kind: InitConfiguration`
			`nodeRegistration:`
			`kubeletExtraArgs:`
Add new infra architecture 2026-01-19 11:55:17 +01:00			`node-labels: "ingress-ready=true,architecture=arm64"`
			`max-pods: "250"`
			`eviction-hard: "memory.available<500Mi,nodefs.available<10%"`
			`fail-swap-on: "false"`
Improve teh securty of teh DB 2025-10-19 19:22:37 +02:00			`- \|`
			`kind: ClusterConfiguration`
			`apiServer:`
			`extraArgs:`
			`encryption-provider-config: /etc/kubernetes/enc/encryption-config.yaml`
Add new infra architecture 2026-01-19 11:55:17 +01:00			`max-requests-inflight: "2000"`
			`max-mutating-requests-inflight: "1000"`
Improve teh securty of teh DB 2025-10-19 19:22:37 +02:00			`extraVolumes:`
			`- name: encryption-config`
			`hostPath: /etc/kubernetes/enc`
			`mountPath: /etc/kubernetes/enc`
			`readOnly: true`
			`pathType: DirectoryOrCreate`
Add new infra architecture 2026-01-19 11:55:17 +01:00			`controllerManager:`
			`extraArgs:`
			`horizontal-pod-autoscaler-sync-period: "10s"`
			`node-monitor-grace-period: "20s"`
			`scheduler:`
			`extraArgs:`
			`kube-api-qps: "50"`
			`kube-api-burst: "100"`

Improve teh securty of teh DB 2025-10-19 19:22:37 +02:00			`extraMounts:`
Add new infra architecture 2026-01-19 11:55:17 +01:00			`- hostPath: ./infrastructure/platform/security/encryption`
Improve teh securty of teh DB 2025-10-19 19:22:37 +02:00			`containerPath: /etc/kubernetes/enc`
			`readOnly: true`
Add new infra architecture 2026-01-19 11:55:17 +01:00
Add base kubernetes support 5 2025-09-27 22:55:42 +02:00			`extraPortMappings:`
Update monitoring packages to latest versions - Updated all OpenTelemetry packages to latest versions: - opentelemetry-api: 1.27.0 → 1.39.1 - opentelemetry-sdk: 1.27.0 → 1.39.1 - opentelemetry-exporter-otlp-proto-grpc: 1.27.0 → 1.39.1 - opentelemetry-exporter-otlp-proto-http: 1.27.0 → 1.39.1 - opentelemetry-instrumentation-fastapi: 0.48b0 → 0.60b1 - opentelemetry-instrumentation-httpx: 0.48b0 → 0.60b1 - opentelemetry-instrumentation-redis: 0.48b0 → 0.60b1 - opentelemetry-instrumentation-sqlalchemy: 0.48b0 → 0.60b1 - Removed prometheus-client==0.23.1 from all services - Unified all services to use the same monitoring package versions Generated by Mistral Vibe. Co-Authored-By: Mistral Vibe <vibe@mistral.ai> 2026-01-08 19:25:52 +01:00			`- containerPort: 80`
Add base kubernetes support 5 2025-09-27 22:55:42 +02:00			`hostPort: 80`
			`protocol: TCP`
Add new infra architecture 2026-01-19 11:55:17 +01:00			`listenAddress: "0.0.0.0"`
Update monitoring packages to latest versions - Updated all OpenTelemetry packages to latest versions: - opentelemetry-api: 1.27.0 → 1.39.1 - opentelemetry-sdk: 1.27.0 → 1.39.1 - opentelemetry-exporter-otlp-proto-grpc: 1.27.0 → 1.39.1 - opentelemetry-exporter-otlp-proto-http: 1.27.0 → 1.39.1 - opentelemetry-instrumentation-fastapi: 0.48b0 → 0.60b1 - opentelemetry-instrumentation-httpx: 0.48b0 → 0.60b1 - opentelemetry-instrumentation-redis: 0.48b0 → 0.60b1 - opentelemetry-instrumentation-sqlalchemy: 0.48b0 → 0.60b1 - Removed prometheus-client==0.23.1 from all services - Unified all services to use the same monitoring package versions Generated by Mistral Vibe. Co-Authored-By: Mistral Vibe <vibe@mistral.ai> 2026-01-08 19:25:52 +01:00			`- containerPort: 443`
Add base kubernetes support 5 2025-09-27 22:55:42 +02:00			`hostPort: 443`
			`protocol: TCP`
Add new infra architecture 2026-01-19 11:55:17 +01:00			`listenAddress: "0.0.0.0"`
Add base kubernetes support final 2025-09-28 13:54:28 +02:00			`- containerPort: 30300`
			`hostPort: 3000`
			`protocol: TCP`
Add new infra architecture 2026-01-19 11:55:17 +01:00			`listenAddress: "0.0.0.0"`
Add base kubernetes support final 2025-09-28 13:54:28 +02:00			`- containerPort: 30800`
			`hostPort: 8000`
Add new infra architecture 2026-01-19 11:55:17 +01:00			`protocol: TCP`
			`listenAddress: "0.0.0.0"`
			`- containerPort: 30080`
			`hostPort: 30080`
			`protocol: TCP`
			`listenAddress: "0.0.0.0"`
			`- containerPort: 30443`
			`hostPort: 30443`
			`protocol: TCP`
			`listenAddress: "0.0.0.0"`

			`containerdConfigPatches:`
			`- \|-`
			`[plugins."io.containerd.grpc.v1.cri"]`
			`sandbox_image = "registry.k8s.io/pause:3.9"`
			`[plugins."io.containerd.grpc.v1.cri".containerd]`
			`snapshotter = "overlayfs"`
			`[plugins."io.containerd.grpc.v1.cri".containerd.runtimes]`
			`[plugins."io.containerd.grpc.v1.cri".containerd.runtimes.runc]`
			`runtime_type = "io.containerd.runc.v2"`