Kubernetes Add-ons Management
Edka provides a curated set of add-ons that can be installed with a single click. These add-ons extend the functionality of your Kubernetes cluster, providing the building blocks for your applications. The add-ons can serve for different purposes, like a base layer for your own applications or for the applications provided by Edka. For example, you can install CloudNativePG operator, then create a PostgreSQL database from the dashboard, or using GitOps by providing the necessary configuration using Git. We provide basic configurations for the add-ons to work correctly with your cloud provider and get you started quickly. Updates are delivered regularly with fast and safe rollbacks.
Available Add-ons
Section titled “Available Add-ons”Envoy Gateway
Section titled “Envoy Gateway”Purpose: Managed Gateway API controller for routing external traffic
Features:
- Gateway API support with managed Gateway classes
- Public and private load balancer entry points
- Gateway level TLS integration with Cert-Manager
- Aggregate traffic metrics in the cluster Gateway view
- Integration with Tailscale operator for private tailnet service exposure
Tailscale Operator
Section titled “Tailscale Operator”Purpose: Private tailnet exposure for workloads and Gateway classes
Features:
- OAuth client credential based installs
- Tailnet published Envoy Gateway classes for private Gateway API traffic
- Direct
tailscaleingress endpoints under your tailnet DNS name - Tailscale managed certificates for direct tailnet hostnames
You can install and manage this add-on from the Gateway screen.
Cert-Manager
Section titled “Cert-Manager”Purpose: Automated certificate issuance and renewal
Features:
- Automatic renewals
- Multiple issuer support
- HTTP‑01 and DNS‑01 challenges
- Wildcard certificates
Cert-Manager Issuers
Section titled “Cert-Manager Issuers”Purpose: Preconfigured certificate issuers
Options:
- Let’s Encrypt Production (default)
- Custom issuers (self‑signed, internal CA, and more)
CloudNativePG
Section titled “CloudNativePG”Purpose: PostgreSQL operator for highly available database clusters
Features:
- Automated failover and high availability
- Point‑in‑time recovery (PITR)
- Continuous backups to S3 or Google Cloud Storage
- Connection pooling with PgBouncer
- Prometheus metrics integration
barman-cloud-cnpg-plugin
Section titled “barman-cloud-cnpg-plugin”Purpose: Backup plugin for CloudNativePG
Features:
- Backups to S3 or Google Cloud Storage
- Point‑in‑time recovery (PITR)
- Continuous backups with retention control
Elasticsearch Operator
Section titled “Elasticsearch Operator”Purpose: Manage Elasticsearch clusters on Kubernetes
Features:
- Declarative Elasticsearch cluster management
- Scalable, resilient deployments
External Secrets Operator
Section titled “External Secrets Operator”Purpose: Sync secrets from external providers into Kubernetes
Supported Providers:
- Doppler, AWS Secrets Manager, HashiCorp Vault, 1Password, Azure Key Vault, Google Secret Manager
- See the full provider list
Features:
- Automatic secret synchronization and rotation
- Namespace isolation for multi‑tenancy
- Webhook notifications
Flux Operator
Section titled “Flux Operator”Purpose: GitOps operator for Flux
Features:
- Git‑driven workflows for your cluster
- Automatic deployments from your Git repository
Keel (required)
Section titled “Keel (required)”Purpose: Automatic container image updates for your applications
Features:
- Policy‑driven updates for public and private images
Metrics Server
Section titled “Metrics Server”Purpose: Resource metrics for your cluster
Features:
- Pod and node resource metrics
- HPA support based on CPU and memory
- Resource recommendations for containers
- Cluster and application usage metrics