Robert Bates, SVP Sales Engineering of Crunchy Data explains how you can tackle Data Gravity, Kubernetes, and strategies/best practices to run, scale, and leverage stateful containers in production.
FOSSASIA PGDAY ASIA 2017 presentation material.
FOSSASIA PGDAY ASIA 2017 の発表資料です。
In this presentation, I will talk about the following two topics.
* Considerations for securing a database system.
* Current status of database audit on PostgreSQL
FOSSASIA 2017
http://2017.fossasia.org/
PGDAY ASIA 2017
http://2017.pgday.asia/
NTT pgaudit
https://github.com/ossc-db/pgaudit
FOSSASIA PGDAY ASIA 2017 presentation material.
FOSSASIA PGDAY ASIA 2017 の発表資料です。
In this presentation, I will talk about the following two topics.
* Considerations for securing a database system.
* Current status of database audit on PostgreSQL
FOSSASIA 2017
http://2017.fossasia.org/
PGDAY ASIA 2017
http://2017.pgday.asia/
NTT pgaudit
https://github.com/ossc-db/pgaudit
This year, OpenStack is celebrating four years of community milestones and progress via global celebrations among our user groups and with a party at OSCON.
Learn more about OpenStack users and milestones at http://www.openstack.org/birthday
Advanced GeoServer Security with GeoFenceGeoSolutions
This presentation will provide an introduction to GeoFence, an open source tool to configure and use complex authorization rules to protect data served by GeoServer OGC services.
Running PostgreSQL in Kubernetes: from day 0 to day 2 with CloudNativePG - Do...DoKC
Link: https://youtu.be/cegd3Exg05w
https://go.dok.community/slack
https://dok.community/
Gabriele Bartolini - Vice President/CTO of Cloud Native and Kubernetes, EDB
ABSTRACT OF THE TALK
Imagine this: you have a virtual infrastructure based on Kubernetes, made up of virtual data centers, possibly spread across multiple Kubernetes clusters and regions. Your infrastructure could even be hosted on premises or on different cloud service providers. Infrastructure as Code is a requirement. You’ve been tasked to run Postgres databases, alongside your applications.
The good news is that you can leverage a fully open source stack with Kubernetes, PostgreSQL and the CloudNativePG operator, and deploy your Postgres database in the same way you deploy applications.
Join me in this webinar to discover the key role that you have to make this succeed, starting from day 0 through day 2 operations.
I’ll share some examples and best practices for running Postgres databases in Kubernetes, before peeking at the new features we are developing for the months to come.
Operating PostgreSQL at Scale with KubernetesJonathan Katz
The maturation of containerization platforms has changed how people think about creating development environments and has eliminated many inefficiencies for deploying applications. These concept and technologies have made its way into the PostgreSQL ecosystem as well, and tools such as Docker and Kubernetes have enabled teams to run their own “database-as-a-service” on the infrastructure of their choosing.
All this sounds great, but if you are new to the world of containers, it can be very overwhelming to find a place to start. In this talk, which centers around demos, we will see how you can get PostgreSQL up and running in a containerized environment with some advanced sidecars in only a few steps! We will also see how it extends to a larger production environment with Kubernetes, and what the future holds for PostgreSQL in a containerized world.
We will cover the following:
* Why containers are important and what they mean for PostgreSQL
* Create a development environment with PostgreSQL, pgadmin4, monitoring, and more
* How to use Kubernetes to create your own "database-as-a-service"-like PostgreSQL environment
* Trends in the container world and how it will affect PostgreSQL
At the conclusion of the talk, you will understand the fundamentals of how to use container technologies with PostgreSQL and be on your way to running a containerized PostgreSQL environment at scale!
This year, OpenStack is celebrating four years of community milestones and progress via global celebrations among our user groups and with a party at OSCON.
Learn more about OpenStack users and milestones at http://www.openstack.org/birthday
Advanced GeoServer Security with GeoFenceGeoSolutions
This presentation will provide an introduction to GeoFence, an open source tool to configure and use complex authorization rules to protect data served by GeoServer OGC services.
