Gestalt Platform Architecture¶
Gestalt Platform is a collection of services and is hosted on CaaS Infrastructure. The components are detailed below.
Gestalt Meta is the hub of the Gestalt, providing resource management, policy execution, entitlement authorization, and more. Gestalt Meta manages stateful resources generically and not only is the central hub of Gestalt, but also is a valuable tool for managing resources for native cloud development projects without schema and data management woes.
The integration layer is consists of services within Gestalt working to provide a focused set of services for managing a container and lambda-based deployment environment. These services consist of:
- Gestalt Security
- Gestalt Laser
- Gestalt Policy
- Gestalt API Gateway
- Gestalt UI
These services provide supportive services around Gestalt Meta. Gestalt Security is an integration point for security services, especially authentication. It supports multiple directories of users and groups, Active Directory/LDAP integration, Oauth authentication, and ApiKey/Secret and token management.
Gestalt Laser is a lambda execution engine providing serverless functionality running on CaaS providers. Gestalt API Gateway is a provider for API Gateway services currently defaulting to Kong, an open source API Gateway product. And Gestalt UI is the web user interface currently providing a graphical user interface for Gestalt views and actions.
Gestalt Platform Components¶
Container-as-a-Service Abstraction - Gestalt Platform abstracts the CaaS APIs of Kubernetes and other CaaS solutions to provide a consistent model across those providers. The abstraction (Gestalt’s “Provider Model”), allows the platform to be extended and integrated with any number of infrastructure and utility services. In addition, the CaaS abstraction is plugged into Gestalt Platform’s policy and security services, providing governance around resource usage.
Gestalt Meta - Gestalt Meta is the hub of the Gestalt, providing resource management, policy execution, entitlement authorization, and more. Gestalt Meta manages stateful resources generically and whilt it is the central control-plane of Gestalt Platform, it may be used independently for modeling and managing resources using a dynamic meta-model and resrouce action capability.
Policy Engine - Gestalt’s policy management service gives enterprises granular control of how dev teams use containers and lambdas. It integrates with Laser to provide a single place for practically any type of enterprise integration, from change management systems to solutions like Slack or SMS.
API Gateway - Gestalt leverages the Kong API gateway for securing access to servers. Container services and serverless lambdas are published and accessed through the API gateway, where requests are subject to Gestalt’s Security service. In this way, all application services are protected via a common access and security layer.
User Portal - Gestalt’s user portal provides user access to environment management functions, including container and serverless function management, user and group administration, organizational modeling, provider and cluster administration, policy management, etc.
Gestalt Laser Architecture¶
Laser's architecture is depicted here:
The infrastructure layer is comprised largely of providers. These providers integrate services and functionality into Gestalt. Gestalt includes a number of built-in providers:
CaaS (Container as a Service) Providers
- DC/OS (Community and Enterprise Editions)
- Docker Swarm (future)
- Postgres Database
- Kong API Gateway
- Gestalt Laser Serverless Engine
- Gestalt Security