The latest articles on DEV Community by Safdar Wahid (@safdarwahid). https://dev.to/safdarwahid https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3219867%2Fbe624135-0f51-4d84-82cb-33d0d6056b75.png https://dev.to/safdarwahid en Safdar Wahid Tue, 14 Apr 2026 17:16:17 +0000 https://dev.to/safdarwahid/database-operators-cloudnativepg-mongodb-redis-on-kubernetes-4j3a https://dev.to/safdarwahid/database-operators-cloudnativepg-mongodb-redis-on-kubernetes-4j3a <h2> TL;DR </h2> <ul> <li> <strong>Operators encode DBA expertise into software</strong> : They extend Kubernetes with custom resources (clusters, backups, users) and automatically handle provisioning, scaling, failover, and recovery—no manual scripts.</li> <li> <strong>CloudNativePG for PostgreSQL</strong> : Production-grade. One YAML deploys a 3-instance HA cluster with replication, automatic failover (seconds), S3 backups, and PITR.</li> <li> <strong>MongoDB Community Operator</strong> : Manages replica sets declaratively—topology, users, auth, scaling, rolling upgrades.</li> <li> <strong>Redis operators</strong> : Opstree Redis Operator handles both standalone and clustered (sharded) modes with persistence and eviction policies.</li> <li> <strong>Key operations</strong> : Scaling (<code>kubectl patch</code>), rolling upgrades, PITR (restore to any timestamp), cross-cluster replication.</li> <li> <strong>Backup &amp; DR</strong> : Scheduled backups to S3 with retention policies. Test restores regularly—unverified backups don't exist.</li> <li> <strong>Observability</strong> : Prometheus metrics via <code>podMonitorEnabled</code>, operator logs, <code>kubectl cnpg psql</code>.</li> </ul> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fuflh9bng0kbmn63bjsg9.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fuflh9bng0kbmn63bjsg9.png" alt="Database Operators: CloudNativePG, MongoDB &amp; Redis on Kubernetes" width="800" height="400"></a></p> <p>Running databases on Kubernetes traditionally required extensive operational knowledge and custom automation scripts. Database operators transform this experience by encoding operational expertise into software.</p> <p>Operators implement the <a href="https://blog.easecloud.io/containers/mastering-kubernetes-essential-guide-enterprises/" rel="noopener noreferrer">Kubernetes</a> operator pattern, extending the API with custom resources that represent database clusters, backups, and users while automating provisioning, scaling, upgrades, and recovery.</p> <h2> The Operator Pattern </h2> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fh1tfzsizgzisa30ts37u.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fh1tfzsizgzisa30ts37u.png" alt="Database Operators: CloudNativePG, MongoDB &amp; Redis on Kubernetes" width="640" height="640"></a><br> <em>Declarative controller continuously reconciles actual state with desired state for self-healing.</em></p> <p>Kubernetes operators consist of Custom Resource Definitions (CRDs) that define new resource types and controllers that watch these resources and reconcile actual state with desired state. A PostgreSQL operator watches Cluster resources and ensures running PostgreSQL instances match the specification.</p> <p><strong>Reconciliation loops</strong> continuously compare desired state (YAML manifests) with actual state (running pods, volumes, services). When differences appear, the controller takes action to align reality with intent. This declarative model enables self-healing and automation.</p> <h2> CloudNativePG for PostgreSQL </h2> <p><a href="https://cloudnativepg.io/documentation/?ref=blog.easecloud.io" rel="noopener noreferrer">CloudNativePG</a> provides production-grade PostgreSQL cluster management on Kubernetes. It handles replication, failover, backup, and recovery without manual intervention.</p> <p><strong>Installation</strong> deploys the operator into your cluster.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>kubectl apply <span class="nt">-f</span> <span class="se">\</span> https://raw.githubusercontent.com/cloudnative-pg/cloudnative-pg/release-1.22/releases/cnpg-1.22.0.yaml </code></pre> </div> <p>This creates the operator's deployment, CRDs, service account, and RBAC rules.</p> <p><strong>Creating a PostgreSQL cluster</strong> requires only a Cluster resource.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Cluster</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-postgres</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">applications</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">instances</span><span class="pi">:</span> <span class="m">3</span> <span class="na">imageName</span><span class="pi">:</span> <span class="s">ghcr.io/cloudnative-pg/postgresql:15.5</span> <span class="na">storage</span><span class="pi">:</span> <span class="na">size</span><span class="pi">:</span> <span class="s">100Gi</span> <span class="na">storageClass</span><span class="pi">:</span> <span class="s">fast-ssd</span> <span class="na">postgresql</span><span class="pi">:</span> <span class="na">parameters</span><span class="pi">:</span> <span class="na">max_connections</span><span class="pi">:</span> <span class="s2">"</span><span