Running PostgreSQL in Kubernetes: from day 0 to day 2 with CloudNativePG - Do...DoKC
Link: https://youtu.be/cegd3Exg05w
https://go.dok.community/slack
https://dok.community/
Gabriele Bartolini - Vice President/CTO of Cloud Native and Kubernetes, EDB
ABSTRACT OF THE TALK
Imagine this: you have a virtual infrastructure based on Kubernetes, made up of virtual data centers, possibly spread across multiple Kubernetes clusters and regions. Your infrastructure could even be hosted on premises or on different cloud service providers. Infrastructure as Code is a requirement. You’ve been tasked to run Postgres databases, alongside your applications.
The good news is that you can leverage a fully open source stack with Kubernetes, PostgreSQL and the CloudNativePG operator, and deploy your Postgres database in the same way you deploy applications.
Join me in this webinar to discover the key role that you have to make this succeed, starting from day 0 through day 2 operations.
I’ll share some examples and best practices for running Postgres databases in Kubernetes, before peeking at the new features we are developing for the months to come.
Operating PostgreSQL at Scale with KubernetesJonathan Katz
The maturation of containerization platforms has changed how people think about creating development environments and has eliminated many inefficiencies for deploying applications. These concept and technologies have made its way into the PostgreSQL ecosystem as well, and tools such as Docker and Kubernetes have enabled teams to run their own “database-as-a-service” on the infrastructure of their choosing.
All this sounds great, but if you are new to the world of containers, it can be very overwhelming to find a place to start. In this talk, which centers around demos, we will see how you can get PostgreSQL up and running in a containerized environment with some advanced sidecars in only a few steps! We will also see how it extends to a larger production environment with Kubernetes, and what the future holds for PostgreSQL in a containerized world.
We will cover the following:
* Why containers are important and what they mean for PostgreSQL
* Create a development environment with PostgreSQL, pgadmin4, monitoring, and more
* How to use Kubernetes to create your own "database-as-a-service"-like PostgreSQL environment
* Trends in the container world and how it will affect PostgreSQL
At the conclusion of the talk, you will understand the fundamentals of how to use container technologies with PostgreSQL and be on your way to running a containerized PostgreSQL environment at scale!
Using PostgreSQL With Docker & Kubernetes - July 2018Jonathan Katz
The maturation of containerization platforms has changed how people think about creating development environments and has eliminated many inefficiencies for deploying applications. These concept and technologies have made its way into the PostgreSQL ecosystem as well, and tools such as Docker and Kubernetes have enabled teams to run their own “database-as-a-service” on the infrastructure of their choosing.
In this talk, we will cover the following:
- Why containers are important and what they mean for PostgreSQL
- Setting up and managing a PostgreSQL along with pgadmin4 and monitoring
- Running PostgreSQL on Kubernetes with a Demo
- Trends in the container world and how it will affect PostgreSQL
Agenda:
What is Software Defined Storage?
What is Ceph?
What is Rook?
Storage for Kubernetes
Storage Classes
Storage on Kubernetes
Operator Pattern
Custom Resource Definition
Rook Operator
Rook architecture
Ceph on Kubernetes with Rook
Demo
Rook Framework for Storage solutions
How to Get Involved?
How we have used ansible for real-time industry use cases and Integration with enterprise tools. Infra provisioning and config management using ansible and automating routine tasks.
[WSO2Con Asia 2018] Architecting for Container-native EnvironmentsWSO2
This slide deck explores architectural choices for making applications and integration services first class citizens in a container native environment.
Learn more: https://wso2.com/library/conference/2018/08/wso2con-asia-2018-architecting-for-container-native-environments/
Architecting Analytic Pipelines on GCP - Chicago Cloud Conference 2020Mariano Gonzalez
Modernizing analytics data pipelines to gain the most of your data while optimizing costs can be challenging. However, today cloud providers offer a good set of services that can help with this endeavor. We will do a tour across some GCP services during this hands-on session, using DataFlow (apache beam) as the backbone to architect a modern analytics pipeline to wire them all together.
