Project 3: High-Availability Database Cluster
Master the heart of the stack. Learn to deploy a production-grade, self-healing, and highly-available PostgreSQL cluster using the Operator pattern and persistent storage.
Project 3: The High-Availability Database Fortress
In Module 6, we learned that Kubernetes was originally designed for "Stateless" apps. But in the real world, every app needs a Database.
Running a single database pod is easy. But running a Production Database that can survive a node crash, perform automatic backups, and scale its "Read" operations is one of the most difficult tasks in the Kubernetes world. If you lose your database, you lose your business.
In this project, we will build a High-Availability (HA) PostgreSQL Cluster. We will not write raw YAML for this; instead, we will use the CloudNativePG Operator (Module 12.2). We will learn about Streaming Replication, Automated Failover, and how to ensure your database stays alive even if an entire AWS or Google Cloud Availability Zone (AZ) disappears.
1. The HA Architecture: Primary and Replicas
Our database will not be one pod. It will be a cluster of three.
- Primary (Master): Handles all Writes and Reads. It is the "Source of Truth."
- Replica 1: Continuously "Streams" data from the Primary. It is ready to take over if the Primary dies.
- Replica 2: A second backup, often used for "Read Scaling" (e.g., your AI app can read historical logs from here to save the Primary's CPU).
graph TD
User["App (FastAPI)"] -- "Writes" --> SVC_Primary["Primary Service (Write)"]
User -- "Read-Only" --> SVC_Replica["Replica Service (Read)"]
subgraph "The Database Cluster"
Pod1["Primary Pod"] -- "Replicate" --> Pod2["Replica Pod 1"]
Pod1 -- "Replicate" --> Pod3["Replica Pod 2"]
end
SVC_Primary -- "Route" --> Pod1
SVC_Replica -- "Load Balance" --> Pod2
SVC_Replica -- "Load Balance" --> Pod3
style Pod1 fill:#f96,stroke:#333
style Pod2 fill:#9cf,stroke:#333
style Pod3 fill:#9cf,stroke:#333
2. Using the Operator: Declarative Persistence
Instead of managing 20 different YAML files for replication, we define a single Cluster resource for our Operator.
apiVersion: postgresql.cnpg.io/v1
kind: Cluster
metadata:
name: instance-db
spec:
instances: 3 # 1 Primary + 2 Replicas
# 1. Survival: Ensure pods land in different AZs
topologySpreadConstraints:
- maxSkew: 1
topologyKey: topology.kubernetes.io/zone
whenUnsatisfiable: DoNotSchedule
labelSelector:
matchLabels:
cnpg.io/cluster: instance-db
# 2. Storage: Use High-Performance Cloud Disks
storage:
size: 100Gi
storageClass: premium-rwo
3. Automated Failover: The "30-Second Recovery"
What happens if the node running the Primary Pod catches fire?
- The Operator detects the Pod has disappeared.
- The Operator looks at the Replicas and picks the one with the most "Up-to-Date" data.
- The Operator promotes Replica 1 to be the new Primary.
- The Kubernetes Service (Module 5.2) automatically switches its labels to point to the new Primary. Result: Your AI app sees a tiny blip in connectivity for ~10-30 seconds, and then everything is back to normal. No human intervention needed.
4. Backups and Point-in-Time Recovery (PITR)
A backup that is 24 hours old is not enough for a critical app. We need Continuous Archiving.
Our Operator will automatically push the database logs (WAL - Write Ahead Logs) to an S3 Bucket every few seconds.
If a developer accidentally runs DELETE FROM users; at 10:05 AM, you can tell the Operator: "Recreate the cluster as it looked at exactly 10:04 AM." This is Point-in-Time Recovery.
5. Security: Encrypted Secrets and mTLS
- Secrets: We use Kubernetes Secrets to store the database password (Module 7.1), ensuring they are encrypted at rest (Module 10.5).
- mTLS: The Operator automatically creates certificates for every pod. The communication between the Primary and the Replicas is Fully Encrypted by default, preventing hackers from sniffing your data.
6. AI Implementation: Storing Vector Embeddings
If you are building an AI search engine, your database isn't just storing text—it's storing Vector Embeddings (Module 7).
The AI DB Strategy:
- pgvector: Install the
pgvectorextension in your PostgreSQL cluster. - Resource Limits: Give your database pods extra Memory (RAM is critical for fast vector search).
- Read Scaling: When your AI agent is doing many similar searches, route those queries to the Replica Service to keep the Primary available for high-speed writes of new user data.
7. Project Summary and Key Takeaways
- Operators: Don't manage databases manually; let the automated SRE (Operator) do it.
- HA Architecture: 3 instances across 3 AZs is the production gold standard.
- Failover: Design your app to handle temporary retries while the Operator promotes a new Primary.
- PITR: Backups are about "When" you can restore to, not just "If."
- Encryption: Secure your data both at rest and in transit between cluster nodes.
Congratulations!
You have completed the three core Real-World Projects. You have built an AI pipeline, a multi-tenant platform, and a bulletproof database. You have transformed from a student into a Kubernetes Architect.
Final Stop: In Module 15: The Capstone Project, you will combine all of this into a single, massive, global-scale AI application.
8. SEO Metadata & Keywords
Focus Keywords: High-availability PostgreSQL on Kubernetes tutorial, CloudNativePG operator guide, K8s database failover automation, point-in-time recovery Postgres K8s, multi-AZ database cluster Kubernetes, setting up pgvector on K8s.
Meta Description: Master the most challenging part of Kubernetes: State. Learn how to deploy a high-availability, self-healing PostgreSQL cluster using industry-standard operators, ensuring your AI and enterprise data is safe, scalable, and always available.