class="s">200"</span> <span class="na">shared_buffers</span><span class="pi">:</span> <span class="s2">"</span><span class="s">256MB"</span> <span class="na">effective_cache_size</span><span class="pi">:</span> <span class="s2">"</span><span class="s">1GB"</span> <span class="na">maintenance_work_mem</span><span class="pi">:</span> <span class="s2">"</span><span class="s">256MB"</span> <span class="na">checkpoint_completion_target</span><span class="pi">:</span> <span class="s2">"</span><span class="s">0.9"</span> <span class="na">wal_buffers</span><span class="pi">:</span> <span class="s2">"</span><span class="s">16MB"</span> <span class="na">default_statistics_target</span><span class="pi">:</span> <span class="s2">"</span><span class="s">100"</span> <span class="na">random_page_cost</span><span class="pi">:</span> <span class="s2">"</span><span class="s">1.1"</span> <span class="na">effective_io_concurrency</span><span class="pi">:</span> <span class="s2">"</span><span class="s">200"</span> <span class="na">monitoring</span><span class="pi">:</span> <span class="na">enabled</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">podMonitorEnabled</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">backup</span><span class="pi">:</span> <span class="na">barmanObjectStore</span><span class="pi">:</span> <span class="na">destinationPath</span><span class="pi">:</span> <span class="s">s3://my-backups/production-postgres</span> <span class="na">s3Credentials</span><span class="pi">:</span> <span class="na">accessKeyId</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">aws-credentials</span> <span class="na">key</span><span class="pi">:</span> <span class="s">access-key-id</span> <span class="na">secretAccessKey</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">aws-credentials</span> <span class="na">key</span><span class="pi">:</span> <span class="s">secret-access-key</span> <span class="na">wal</span><span class="pi">:</span> <span class="na">compression</span><span class="pi">:</span> <span class="s">gzip</span> <span class="na">maxParallel</span><span class="pi">:</span> <span class="m">4</span> <span class="na">data</span><span class="pi">:</span> <span class="na">compression</span><span class="pi">:</span> <span class="s">gzip</span> <span class="na">jobs</span><span class="pi">:</span> <span class="m">2</span> <span class="na">retentionPolicy</span><span class="pi">:</span> <span class="s2">"</span><span class="s">30d"</span> <span class="na">bootstrap</span><span class="pi">:</span> <span class="na">initdb</span><span class="pi">:</span> <span class="na">database</span><span class="pi">:</span> <span class="s">myapp</span> <span class="na">owner</span><span class="pi">:</span> <span class="s">myapp</span> <span class="na">secret</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">myapp-db-secret</span> </code></pre> </div> <p>When you apply this manifest, the operator springs into action. It creates StatefulSet for PostgreSQL pods, PersistentVolumeClaims for storage, Services for connectivity, Secrets for credentials, and ConfigMaps for configuration. The operator configures streaming replication between instances automatically.</p> <p><strong>High availability</strong> comes built-in. CloudNativePG monitors cluster health and promotes standby instances when the primary fails. Failover typically completes within seconds.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># Configure failover behavior</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Cluster</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-postgres</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">instances</span><span class="pi">:</span> <span class="m">3</span> <span class="na">primaryUpdateStrategy</span><span class="pi">:</span> <span class="s">unsupervised</span> <span class="na">failoverDelay</span><span class="pi">:</span> <span class="m">30</span> <span class="na">switchoverDelay</span><span class="pi">:</span> <span class="m">60</span> <span class="na">affinity</span><span class="pi">:</span> <span class="na">podAntiAffinityType</span><span class="pi">:</span> <span class="s">required</span> <span class="na">topologyKey</span><span class="pi">:</span> <span class="s">kubernetes.io/hostname</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">memory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">2Gi"</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s2">"</span><span class="s">1000m"</span> <span class="na">limits</span><span class="pi">:</span> <span class="na">memory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">4Gi"</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s2">"</span><span class="s">2000m"</span> </code></pre> </div> <p><strong>Creating databases and users</strong> happens through declarative resources.