Merge pull request #1 from numtide/docs-for-context

Add initial project context

Author: rytswd

docs/README.md

@@ -0,0 +1,57 @@
+# Project Overview
+
+## What is This?
+
+Kubernetes operator for deploying and managing Multigres clusters.
+
+## Core Principle
+
+**Clean Separation**: The operator manages Kubernetes resources (Deployments, StatefulSets, Services) only. It has no knowledge of Multigres application internals. Multigres components handle their own startup dependencies and coordination.
+
+## What Does It Deploy?
+
+A Multigres cluster consists of:
+- **etcd**: Distributed key-value store for cluster coordination
+- **MultiGateway**: PostgreSQL protocol gateway
+- **MultiOrch**: Orchestration service
+- **MultiPooler**: Connection pooling with embedded PostgreSQL and pgctld
+
+The operator creates and manages all necessary Kubernetes resources for these components.
+
+## Technology
+
+- **Language**: Go
+- **Framework**: Kubebuilder
+- **Observability**: OpenTelemetry (traces, metrics, logs)
+- **Testing**: Go testing + envtest (100% coverage goal)
+
+## Project Structure
+
+### Code
+
+```
+multigres-operator/
+├── api/v1alpha1/           # CRD definitions
+├── cmd/multigres-operator/ # Main entry point
+└── internal/               # Controller and resource builders
+```
+
+### Documentation and Configuration
+
+```
+multigres-operator/
+├── config/                 # Kubernetes manifests
+├── docs/                   # Architecture and guides
+└── plans/                  # Planning documents
+```
+
+## Documentation
+
+- **architecture.md**: System design, components, technology choices
+- **implementation-guide.md**: Development workflow, testing, coding standards
+- **interface-design.md**: CRD API design, status fields, kubectl output
+
+### Multigres Documentation
+
+- https://multigres.com/: Documentation for Multigres architecture and design details
+- https://github.com/multigres/multigres: Main repository for Multigres implementation

