Skip to content
Granit
Blog

Operations

This section covers the operational aspects of deploying and running Granit applications on European sovereign infrastructure.

Audience

Section titled “Audience”
  • SRE: observability configuration, alerting, incident response
  • DevOps engineers: CI/CD pipelines, Kubernetes, Helm
  • Platform engineers: infrastructure sizing, compliance, capacity planning

Guides

Section titled “Guides”
GuideDescription
DeploymentKubernetes deployment, Docker, health probes, scaling
ConfigurationVault secrets, environment variables, appsettings layering
ObservabilityLGTM stack, Serilog, OpenTelemetry, Grafana dashboards
CI/CDGitHub Actions pipeline, build, test, pack, publish
Production checklistGo-live verification for security, GDPR, ISO 27001

Sovereign infrastructure

Section titled “Sovereign infrastructure”

All Granit applications handling sensitive data must be hosted on European infrastructure compliant with ISO 27001:

ComponentTechnologyConstraint
ComputeManaged Kubernetes (EU region)Data residency in EU
DatabasePostgreSQL (managed or self-hosted)Encrypted at rest
CacheRedis (managed or self-hosted)Password-protected via Vault
SecretsHashiCorp Vault (self-hosted, Raft storage)No SaaS secret managers
ObservabilityLGTM stack (Loki, Grafana, Tempo, Mimir)Self-hosted, EU only
Object storageS3-compatible (MinIO or EU provider)Encrypted, tenant-isolated

Packages referenced in this section

Section titled “Packages referenced in this section”
PackageRole
Granit.DiagnosticsKubernetes health check endpoints (liveness, readiness, startup)
Granit.ObservabilitySerilog + OpenTelemetry OTLP export to LGTM stack
Granit.VaultHashiCorp Vault integration (dynamic credentials, Transit encryption)
Granit.CorsCORS policy configuration
Granit.ExceptionHandlingRFC 7807 Problem Details error responses
Granit.Wolverine.PostgresqlWolverine messaging with PostgreSQL transport