Skip to content
Kupe Cloud Kupe Cloud Kupe Cloud Docs

Overview

Applications on Kupe Cloud run as standard Kubernetes workloads. You deploy Deployments, StatefulSets, Jobs, and CronJobs into managed clusters, and Kupe provides the GitOps control plane around them through managed Argo CD.

Each tenant gets its own Argo CD project, and each managed cluster is registered as a tenant-scoped destination. That gives teams a consistent delivery path across environments without introducing a custom application platform API.

Delivery model

Section titled “Delivery model”

Kupe Cloud uses a GitOps-first delivery model.

That means:

  • Git is the source of truth for application configuration
  • Argo CD pulls from Git and reconciles into your cluster
  • drift is visible and can be self-healed
  • promotion happens by changing Git, not by pushing directly into the cluster

The normal flow looks like this:

  1. Define your manifests, Helm chart, or Kustomize overlay in Git.
  2. Create an Argo Application that points at that source.
  3. Target your tenant project and managed cluster destination.
  4. Let Argo sync the workload into the cluster.
  5. Validate health, routing, logs, and metrics.
  6. Promote changes across environments through Git.

Core building blocks

Section titled “Core building blocks”
ComponentWhat it does
Git repositoryStores the desired state for your workload
Argo CD ApplicationConnects a Git source to a target cluster and namespace
Managed cluster destinationThe cluster Argo deploys into, registered under a tenant-prefixed name
Kubernetes resourcesThe actual workloads, services, routes, secrets, and policies you run

What Kupe manages

Section titled “What Kupe manages”

Kupe provides the shared delivery platform around your workloads:

  • Managed Argo CD control plane
  • Tenant project creation and scoping
  • Cluster destination registration for managed clusters
  • Platform integrations for routing, certificates, logs, metrics, and secret sync

What your team manages

Section titled “What your team manages”

Your team still owns the workload definition and operating practices:

  • application manifests and chart values
  • namespace design
  • service and route definitions
  • resource requests and limits
  • health probes
  • promotion, rollback, and release process

What a good application setup includes

Section titled “What a good application setup includes”

Before a workload is considered production-ready, it should usually have:

  • Health probes so Kubernetes can manage startup, readiness, and recovery
  • Resource requests and limits for predictable scheduling and capacity visibility
  • A Service for internal traffic and an HTTPRoute for external traffic where needed
  • Observability hooks such as metrics scrape annotations and structured logs
  • Everything in Git so Argo can reconcile it cleanly

Common workload types

Section titled “Common workload types”
ResourceTypical use
DeploymentStateless APIs, web services, and workers
StatefulSetStateful services that need stable identity or storage
JobOne-off tasks such as migrations or data processing
CronJobScheduled tasks such as cleanup, reports, or maintenance

Sync policy choices

Section titled “Sync policy choices”

Argo CD supports different sync strategies depending on how strictly you want Git to control the cluster.

PolicyBehaviorUse when
Manual syncChanges wait for explicit approvalHigher-risk environments or stricter change control
Auto syncChanges apply automatically when Git changesFast-moving development or staging environments
Auto sync + pruneResources removed from Git are deleted from the clusterTeams ready for strict reconciliation
Auto sync + self-healManual drift in the cluster is corrected automaticallyTeams that want Git to remain authoritative

Good starting points

Section titled “Good starting points”