Architecture
- GCP: project
torch-security-demo, zoneeurope-west1-b, GKEgke-cluster. - Branch:
roni/eng-5797-demo-env-do-not-merge— a permanent demo overlay onmain. Never merges. - Infra: Terraform Cloud, workspace
demo. - Images: built by
build-and-push-binaries, tagged by SHA intorch-security-prod/docker-main; deploys viakubectl set image. - Auth: WorkOS AuthKit; demo user is Admin on Cascade Bank.
- Hosts:
app./simeio./api./internal-docs.demo.torch.security— each a reserved static IP + DNS + managed cert. - Data: POC schema; IGA data in
*_statefultables; connector syncs write a snapshot reconciled into them.
Demo-specific: the self-contained MOCK_APP connector (synthesizes data + applies skills to the stateful tables, no external service — see Applications); auto email correlation on sync; the Entra HRIS people source (see People).
This runbook: Astro Starlight → nginx container, deployed to the demo cluster by .github/workflows/cd-docs-demo.yml.