The "Standalone k8or + Local Products" is aimed at users seeking a fully isolated and private k8or environment. In this configuration, all infrastructure products and application co-exist within k8or, eliminating reliance on external products like RDS, storage solutions, or authentication/authorization services.

• Built on BLOCK Framework: Is a powerful framework for designing and building efficient and well-structured web and mobile applications.

• Custom Images: k8or is built with images k8orized at OS, package, application, and microservice levels.

• Private Kubernetes Environment:The cluster operates independently, isolated from external networks and resources. This offers enhanced security and control over application execution.

• Self-Contained Resources: All necessary resources, including databases, storage, and authentication/authorization systems, are deployed and managed within the cluster. This approach leverages Kubernetes-native solutions or third-party containerized applications.

• Simplified Infrastructure Management: By minimizing external dependencies, this configuration simplifies overall infrastructure management and eliminates the need to integrate and maintain separate platforms for various functionalities.

• Scalability and Flexibility: While self-contained, the cluster remains scalable. Additional Kubernetes workers can be added to accommodate resource demands, and containerized applications can be easily provisioned and scaled within the environment.

• Containerized Services: All required services, including databases, storage solutions, and authentication/authorization systems, are deployed as containerized applications. Popular options include PostgreSQL, MinIO, and Keycloak, although various alternatives exist.

• Deployment and Management: k8or manifests manage the deployment and configuration of all internal services alongside application components. Tools like Helm charts and GitOps workflows facilitate automation and version control within a private k8or.

• Resource Orchestration: Resource allocation for internal services needs careful consideration. Kubernetes resource quota is employed to allocate CPU, memory, and storage resources to ensure service stability and prevent resource conflicts.

• Network Security: Network policies within k8or control communication between application products and internal services. Secure ingress and egress configurations are implemented for preventing unauthorized access and maintaining overall security of k8or.

• Monitoring and Logging: A robust monitoring and logging setup is essential for troubleshooting issues and maintaining operational visibility in k8or. Various infrastructure pdoducts, such as Prometheus and Grafana for metrics collection and ELK Stack for centralized logging, are implemented in k8or.

• Enhanced Security and Control: This deployment option offers superior security compared to public or hybrid deployments. Control over internal services and network access minimizes attack surface and vulnerabilities.

• Simplified Management: With all products hosted within k8or, management complexity is reduced, eliminating the need for separate tooling and expertise for external services.

The "Standalone k8or + Local Products" provides a secure and manageable option for deploying applications in a private Kubernetes environment. With k8or exports providing careful planning and resource management, this approach offers enhanced security, simplifies infrastructure management, and provides flexible control over application execution. For companies seeking isolation and control, this deployment option represents a compelling choice within the k8or ecosystem.