NetflixOSS Meetup S3 E1, covering latest components in Distributed Databases, Telemetry systems, Big Data tools and more. Speakers from Netflix, IBM Watson, Pivotal and Nike Digital
Watch this Tech Talk: https://do.co/video_pgupta
An introduction into the world of containers and the orchestration ecosystem, and how Kubernetes can help software developers and cloud infrastructure engineers be more agile, efficient, and productive.
Containers and Kubernetes have changed the infra world for good, bringing agility, efficiency, and more productivity. Still thinking about how to get started with Kubernetes? This talk is designed to give you an introduction into the world of containers and the orchestration ecosystem.
What You'll Learn
- Introduction to containers and microservices
- Introduction to Kubernetes and how it can help
- Essential Kubernetes building blocks (“primitives”) for getting started
About the Presenter
Peeyush Gupta is a cloud enthusiast with 5+ years of experience in developing cloud platforms and helping customers migrate their legacy applications to cloud. He has also been a speaker at multiple meetups and serves the developer community as part of Kubernetes contributor experience group. He is currently working with DigitalOcean as a Senior Developer Advocate.
New to DigitalOcean? Get US $100 in credit when you sign up: https://do.co/deploytoday
To learn more about DigitalOcean: https://www.digitalocean.com/
Follow us on Twitter: https://twitter.com/digitalocean
Like us on Facebook: https://www.facebook.com/DigitalOcean
Follow us on Instagram: https://www.instagram.com/thedigitalocean/
We're hiring: http://do.co/careers
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a MonthNicolas Brousse
TubeMogul grew from few servers to over two thousands servers and handling over one trillion http requests a month, processed in less than 50ms each. To keep up with the fast growth, the SRE team had to implement an efficient Continuous Delivery infrastructure that allowed to do over 10,000 puppet deployment and 8,500 application deployment in 2014. In this presentation, we will cover the nuts and bolts of the TubeMogul operations engineering team and how they overcome challenges.
A look at some of the ways available to deploy Postgres in a Kubernetes cloud environment, either in small scale using simple configurations, or in larger scale using tools such as Helm charts and the Crunchy PostgreSQL Operator. A short introduction to Kubernetes will be given to explain the concepts involved, followed by examples from each deployment method and observations on the key differences.
Group of Airflow core committers talking about what's coming with Airflow 2.0!
Speakers: Ash Berlin-Taylor, Kaxil Naik, Kamil Breguła Jarek Potiuk, Daniel Imberman and Tomasz Urbaszek.
Como creamos QuestDB Cloud, un SaaS basado en Kubernetes alrededor de QuestDB...javier ramirez
QuestDB es una base de datos open source de alto rendimiento. Mucha gente nos comentaba que les gustaría usarla como servicio, sin tener que gestionar las máquinas. Así que nos pusimos manos a la obra para desarrollar una solución que nos permitiese lanzar instancias de QuestDB con provisionado, monitorización, seguridad o actualizaciones totalmente gestionadas.
Unos cuantos clusters de Kubernetes más tarde, conseguimos lanzar nuestra oferta de QuestDB Cloud. Esta charla es la historia de cómo llegamos ahí. Hablaré de herramientas como Calico, Karpenter, CoreDNS, Telegraf, Prometheus, Loki o Grafana, pero también de retos como autenticación, facturación, multi-nube, o de a qué tienes que decir que no para poder sobrevivir en la nube.
Kubernetes (commonly referred to as "K8s") is an open-source system for automating deployment, scaling and management of containerized applications It aims to provide a "platform for automating deployment, scaling, and operations of application containers across clusters of hosts". We will see Kubernetes architecture, use cases, basics and live demo
[Study Guide] Google Professional Cloud Architect (GCP-PCA) CertificationAmaaira Johns
Start Here---> https://bit.ly/3bGEd9l <---Get complete detail on GCP-PCA exam guide to crack Professional Cloud Architect. You can collect all information on GCP-PCA tutorial, practice test, books, study material, exam questions, and syllabus. Firm your knowledge on Professional Cloud Architect and get ready to crack GCP-PCA certification. Explore all information on GCP-PCA exam with the number of questions, passing percentage, and time duration to complete the test.
