Azure Reference Architecture

(Link to download original Figjam file)

Notes

  • Azure Storage is used to store web portal assets, training data and models.
  • User authentication services (not shown in diagram) provided by Authgear, which can be hosted in the same cluster or as an external service.

Optional Training Pipeline

  • FormX training pipeline is based on Kubeflow. Hence the rights to create CustomResourceDefinitions (CRD) in the cluster is required.

Cloud Resources Requirements

Products

Purposes

Minimum Specification

Azure Kubernetes Services

Pods to run the applications, workers
Redis: Cache authentication tokens
Authgear: Authentication

D8plds v5 (8 vCPUs, 16GiB RAM)
x 3 minimum for k8s
(See here for detailed requirements for training pipeline)

Azure Database for PostgreSQL

Store the configs, audit logs, temporarily result for async requests

General Purpose Compute Gen 5 (4 vCores)
x 2 for high availability

Azure Storage

Storage of the portal assets; (optional) images for training and models

N/A

Azure Read API

OCR

N/A

(Optional Components)

Networking:

  • Azure Front Door with WAF Policy
  • Azure Load Balancer
    CI/CD:
  • Azure Key Vaults
  • Azure Container Registry

N/A