Skip to content

Architecture

  • GCP: project torch-security-demo, zone europe-west1-b, GKE gke-cluster.
  • Branch: roni/eng-5797-demo-env-do-not-merge — a permanent demo overlay on main. Never merges.
  • Infra: Terraform Cloud, workspace demo.
  • Images: built by build-and-push-binaries, tagged by SHA in torch-security-prod/docker-main; deploys via kubectl set image.
  • Auth: WorkOS AuthKit; demo user is Admin on Cascade Bank.
  • Hosts: app. / simeio. / api. / internal-docs.demo.torch.security — each a reserved static IP + DNS + managed cert.
  • Data: POC schema; IGA data in *_stateful tables; connector syncs write a snapshot reconciled into them.

Demo-specific: the self-contained MOCK_APP connector (synthesizes data + applies skills to the stateful tables, no external service — see Applications); auto email correlation on sync; the Entra HRIS people source (see People).

This runbook: Astro Starlight → nginx container, deployed to the demo cluster by .github/workflows/cd-docs-demo.yml.