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Database</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">myapp</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">applications</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">cluster</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-postgres</span> <span class="na">name</span><span class="pi">:</span> <span class="s">myapp</span> <span class="na">owner</span><span class="pi">:</span> <span class="s">myappuser</span> <span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Database</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">analytics</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">applications</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">cluster</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-postgres</span> <span class="na">name</span><span class="pi">:</span> <span class="s">analytics</span> <span class="na">owner</span><span class="pi">:</span> <span class="s">analyticsuser</span> </code></pre> </div> <p>The operator creates the database and user, handles password generation, and stores credentials in a Secret your application can mount.</p> <p><strong>Scheduled backups</strong> configure automatic backup creation.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">ScheduledBackup</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">daily-backup</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">applications</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">schedule</span><span class="pi">:</span> <span class="s2">"</span><span class="s">0</span><span class="nv"> </span><span class="s">2</span><span class="nv"> </span><span class="s">*</span><span class="nv"> </span><span class="s">*</span><span class="nv"> </span><span class="s">*"</span> <span class="na">backupOwnerReference</span><span class="pi">:</span> <span class="s">self</span> <span class="na">cluster</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-postgres</span> <span class="na">method</span><span class="pi">:</span> <span class="s">barmanObjectStore</span> <span class="na">target</span><span class="pi">:</span> <span class="s">primary</span> </code></pre> </div> <p><strong>Monitoring and observability</strong> integrate with Prometheus and Grafana.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check cluster status</span> kubectl cnpg status production-postgres <span class="c"># View cluster details</span> kubectl describe cluster production-postgres <span class="c"># Connect to primary instance</span> kubectl cnpg psql production-postgres <span class="c"># Promote a replica</span> kubectl cnpg promote production-postgres 2 </code></pre> </div> <h2> MongoDB Community Operator </h2> <p>The <a href="https://github.com/mongodb/mongodb-kubernetes-operator?ref=blog.easecloud.io" rel="noopener noreferrer">MongoDB Community Operator</a> manages MongoDB replica sets on Kubernetes. It automates deployment, scaling, and configuration management.</p> <p><strong>Installation</strong> uses Helm or kubectl.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install the operator</span> kubectl apply <span class="nt">-f</span> <span class="se">\</span> https://raw.githubusercontent.com/mongodb/mongodb-kubernetes-operator/master/config/crd/bases/mongodbcommunity.mongodb.com_mongodbcommunity.yaml kubectl apply <span class="nt">-f</span> <span class="se">\</span> https://raw.githubusercontent.com/mongodb/mongodb-kubernetes-operator/master/config/manager/manager.yaml </code></pre> </div> <p><strong>Creating a MongoDB replica set</strong> defines cluster topology and configuration.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">mongodbcommunity.mongodb.com/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">MongoDBCommunity</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-mongo</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">databases</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">members</span><span class="pi">:</span> <span class="m">3</span> <span class="na">type</span><span class="pi">:</span> <span class="s">ReplicaSet</span> <span class="na">version</span><span class="pi">:</span> <span class="s2">"</span><span class="s">6.0.5"</span> <span class="na">security</span><span class="pi">:</span> <span class="na">authentication</span><span class="pi">:</span> <span class="na">modes</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">SCRAM"</span><span class="pi">]</span> <span class="na">users</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">appuser</span> <span class="na">db</span><span class="pi">:</span> <span class="s">admin</span> <span class="na">passwordSecretRef</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">app-user-password</span> <span class="na">roles</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">readWrite</span> <span class="na">db</span><span class="pi">:</span> <span class="s">myapp</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">clusterMonitor</span> <span class="na">db</span><span class="pi">:</span> <span class="s">admin</span> <span class="na">scramCredentialsSecretName</span><span class="pi">:</span> <span class="s">app-scram</span> <span class="na">statefulSet</span><span class="pi">:</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">template</span><span class="pi">:</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">containers</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">mongod</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s2">"</span><span