Skip to main content

Blueprints Overview

Purpose: For platform engineers and leadership, explains what blueprints are, how they layer on the platform foundation, and which one to start with.

What Is a Blueprint

A blueprint is a versioned, opinionated deployment pattern that extends the openCenter platform foundation with workload-specific services, compliance controls, and operational runbooks. Every blueprint shares:

  • GitOps-managed lifecycle (FluxCD + Kustomize)
  • Security hardening (Kyverno policies, Pod Security Admission, SOPS encryption)
  • Observability (Prometheus, Grafana, Loki, Tempo, OpenTelemetry)
  • Air-gap readiness (signed Zarf artifacts)

Blueprints live in openCenter-gitops-base (and openCenter-gitops-enterprise for enterprise overlays), not in the CLI. The CLI generates the cluster configuration that references blueprints.

Blueprint Types

TypePurposeExamples
FoundationCore platform — every cluster gets thisKubernetes (observability, security, GitOps)
WorkloadInfrastructure patterns for specific workload classesCloud (OpenStack), AI (GPU)
IndustryCompliance and operational controls for regulated sectorsFinance, Healthcare, Telco
Data ServicesManaged data infrastructure operated as platform servicesStreaming (Kafka), Databases (PostgreSQL)

Composition Model

Blueprints compose — an industry blueprint layers compliance controls on top of the foundation, and can include data services. A Finance cluster running Kafka gets the foundation + streaming blueprint + finance compliance controls.

Choosing a Blueprint

If you need…Start with…
Production Kubernetes with observability and securityPlatform Foundation
Private cloud (OpenStack + Kubernetes)Cloud Blueprint
GPU workloads with policy controlsAI Blueprint
Managed Kafka or databasesData Services
SOC2/PCI/NIST complianceFinance Blueprint
HIPAA complianceHealthcare Blueprint
Edge-to-core fleet managementTelco Blueprint

Further Reading