Kubernetes Forum Seoul 2019: Re-architecting Data Platform with KubernetesSeungYong Oh
Session Video: https://youtu.be/7MPH1mknIxE
In this talk, we share Devsisters' journey of migrating its internal data platform including Spark to Kubernetes, with its benefits and issues.
데브시스터즈에서 데이터플랫폼 컴포넌트를 쿠버네티스로 옮기면서 얻은 장점들과 이슈들에 대해 공유합니다.
Conference session page:
- English: https://sched.co/WIRK
- Korean: https://sched.co/WYRc
Similar to PostgreSQL-as-a-Service with Crunchy PostgreSQL for PKS (20)
Tsvi Korren,
VP of Product Strategy at Aqua Security CISSP, has been an IT security professional for over 25 years. In previous positions at DEC and CA Inc., he consulted with various industry verticals on the process and organizational aspects of security. As the VP of Product Strategy at Aqua, he is tasked with delivering commercial and open source solutions that make Cloud Native workloads the most secure, compliant and resilient application delivery platform.
Dave Meurer currently serves as the Senior Technical Alliances Manager at Synopsys' Software Integrity Group’s Business Development team, where he leads technical planning, solution development, enablement, and evangelism with existing and potential strategic alliances and partners of Synopsys. Dave joined Synopsys through the acquisition of Black Duck, where he served in a similar role as the director of sales engineering for North America. Before coming to Black Duck Software, Dave worked for Skyway Software, HSN.com, and Accenture in various management and development roles. When he’s not thinking about joint partner solutions, he plays Uber driver for his five kids’ sports activities. Follow him on Twitter at @davemeurer.
Erik Costlow, Product Evangelist at Contrast Security, was Oracle's principal product manager for Java 8 and 9, focused on security and performance. His security expertise involves threat modeling, code analysis, and instrumentation of security sensors. He is working to broaden this approach to security with Contrast Security. Before becoming involved in technology, Erik was a circus performer who juggled fire on a three-wheel vertical unicycle.
Cloud-Native Streaming Platform: Running Apache Kafka on PKS (Pivotal Contain...Carlos Andrés García
Viktor Gamov, Developer Adovcate of Confluent explains how you can tackle Data Gravity, Kubernetes, and strategies/best practices to run, scale, and leverage stateful containers in production.
Sudhir Menon, Founder and COO of SnappyData explains how you can tackle Data Gravity, Kubernetes, and strategies/best practices to run, scale, and leverage stateful containers in production.
Jacob Bogie, Advisory Platform Architect explains how Pivotal's PKS abstracts the complexity of tackling Data Gravity, Kubernetes, and how it relates to the presentations of our partners Yugabyte, Portworx, SnappyData, Crunchy Data, and Confluent.
A Planet-Scale Database for Low Latency Transactional Apps by YugabyteCarlos Andrés García
Karthik Ranganathan, CTO of Yugabyte explains how you can tackle Data Gravity, Kubernetes, and strategies/best practices to run, scale, and leverage stateful containers in production.
Francois Martel, Solutions Architect of Portworx explains how you can tackle Data Gravity, Kubernetes, and strategies/best practices to run, scale, and leverage stateful containers in production.
Transcript: Selling digital books in 2024: Insights from industry leaders - T...BookNet Canada
The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more.
Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/
Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
"Impact of front-end architecture on development cost", Viktor TurskyiFwdays
I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
PHP Frameworks: I want to break free (IPC Berlin 2024)Ralf Eggert
In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development.