class="s">1"</span> <span class="na">memory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">2Gi"</span> <span class="na">limits</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s2">"</span><span class="s">2"</span> <span class="na">memory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">4Gi"</span> <span class="na">volumeClaimTemplates</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">data-volume</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">accessModes</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">ReadWriteOnce"</span><span class="pi">]</span> <span class="na">storageClassName</span><span class="pi">:</span> <span class="s">fast-ssd</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">storage</span><span class="pi">:</span> <span class="s">100Gi</span> <span class="na">additionalMongodConfig</span><span class="pi">:</span> <span class="na">storage.wiredTiger.engineConfig.cacheSizeGB</span><span class="pi">:</span> <span class="m">1.5</span> <span class="na">net.maxIncomingConnections</span><span class="pi">:</span> <span class="m">200</span> </code></pre> </div> <p><strong>Application connectivity</strong> uses connection strings generated by the operator.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Pod</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">app</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">containers</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">application</span> <span class="na">image</span><span class="pi">:</span> <span class="s">myapp:latest</span> <span class="na">env</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">MONGODB_URI</span> <span class="na">value</span><span class="pi">:</span> <span class="s2">"</span><span class="s">mongodb://production-mongo-0.production-mongo-svc.databases.svc.cluster.local:27017,production-mongo-1.production-mongo-svc.databases.svc.cluster.local:27017,production-mongo-2.production-mongo-svc.databases.svc.cluster.local:27017/myapp?replicaSet=production-mongo"</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">MONGODB_USER</span> <span class="na">valueFrom</span><span class="pi">:</span> <span class="na">secretKeyRef</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">app-user-password</span> <span class="na">key</span><span class="pi">:</span> <span class="s">username</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">MONGODB_PASSWORD</span> <span class="na">valueFrom</span><span class="pi">:</span> <span class="na">secretKeyRef</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">app-user-password</span> <span class="na">key</span><span class="pi">:</span> <span class="s">password</span> </code></pre> </div> <h2> Redis Operator </h2> <p>Redis operators manage Redis standalone instances, replicas, and clusters. Multiple operators exist, with <a href="https://docs.redis.com/latest/kubernetes/?ref=blog.easecloud.io" rel="noopener noreferrer">Redis Enterprise Operator</a> and <a href="https://github.com/OT-CONTAINER-KIT/redis-operator?ref=blog.easecloud.io" rel="noopener noreferrer">Opstree Redis Operator</a> being popular choices.</p> <p><strong>Opstree Redis Operator</strong> provides a lightweight solution for basic Redis deployments.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Install Redis Operator</span> helm repo add ot-helm https://ot-container-kit.github.io/helm-charts/ helm <span class="nb">install </span>redis-operator ot-helm/redis-operator </code></pre> </div> <p><strong>Creating a Redis cluster</strong> enables horizontal scaling and automatic sharding.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">redis.redis.opstreelabs.in/v1beta1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">RedisCluster</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-redis</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">clusterSize</span><span class="pi">:</span> <span class="m">6</span> <span class="na">clusterVersion</span><span class="pi">:</span> <span class="s">v7</span> <span class="na">kubernetesConfig</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">redis:7.0</span> <span class="na">imagePullPolicy</span><span class="pi">:</span> <span class="s">IfNotPresent</span> <span class="na">redisExporter</span><span class="pi">:</span> <span class="na">enabled</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">image</span><span class="pi">:</span> <span class="s">quay.io/opstree/redis-exporter:latest</span> <span class="na">storage</span><span class="pi">:</span> <span class="na">volumeClaimTemplate</span><span class="pi">:</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">accessModes</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">ReadWriteOnce"</span><span class="pi">]</span> <span class="na">storageClassName</span><span class="pi">:</span> <span class="s">fast-ssd</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">storage</span><span class="pi">:</span> <span class="s">50Gi</span> <span class="na">redisConfig</span><span class="pi">:</span> <span class="na">maxmemory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">2gb"</span> <span class="na">maxmemory-policy</span><span