Architecture Overview
flowchart TD
OCM["<i class='fas fa-dharmachakra'></i> OCM Hub<br/><small>k3d/KinD</small>"]:::accent --> Spoke1["<i class='fas fa-dharmachakra'></i> Spoke-1<br/><small>k3d</small>"]
OCM --> Spoke2["<i class='fas fa-dharmachakra'></i> Spoke-2<br/><small>k3d</small>"]
subgraph GitOps ["GitOps Delivery"]
Spoke1 --> ArgoCD["<i class='fas fa-code-branch'></i> ArgoCD<br/><small>GitOps</small>"]
Spoke2 --> ArgoCD
end
ArgoCD --> Prom["<i class='fas fa-chart-line'></i> Prometheus<br/><small>+ Grafana</small>"]:::accent
Prom --> Dex["<i class='fas fa-id-card'></i> Dex<br/><small>OIDC + LDAP</small>"]
Dex --> Tekton["<i class='fas fa-tasks'></i> Tekton<br/><small>CI/CD</small>"]
classDef accent fill:#1f2630,stroke:#f97316,stroke-width:2px,color:#f97316;
Key Features
- Multi-cluster management with Open Cluster Manager (OCM)
- GitOps-driven application delivery via ArgoCD to spoke clusters
- Prometheus, Grafana, Alertmanager monitoring with multi-cluster scraping
- OIDC-based SSO across services using Dex with LDAP-backed user directories
- CI/CD pipelines with Tekton, Triggers, and Dashboard
- Elastic stack (ECK) for centralized logging
- Headlamp Kubernetes web UI with OIDC authentication
- Istio service mesh and Cloudflare Argo Tunnel for secure ingress