This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
2. Agenda
● Crunchy Data Overview
● Crunchy PostgreSQL for Kubernetes
○ Crunchy Container Suite
○ Crunchy PostgreSQL Operator
● Container Tech. Roadmap
● Conclusion/Next Steps
2
3. - Crunchy Certified PostgreSQL is open source and Common Criteria EAL 2+ Certified, with
essential security enhancements for enterprise deployments
- Author of DISA Secure Technology Implementation Guide for PostgreSQL and CIS PostgreSQL
Benchmark
- Automated Security and “Authority to Operate (ATO) in a Day”
Crunchy Data Overview
3
Market Leading Data Security
Cloud Ready Data Management
- Crunchy PostgreSQL for Kubernetes - open source & scales to 1000s of PostgreSQL instances
- Cloud Agnostic - Deploy to your choice of public or private clouds, or on-premise infrastructure
Leader in Open Source Enterprise PostgreSQL
- Leading PostgreSQL Contributor, driving PostgreSQL stability, security, and performance
- Open source solutions for high-availability, disaster recovery, and monitoring
4. Crunchy PostgreSQL for Kubernetes
● Group of open source projects to combine the robustness of PostgreSQL
with the deployment flexibility of Kubernetes
○ Crunchy Container Suite
○ Crunchy PostgreSQL Operator
● Works on enterprise Kubernetes based platforms
● Actively developed
● Successfully deployed at Fortune 100 and Government customers
4
5. Container Container Suite
5
https://github.com/CrunchyData/crunchy-containers
● Microservices architecture
● PostgreSQL/PostGIS Containers
(9.5, 9.6, 10.x, 11.x)
● PostgreSQL utility containers that
are the building blocks for running
production environments:
○ High Availability
○ Disaster recovery for
terabyte-scale clusters with
pgBackRest
○ Monitoring
● Open source
● Examples provided
7. When to Use Kubernetes with PostgreSQL
● Value of Kubernetes increases
exponentially as number of containers
increases
● Due to statefulness of databases,
Kubernetes requires more knowledge
to successfully operate a standard
database workload:
○ Avoid scheduling and availability issues for
longer-running database containers
○ Data continues to exist even if container
does not
7
8. Crunchy PostgreSQL Operator Overview
● Open source project to provide a smarter way of provisioning PostgreSQL
clusters on Kubernetes
● Based on the Kubernetes client APIs, written in golang
● Custom Resource Definitions used to capture the definition of PostgreSQL
clusters and administration tasks
● REST API provides client integration, RBAC included for fine grained controls
● Goal is to assist in Day 2 operations as well as provisioning
● Single Deployment per Namespace, PostgreSQL clusters represented as
Deployments
● Leverages the Crunchy Container Suite set of microservice containers
8 https://github.com/CrunchyData/postgres-operator
9. ● Allows an administrator to run PostgreSQL-specific commands to
manage database clusters, including:
○ Creating / Deleting a cluster (your own DBaaS)
○ Scaling up / down replicas
○ Failover
○ Apply user policies to PostgreSQL instances
○ Define what container resources to use (RAM, CPU, etc.)
○ Smart pod deployments to nodes
○ Backup and restore
○ Backup scheduling
● REST API allows for easy integration with other services (e.g. pgo-
osb)
● The Crunchy PostgreSQL Operator enables your own secure,
elastic database-as-a-service
Crunchy PostgreSQL Operator Features
9
10. Crunchy PostgreSQL Operator Architecture
10
● Utilizes Kubernetes
Deployments
● Flexibility in storage
classes
● Flexibility in operating
environments
○ Node affinity
○ Resource (CPU, RAM)
configurations
● Flexibility in database
version runtimes
11. Why Use An Operator With PostgreSQL?
11
● Automation: Complex, multi-step DBA
tasks reduced to one-line commands
● Standardization: Many customizations,
same workflow
● Ease-of-Use: Simple CLI; UI in beta
● Scale
○ Provision & manage clusters quickly
amongst thousands of instances
○ Load balancing, disaster recovery,
security policies, deployment
specifications
● Security: Sandboxed environments,
RBAC, mass grant/revoke policies
12. Operator HA Support
The Crunchy PostgreSQL Operator
supports:
● PostgreSQL Deployments spread
across Kubernetes Nodes.