class="pi">:</span> <span class="s2">"</span><span class="s">allkeys-lru"</span> <span class="na">appendonly</span><span class="pi">:</span> <span class="s2">"</span><span class="s">yes"</span> <span class="na">appendfsync</span><span class="pi">:</span> <span class="s2">"</span><span class="s">everysec"</span> <span class="na">save</span><span class="pi">:</span> <span class="s2">"</span><span class="s">900</span><span class="nv"> </span><span class="s">1</span><span class="nv"> </span><span class="s">300</span><span class="nv"> </span><span class="s">10</span><span class="nv"> </span><span class="s">60</span><span class="nv"> </span><span class="s">10000"</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s2">"</span><span class="s">500m"</span> <span class="na">memory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">2Gi"</span> <span class="na">limits</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s2">"</span><span class="s">1000m"</span> <span class="na">memory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">3Gi"</span> </code></pre> </div> <p><strong>Standalone Redis</strong> for simpler use cases with <a href="https://blog.easecloud.io/cloud-infrastructure/serverless-architecture-building-event-driven-applications/" rel="noopener noreferrer">serverless architecture building</a>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">redis.redis.opstreelabs.in/v1beta1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Redis</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">cache-redis</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">kubernetesConfig</span><span class="pi">:</span> <span class="na">image</span><span class="pi">:</span> <span class="s">redis:7.0</span> <span class="na">imagePullPolicy</span><span class="pi">:</span> <span class="s">IfNotPresent</span> <span class="na">storage</span><span class="pi">:</span> <span class="na">volumeClaimTemplate</span><span class="pi">:</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">accessModes</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">ReadWriteOnce"</span><span class="pi">]</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">storage</span><span class="pi">:</span> <span class="s">10Gi</span> <span class="na">redisConfig</span><span class="pi">:</span> <span class="na">maxmemory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">512mb"</span> <span class="na">maxmemory-policy</span><span class="pi">:</span> <span class="s2">"</span><span class="s">volatile-lru"</span> <span class="na">resources</span><span class="pi">:</span> <span class="na">requests</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s2">"</span><span class="s">250m"</span> <span class="na">memory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">512Mi"</span> <span class="na">limits</span><span class="pi">:</span> <span class="na">cpu</span><span class="pi">:</span> <span class="s2">"</span><span class="s">500m"</span> <span class="na">memory</span><span class="pi">:</span> <span class="s2">"</span><span class="s">1Gi"</span> </code></pre> </div> <h2> Operator Lifecycle Management </h2> <p><strong>Upgrading database versions</strong> requires careful planning. Operators typically support in-place upgrades with rolling updates.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># PostgreSQL version upgrade</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Cluster</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-postgres</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">instances</span><span class="pi">:</span> <span class="m">3</span> <span class="na">imageName</span><span class="pi">:</span> <span class="s">ghcr.io/cloudnative-pg/postgresql:16.1</span> <span class="c1"># Upgraded from 15.5</span> <span class="na">primaryUpdateStrategy</span><span class="pi">:</span> <span class="s">unsupervised</span> </code></pre> </div> <p>CloudNativePG performs a supervised upgrade, updating replicas first, then promoting a new primary, ensuring minimal downtime.</p> <p><strong>Scaling cluster</strong> <a href="https://blog.easecloud.io/cloud-infrastructure/kubernetes-autoscaling-aws-strategies/" rel="noopener noreferrer">kubernetes autoscaling strategies</a> adjusts replica count dynamically.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Scale PostgreSQL cluster</span> kubectl patch cluster production-postgres <span class="nt">--type</span><span class="o">=</span><span class="s1">'merge'</span> <span class="se">\</span> <span class="nt">-p</span> <span class="s1">'{"spec":{"instances":5}}'</span> <span class="c"># Scale MongoDB replica set</span> kubectl patch mongodbcommunity production-mongo <span class="nt">--type</span><span class="o">=</span><span class="s1">'merge'</span> <span class="se">\</span> <span class="nt">-p</span> <span class="s1">'{"spec":{"members":5}}'</span> </code></pre> </div> <p><strong>Monitoring operator health</strong> ensures the control plane functions correctly.