Pilot Customer Infrastructure Setup Guide
Document Version: 1.0.0 Created: January 18, 2026 Task ID: N.2.1 (CP-21) Author: Infrastructure Team
Overview
This document describes the pilot customer infrastructure deployed as part of the CODITECT pilot program. The infrastructure provides an isolated namespace with appropriate resource quotas, network policies, and configurations for pilot customer evaluation.
Architecture
┌─────────────────────────────────────────────────────────────────┐
│ GKE Cluster: coditect-citus-dev │
│ Region: us-central1 │
├─────────────────────────────────────────────────────────────────┤
│ ┌─────────────┐ ┌───────────────┐ ┌────────────────────┐ │
│ │ coditect- │ │ coditect- │ │ coditect-pilot │ │
│ │ dev │ │ staging │ │ (NEW) │ │
│ │ │ │ │ │ │ │
│ │ 8 CPU │ │ 16 CPU │ │ 12 CPU │ │
│ │ 16Gi RAM │ │ 32Gi RAM │ │ 24Gi RAM │ │
│ │ 30 pods │ │ 50 pods │ │ 40 pods │ │
│ └─────────────┘ └───────────────┘ └────────────────────┘ │
│ │
│ ┌─────────────────────────────────────────────────────────┐ │
│ │ coditect-production │ │
│ │ 32 CPU, 64Gi RAM, 100 pods │ │
│ └─────────────────────────────────────────────────────────┘ │
└─────────────────────────────────────────────────────────────────┘
Namespace Details
| Property | Value |
|---|---|
| Namespace | coditect-pilot |
| Environment | pilot |
| Customer Type | pilot |
| SLA Tier | pilot |
| Monitoring | Enabled |
Resource Allocations
Compute Quota
| Resource | Pilot | Dev | Staging | Production |
|---|---|---|---|---|
| CPU Requests | 12 | 8 | 16 | 32 |
| Memory Requests | 24Gi | 16Gi | 32Gi | 64Gi |
| CPU Limits | 24 | 16 | 32 | 64 |
| Memory Limits | 48Gi | 32Gi | 64Gi | 128Gi |
| Max Pods | 40 | 30 | 50 | 100 |
| Storage | 150Gi | 100Gi | 200Gi | 500Gi |
| PVCs | 12 | 10 | 15 | 25 |
Object Quota
| Object Type | Pilot Limit |
|---|---|
| Deployments | 12 |
| StatefulSets | 6 |
| Services | 18 |
| ConfigMaps | 25 |
| Secrets | 25 |
| Jobs | 12 |
| CronJobs | 6 |
Container Limit Ranges
| Type | Min | Default Request | Default Limit | Max |
|---|---|---|---|---|
| Container CPU | 25m | 200m | 750m | 3 |
| Container Memory | 48Mi | 192Mi | 768Mi | 6Gi |
| Pod CPU | - | - | - | 6 |
| Pod Memory | - | - | - | 12Gi |
| PVC Storage | 1Gi | - | - | 35Gi |
Network Policies
The pilot namespace implements defense-in-depth network security:
Default Deny
- All ingress traffic denied by default
- All egress traffic denied by default
Allowed Traffic
| Policy | Source | Destination | Ports |
|---|---|---|---|
| django-to-cloudsql | django-backend | 10.0.16.0/24 | TCP/5432 |
| django-to-redis | django-backend | 10.0.0.0/20 | TCP/6379 |
| celery-to-cloudsql | celery-worker | 10.0.16.0/24 | TCP/5432 |
| celery-to-redis | celery-worker | 10.0.0.0/20 | TCP/6379 |
| allow-ingress-to-django | LB health checks | django-backend | TCP/8000 |
| allow-dns-access | All pods | kube-system/kube-dns | UDP+TCP/53 |
| allow-internet-egress | internet-access=true | External | TCP/80,443 |
| allow-prometheus-scraping | prometheus | prometheus.io/scrape=true | TCP/9090 |
Configuration
Environment ConfigMap
Name: pilot-environment-config
Data:
ENVIRONMENT: pilot
DEBUG: false
LOG_LEVEL: INFO
PILOT_MODE: true
TELEMETRY_ENABLED: true
API_BASE_URL: https://api.coditect.ai
AUTH_BASE_URL: https://auth.coditect.ai
MAX_CONCURRENT_SESSIONS: 5
SESSION_TIMEOUT_MINUTES: 60
Deployment Commands
Apply Pilot Infrastructure
cd kubernetes/overlays/pilot
kubectl apply -k .
Verify Deployment
# Check namespace
kubectl get ns coditect-pilot
# Check all resources
kubectl get all,resourcequota,limitrange,networkpolicy,configmap -n coditect-pilot
# Describe quotas
kubectl describe resourcequota -n coditect-pilot
Deploy Applications to Pilot
# Deploy Django backend
kubectl apply -f deployments/django-backend.yaml -n coditect-pilot
# Deploy with pilot image tag
kubectl set image deployment/django-backend \
django=us-central1-docker.pkg.dev/coditect-citus-prod/coditect-docker/django-backend:pilot-stable \
-n coditect-pilot
Monitoring
Prometheus Integration
Add these labels to enable metrics scraping:
metadata:
labels:
prometheus.io/scrape: "true"
Recommended Alerts
| Alert | Condition | Severity |
|---|---|---|
| PilotQuotaHigh | CPU/Memory > 80% | warning |
| PilotPodCount | Pods > 35 | warning |
| PilotStorageHigh | Storage > 120Gi | warning |
Pilot Customer Onboarding
- Create namespace (already done)
- Deploy applications using pilot-stable image tags
- Configure DNS for pilot customer subdomain
- Create service account for pilot customer access
- Share access credentials via secure channel
- Enable monitoring dashboards
Cleanup
To remove pilot infrastructure (requires approval):
# WARNING: This will delete all resources in pilot namespace
kubectl delete namespace coditect-pilot
Related Documents
Status: Deployed Last Applied: January 18, 2026 Cluster: coditect-citus-dev (us-central1)