Platform Administration & Infrastructure
This section is dedicated to DevOps engineers, system administrators, and infrastructure architects. It covers the technical deployment, configuration, and maintenance of the Struktural platform, focusing on backend mechanics, security configurations, and multi-tenant environment management.
Please navigate through the following sub-sections:
2.1 System Architecture An overview of the core engine mechanics, including the .NET 10 Kestrel server, the Roslyn dynamic compilation pipeline, AssemblyLoadContexts (ALC) for hot-reloading, and how Entity Framework Core dynamically manages isolated tenant contexts.
2.2 Deployment & Hosting Guidelines for deploying the platform. This covers environment variables, supported Database providers (PostgreSQL, SQL Server, Oracle), File Storage configurations (Azure Blob, AWS S3, Local), and Event Bus providers (Kafka, Database polling) for background orchestration.
2.3 Identity & Authentication Configuration instructions for setting up global Single Sign-On (SSO). It explains how to integrate with Microsoft Entra ID, PingOne, and Google, configure Super Administrators, and how Just-In-Time (JIT) role provisioning maps identity claims to local tenant permissions.
2.4 Tenant Provisioning & Management A deep dive into the multi-tenant architecture. This covers the physical file system structure of a tenant (
Apps/{appId}/Definitions), the AppId routing resolution hierarchy (URL vs. Host Headers), and configuration overrides.2.5 Secrets Management Best practices for handling sensitive credentials without hardcoding them. Details the integration with Azure Key Vault and AWS Secrets Manager using Managed Identities, and how to use
SecretReferenceobjects within the JSON schemas.2.6 Application Telemetry & Observability Configuring OpenTelemetry, Application Insights, and CloudWatch. Covers distributed tracing metrics, frontend performance tracking, and querying the internal
Struktural_Sys_ActivityLog.2.7 Disaster Recovery & Trash Bin Administrative API workflows for restoring soft-deleted Tenant applications and performing atomic ZIP restorations of configuration metadata.
2.8 Worker Resiliency & Debouncing Background architecture details on the
ErrorFlushService(circuit breaking),WorkflowWorkerService, andAclPropagationWorkerfor achieving eventual consistency and recovering from crashes.