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Service</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">cnpg-operator-metrics</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">cnpg-system</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">ports</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">port</span><span class="pi">:</span> <span class="m">8080</span> <span class="na">name</span><span class="pi">:</span> <span class="s">metrics</span> <span class="na">selector</span><span class="pi">:</span> <span class="na">app.kubernetes.io/name</span><span class="pi">:</span> <span class="s">cloudnative-pg</span> <span class="nn">---</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">monitoring.coreos.com/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">ServiceMonitor</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">cnpg-operator</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">cnpg-system</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">selector</span><span class="pi">:</span> <span class="na">matchLabels</span><span class="pi">:</span> <span class="na">app.kubernetes.io/name</span><span class="pi">:</span> <span class="s">cloudnative-pg</span> <span class="na">endpoints</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">port</span><span class="pi">:</span> <span class="s">metrics</span> <span class="na">interval</span><span class="pi">:</span> <span class="s">30s</span> </code></pre> </div> <h2> Disaster Recovery with Operators </h2> <p>Operators simplify <a href="https://blog.easecloud.io/startup-tech/disaster-recovery-planning-for-startups-on-aws/" rel="noopener noreferrer">disaster recovery</a> through declarative backup and restore configurations.</p> <p><strong>Point-in-time recovery</strong> restores data to specific moments.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Cluster</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">restored-cluster</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">instances</span><span class="pi">:</span> <span class="m">3</span> <span class="na">bootstrap</span><span class="pi">:</span> <span class="na">recovery</span><span class="pi">:</span> <span class="na">source</span><span class="pi">:</span> <span class="s">production-postgres</span> <span class="na">recoveryTarget</span><span class="pi">:</span> <span class="na">targetTime</span><span class="pi">:</span> <span class="s2">"</span><span class="s">2025-11-25</span><span class="nv"> </span><span class="s">14:30:00.00000+00"</span> <span class="na">externalClusters</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">production-postgres</span> <span class="na">barmanObjectStore</span><span class="pi">:</span> <span class="na">destinationPath</span><span class="pi">:</span> <span class="s">s3://backups/production-postgres</span> <span class="na">s3Credentials</span><span class="pi">:</span> <span class="na">accessKeyId</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">aws-credentials</span> <span class="na">key</span><span class="pi">:</span> <span class="s">access-key-id</span> <span class="na">secretAccessKey</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">aws-credentials</span> <span class="na">key</span><span class="pi">:</span> <span class="s">secret-access-key</span> <span class="na">wal</span><span class="pi">:</span> <span class="na">maxParallel</span><span class="pi">:</span> <span class="m">8</span> </code></pre> </div> <p><strong>Cross-cluster replication</strong> enables geographic distribution and disaster recovery.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># Primary cluster in us-east-1</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Cluster</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">postgres-us-east</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">production</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">instances</span><span class="pi">:</span> <span class="m">3</span> <span class="na">storage</span><span class="pi">:</span> <span class="na">size</span><span class="pi">:</span> <span class="s">200Gi</span> <span class="nn">---</span> <span class="c1"># Replica cluster in eu-west-1</span> <span class="na">apiVersion</span><span class="pi">:</span> <span class="s">postgresql.cnpg.io/v1</span> <span class="na">kind</span><span class="pi">:</span> <span class="s">Cluster</span> <span class="na">metadata</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">postgres-eu-west</span> <span class="na">namespace</span><span class="pi">:</span> <span class="s">production</span> <span class="na">spec</span><span class="pi">:</span> <span class="na">instances</span><span class="pi">:</span> <span class="m">3</span> <span class="na">replica</span><span class="pi">:</span> <span class="na">enabled</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">source</span><span class="pi">:</span> <span class="s">postgres-us-east</span> <span class="na">externalClusters</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">postgres-us-east</span> <span class="na">connectionParameters</span><span class="pi">:</span> <span class="na">host</span><span class="pi">:</span> <span class="s">postgres-us-east-rw.production.svc.cluster.local</span> <span class="na">user</span><span class="pi">:</span> <span class="s">streaming_replica</span> <span class="na">dbname</span><span