● Multiple storage backends within a
single PostgreSQL cluster
● High-availability through automated
and manual failover
● Rescheduling if a Kubernetes Node
becomes unavailable
● Storage providers replicating storage
between zones depending upon
storage vendor
12
13. Crunchy PostgreSQL Operator Successes
● Federal Government organizations’ deployments,
automated provisioning process from days to minutes
● Fortune 100 manufacturer deploying the Operator to build
an in-house database-as-a-service offering internally,
reducing provisioning times from weeks to seconds
● Fortune 250 customers using Container Suite and
Operator to simplify their development, test, QA
processes on on-premise and public cloud infrastructure
13
14. Crunchy PostgreSQL Operator Roadmap
● Open service broker implementation (pgo-osb) (underway)
● Web user interface (pgo-ui) (underway)
● pgBackRest integration (underway)
● Backup management
● Advanced Data loading
● Disk level snapshots
● archive/export/import
● Ingress integration
● Operator Federation (cross-namespace and cross-Kube-cluster)
● Additional advanced user management
● Automated Postgres Upgrading
● Sharding/Advanced Data Deployments
14
16. Next steps
Questions to consider
● Do you want to securely provision thousands of databases in a reliable, auditable environment?
● Do you want to be able to deploy your databases to ANY cloud platform, public or private, from a
single interface?
● Do you want to simply create highly-available PostgreSQL clusters with full disaster recovery
capabilities for databases of terabyte scale?
● Do you want to give your developers the ability to instantly provision databases that meet your
compliance requirements?
● Would the ability to leverage cost-effective open source used by Fortune 100 companies to
provision and manage thousands of databases be meaningful to your business?
Who to call?
Robert Bates, robert.bates@crunchydata.com, 770-330-5838
Paul Laurence, paul@crunchydata.com, 843-737-6045
16
Founded in 2012, emphasizing the security, scalability and reliability of PostgreSQL
Early PostgreSQL requirements at US Department of Defense
Common Criteria EAL 2+ Certified PostgreSQL
DISA STIG for PostgreSQL, NIST 800-53 conformance, CIS PostgreSQL Benchmark
World-class PostgreSQL expertise, including Core Developers, Committers and Major Contributors.
Responsible for a number of PostgreSQL enhancements including:
pgJDBC, pgBackRest, pgAudit, pgPartman, pgMonitor, and others
Support from 100% Senior PostgreSQL engineers (not a call center model)
100% Open Source- NO proprietary license fees.
Business model:
Annual Support Subscription on Trusted Distribution of PostgreSQL
Professional Services, Remote DBA & Training Available
Introduce the concepts here: CCS is a set of microservices required for successful production deployment of PostgreSQL
Operator allows stateful PostgreSQL to run in Kubernetes
PGO CLI - REST Client
API Server - REST API server
postgres-operator - core operator logic
Template based, alternative deployment models are possible but not easy!
Configuration is server side
Command set (provision, user mgmt., volume mgmt., scaling, failover, policy mgmt., simple data loading, labeling, status)
Failover (manual and automated) implemented natively within the Operator
Targets Day 2 Operations/Use Cases
PGO CLI - Rest client that comes with the Operator
PGO UI - easy-to-use interface for managing PostgreSQL clusters
PGO OSB - Open Service Broker implementation for communicating across applications
The Operator is deployed to a namespace on a Kube cluster, it operates on PG clusters created in that namespace. The Operator Pod includes up to 3 containers including the REST API server, the operator logic, and the web user interface. The pgo CLI tool runs outside the cluster on your laptop for example where you can access the Operator features.
The Operator deploys a PG cluster which includes a Service, a primary PG deployment, storage, and optionally PG replicas. The operator also can embed a metrics collection container into the PG pod to enable metrics collection. Also, the Operator can deploy a pgpool Pod configured for your PG cluster, also optional.