Deployment Guide

This guide covers deploying ChronDB in production environments, from single-node Docker setups to Kubernetes clusters.

Docker

Single Container

docker run -d \
  --name chrondb \
  -p 3000:3000 \
  -p 6379:6379 \
  -p 5432:5432 \
  -v chrondb-data:/app/data \
  ghcr.io/avelino/chrondb:latest

Docker Compose

A docker-compose.yml is provided at the repository root for local development and simple deployments:

docker compose up -d

This starts ChronDB with:

• Persistent data volume (chrondb-data)

• All three protocols exposed (REST 3000, Redis 6379, PostgreSQL 5432)

• Health check on /healthz every 10 seconds

• Automatic restart on failure

• 1 GB memory limit

Verify the service is running:

Custom Configuration

Mount a custom config.edn to override defaults:

See Configuration for all available options.

Docker Image Details

• Base: Debian 12 slim (runtime stage)

• Build: GraalVM native-image (multi-stage)

• User: Non-root chrondb user

• Ports: 3000 (REST), 6379 (Redis), 5432 (PostgreSQL)

• Entry point: /usr/local/bin/chrondb

Kubernetes

StatefulSet

ChronDB stores data on disk (Git repository + Lucene index), so it should be deployed as a StatefulSet with persistent storage.

Service

Expose ChronDB to other pods in the cluster:

For external access, create an additional LoadBalancer or Ingress resource targeting the service.

ConfigMap

Store your config.edn in a ConfigMap:

Mount it in the StatefulSet:

Prometheus ServiceMonitor

If you use Prometheus Operator, create a ServiceMonitor to scrape ChronDB metrics:

Resource Guidance

Memory

Memory usage is driven by:

• Lucene index segment buffers (in-memory during writes)

• Git object cache (recently accessed documents)

• JVM heap for query processing (sorts, aggregations, joins)

Disk

Disk usage grows with both document count and history depth. Every write creates a Git commit, so a document updated 100 times uses ~100x the space of its current size. Run git gc periodically (via the compact command) to optimize storage.

Rule of thumb: allocate 3-5x the expected current dataset size for history and Git overhead.

CPU

ChronDB is mostly I/O bound. A single core handles typical workloads. Allocate additional cores for:

• Concurrent query processing

• Lucene index merges (background)

• Git operations (push/pull to remotes)

Production Checklist

Data Persistence

• Data directory is on persistent storage (not ephemeral)

• Volume is backed up regularly (see Operations Guide)

• Disk space monitoring is configured with alerts

Monitoring

• Health check endpoint (/healthz) is monitored

• Prometheus scraping is configured for /metrics

• Alerts are set for chrondb_wal_pending_entries > 100 (WAL backlog)

• Alerts are set for disk space usage > 80%

• Alerts are set for memory usage > 85%

Security

• ChronDB is not exposed to the public internet without a reverse proxy

• PostgreSQL protocol has authentication configured (username/password)

• Data directory has restricted file permissions

• Remote Git sync uses SSH keys (not passwords)

• See Security Best Practices for full guidance

Backups

• Automated backup schedule is configured

• Backup restore has been tested

• Backups are stored off-host (different disk, S3, etc.)

Network

• Only needed protocols are enabled (disable unused ones in config.edn)

• Ports are firewalled to trusted networks

• Consider a reverse proxy (nginx, Envoy) for REST API TLS termination