docs/architecture.md

@@ -0,0 +1,215 @@
+# System Architecture
+
+## Core Philosophy
+
+### Idiomatic Go
+- **Simplicity and Clarity**: Straightforward code over clever abstractions
+- **Explicit Dependencies**: Function signatures and struct fields make dependencies obvious
+- **Error Handling**: Errors include context and are wrapped for debugging
+- **Pure Resource Builders**: Resource functions are deterministic - same input produces same output
+- **Structured Concurrency**: Use sync.WaitGroup for coordinated goroutines with clear lifecycle
+
+### Kubernetes Operator Safety
+- **Finalizers for Lifecycle**: Prevent resource deletion until cleanup is complete
+- **Owner References for Cleanup**: Automatic garbage collection of child resources when parent is deleted
+- **Idempotent Reconciliation**: Safe to run reconcile loop multiple times - converges to desired state
+- **Status Subresource**: Observed state lives in status, never in spec
+- **Infrastructure-Only Concerns**: Operator manages compute resources, not application logic or startup dependencies
+
+## Design Principles
+
+### Clean Separation of Concerns
+- **Operator**: Manages Kubernetes resources (Deployments, StatefulSets, Services, HPAs)
+- **Multigres Components**: Handle their own application logic, readiness, and inter-service dependencies
+- **No Application Knowledge**: Operator doesn't orchestrate Multigres component startup order
+- **Eventually Consistent**: All resources created concurrently; components become ready when dependencies are available
+
+### Layered Architecture
+- **Controller Layer**: Orchestrates reconciliation, manages finalizers and status updates
+- **Reconciler Layer**: Component-specific reconciliation (etcd, multigateway, multiorch, multipooler)
+- **Resource Builder Layer**: Pure functions that construct Kubernetes manifests
+- **Parallel Reconciliation**: All component reconcilers run concurrently via goroutines
+
+### Testability
+- **Pure Functions**: Resource builders are deterministic and table-test friendly
+- **Test Helpers**: Mocks and test doubles enable testing without external dependencies
+- **Integration Tests**: envtest provides real Kubernetes API for controller testing
+- **Minimal Interfaces**: Each reconciler has consistent, simple signature
+
+## System Architecture
+
+```
+multigres-operator/
+├── api/v1alpha1/           # CRD definitions and types
+├── cmd/multigres-operator/ # Main entry point
+├── internal/
+│   ├── controller/         # Main reconciler and component reconcilers
+│   │   ├── etcd/
+│   │   ├── multigateway/
+│   │   ├── multiorch/
+│   │   └── multipooler/
+│   ├── resources/          # Pure resource builder functions
+│   ├── webhook/            # Admission webhooks (defaulting, validation)
+│   └── testutil/           # Test helpers and utilities
+├── config/                 # Kubernetes manifests for operator deployment
+├── docs/                   # Architecture, conventions, and development guides
+└── plans/                  # Planning documents
+```
+
+### API Layer (`api/v1alpha1`)
+- **Purpose**: Defines Multigres custom resource schema
+- **Components**: MultigresSpec, MultigresStatus, component specs (MultiGatewaySpec, MultiOrchSpec, MultiPoolerSpec, EtcdSpec)
+- **Validation**: Kubebuilder markers for OpenAPI validation and defaults
+
+### Controller Layer (`internal/controller`)
+- **MultigresReconciler**: Main controller - manages lifecycle, finalizers, status aggregation
+- **Component Reconcilers**: etcd, multigateway, multiorch, multipooler reconcilers run in parallel
+- **Responsibilities**: Create/update resources, check component health, update status
+
+### Resource Layer (`internal/resources`)
+- **Pure Functions**: Build Kubernetes manifests (Deployments, StatefulSets, Services, HPAs)
+- **Label Management**: Consistent label generation for resource selection
+- **No Side Effects**: Same input always produces same output
+
+## Core Components
+
+### Reconciliation Flow
+
+The operator follows a standard Kubernetes reconciliation pattern:
+
+1. **Watch**: Monitor Multigres custom resources for changes
+2. **Reconcile**: When changes detected, run reconciliation loop
+3. **Converge**: Create/update Kubernetes resources to match desired state
+4. **Status Update**: Reflect observed state in Multigres status subresource
+5. **Requeue**: Schedule next reconciliation if needed
+
+### Component Reconcilers
+
+Each Multigres component has its own reconciler:
+
+- **etcd Reconciler**: Manages StatefulSet for etcd cluster, headless and client Services
+- **multigateway Reconciler**: Manages Deployment, Service, and optional HPA for MultiGateway
+- **multiorch Reconciler**: Manages Deployment and optional HPA for MultiOrch
+- **multipooler Reconciler**: Manages StatefulSet with multi-container pods (pooler, pgctld, postgres), and optional HPA
+
+All component reconcilers run in parallel.
+
+### Resource Builders
+
+Pure functions that generate Kubernetes manifests:
+
+- **Deterministic**: Same inputs always produce same outputs
+- **No Side Effects**: Don't make API calls or modify global state
+- **Testable**: Easily unit tested in isolation
+- **Composable**: Small functions that build specific resource types
+
+### Validation Strategy
+
+Using **CRD validation markers only** for simplicity:
+
+- OpenAPI v3 schema constraints (numeric ranges, enums, patterns, etc.)
+- Default values specified in CRD
+- API server enforces validation without external calls
+- No admission webhooks required
+
+### Observability
+
+**OpenTelemetry Integration**:
+- **Traces**: Reconciliation flow, API calls, component creation with spans
+- **Metrics**: Reconciliation duration, error rates, component health, resource counts
+- **Logs**: Structured logs with trace context correlation
+
+**Health Checks**:
+- **Liveness Probe**: HTTP endpoint to detect if operator needs restart
+- **Readiness Probe**: HTTP endpoint to indicate operator can handle requests
+
+**Kubernetes Events**:
+- Emitted for significant state changes and errors
+- Surfaced via `kubectl describe` for user visibility
+
+### Admission Webhooks (Future Consideration)
+
+**Current Decision**: Start without admission webhooks to keep installation simple and reduce moving parts during initial development.
+
+**When to Add**: Consider webhooks when:
+- Need validation beyond OpenAPI v3 schema (cross-field validation, complex business rules)
+- Want dynamic defaults based on cluster state
+- Need mutation beyond simple defaults
+
+**Certificate Management Options**:
+- **Init container pattern** (preferred): Jobs generate certs, init container waits - no runtime dependencies, standard CNCF pattern
+- **cert-manager**: Automatic cert management - adds runtime dependency but simplifies renewal
+- **Manual certificates**: Full control - operational overhead for rotation
+
+Current preference is init container pattern (same as Istio, NGINX Ingress), but final decision will be made during implementation based on operational requirements.
+
+## Technology Stack
+
+### Language and Runtime
+- **Language**: Go 1.24+
+- **Key Features**: Concurrency, interfaces, strong typing
+
+### Key Dependencies
+- **Framework**: Kubebuilder v3 - scaffolding and patterns for Kubernetes operators
+- **controller-runtime**: Core controller and client libraries
+- **client-go**: Kubernetes API client
+- **OpenTelemetry**: Traces, metrics, and logs
+- **Testing**: Standard Go testing, envtest for integration tests
+
+### Build Tools
+- **Make**: Task orchestration (build, test, deploy)
+- **Docker**: Container image building
+- **kubectl/kustomize**: Kubernetes manifest management
+- **GitHub Actions**: CI/CD pipeline for testing and releases
+- **Optional**: Nix + direnv for reproducible dev environment
+
+## Performance Considerations
+
+### Parallel Reconciliation
+- Component reconcilers run concurrently
+- Each component reconciler is independent and stateless
+- All components complete before status aggregation
+
+### Resource Efficiency
+- Pure resource builders don't allocate unnecessary memory
+- Status updates batched - one update per reconciliation loop
+- Requeue delays prevent tight loops when resources aren't ready
+
+### Kubernetes API Calls
+- Owner references enable automatic garbage collection (no manual cleanup)
+- Watches reduce unnecessary reconciliation triggers
+- Client-side caching via controller-runtime reduces API server load
+
+## Error Handling Strategy
+
+### Error Types
+- **Reconciliation Errors**: Failed to create/update Kubernetes resources
+- **API Errors**: Kubernetes API server communication failures
+- **Validation Errors**: Invalid spec values caught by CRD validation
+- **Health Check Errors**: Component not ready yet (non-fatal, triggers requeue)
+
+### Error Reporting
+- Errors wrapped with context for debugging
+- Structured logging with key-value pairs
+- Critical errors returned to trigger requeue
+- Non-critical errors logged but don't fail reconciliation
+
+### Recovery Strategies
+- **Automatic Requeue**: Failed reconciliations automatically retry with exponential backoff
+- **Status Conditions**: Error details reflected in status conditions for debugging
+- **Idempotent Operations**: Safe to retry - won't duplicate resources
+- **Component Independence**: One component's failure doesn't block others
+
+## Future Architecture Considerations
+
+### High Availability
+- Leader election (already supported via controller-runtime flag)
+- Multiple operator replicas for redundancy
+- Graceful shutdown handling for in-flight reconciliations
+- Zero-downtime upgrades
+
+### Advanced Features
+- Custom resource pruning and cleanup policies
+- Multi-cluster support for Multigres deployments
+- Backup and restore integration
+- Advanced scheduling and placement strategies