class="pi">:</span> <span class="s">postgres</span> <span class="na">password</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">replica-creds</span> <span class="na">key</span><span class="pi">:</span> <span class="s">password</span> </code></pre> </div> <h2> Best Practices </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Practice</th> <th>Recommendation</th> </tr> </thead> <tbody> <tr> <td>Resource limits</td> <td>Prevent database pods from consuming excessive cluster resources</td> </tr> <tr> <td>Storage classes</td> <td>Match performance requirements: high-IOPS SSDs for transactional databases, standard disks for development</td> </tr> <tr> <td>Monitoring and alerting</td> <td>Track database health. Integrate with Prometheus, Grafana, and alerting systems</td> </tr> <tr> <td>Backup verification</td> <td>Test restore procedures regularly in non-production environments</td> </tr> <tr> <td>Security hardening</td> <td>Network policies, pod security policies, secrets encryption, regular security patches</td> </tr> <tr> <td>Upgrade testing</td> <td>Validate new operator versions in staging before production deployment</td> </tr> </tbody> </table></div> <h3> How Does Your Setup Compare? </h3> <p><strong>Run through the checklist:</strong></p> <ul> <li>Resource limits set for all database pods?</li> <li>Storage class matched to workload (high-IOPS for OLTP, standard for dev)?</li> <li>Prometheus + Grafana monitoring integrated?</li> <li>Backup restore tested in last 30 days?</li> <li>Security hardening (network policies, secrets encryption)?</li> </ul> <p><strong>Missing even one? We can help.</strong></p> <p><a href="https://easecloud.io/docker-and-kubernetes/?ref=blog.easecloud.io" rel="noopener noreferrer">Get a Free Database Operator Audit →</a></p> <p><em>We'll review your Kubernetes database setup and deliver a prioritized fix list.</em></p> <h2> Troubleshooting Common Issues </h2> <p><strong>Pod fails to start</strong> often indicates storage provisioning problems or insufficient resources.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check cluster status</span> kubectl describe cluster production-postgres <span class="c"># View pod events</span> kubectl describe pod production-postgres-1 <span class="c"># Check logs</span> kubectl logs production-postgres-1 <span class="nt">-c</span> postgres </code></pre> </div> <p><strong>Replication lag</strong> appears when standbys fall behind primary.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Check replication status (CloudNativePG)</span> kubectl cnpg status production-postgres <span class="c"># Query replication lag</span> kubectl cnpg psql production-postgres <span class="nt">--</span> <span class="nt">-c</span> <span class="se">\</span> <span class="s2">"SELECT application_name, state, sync_state, pg_wal_lsn_diff(pg_current_wal_lsn(), replay_lsn) AS lag_bytes FROM pg_stat_replication;"</span> </code></pre> </div> <p><strong>Backup failures</strong> require investigating storage credentials and network connectivity.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># View backup status</span> kubectl get backup <span class="nt">-n</span> applications <span class="c"># Describe backup</span> kubectl describe backup daily-backup-20251125 <span class="c"># Check operator logs</span> kubectl logs <span class="nt">-n</span> cnpg-system deployment/cnpg-controller-manager </code></pre> </div> <p>Whether you're running a few database clusters or hundreds, operators provide the automation and reliability needed for production cloud-native data management. They encode operational expertise, reduce manual toil, and enable teams to focus on application development rather than database administration.</p> <h2> Conclusion </h2> <p>Database operators transform error-prone manual operations failover, backup, scaling, upgrades into declarative, self-healing automation. CloudNativePG, MongoDB Operator, and Redis Operator each encode deep platform expertise into controllers that run alongside your databases.</p> <p>The benefits:</p> <ul> <li> <strong>Reduced toil</strong> - Automate manual operations (failover, backup, scaling, upgrades)</li> <li> <strong>Consistent configuration</strong> - Declarative, repeatable setups</li> <li> <strong>Automated disaster recovery</strong> - Built-in DR capabilities</li> <li> <strong>Manage dozens of clusters like one</strong> - Scale operations without scaling headcount</li> </ul> <p><strong>But operators aren't magic.</strong> They need careful storage class, resource limit, and backup configuration plus regular upgrade testing and recovery drills. When implemented thoughtfully, operators free teams from 3 AM pages. Start with CloudNativePG (most mature), test thoroughly in staging, then expand to production.</p> <h2> FAQs </h2> <h3> <strong>1.</strong> StatefulSet <strong>vs. operator?</strong> </h3> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Capability</th> <th>StatefulSet</th> <th>Operator</th> </tr> </thead> <tbody> <tr> <td>Stable identities</td> <td>Yes</td> <td>Builds on StatefulSet</td> </tr> <tr> <td>Ordered pods</td> <td>Yes</td> <td>Builds on StatefulSet</td> </tr> <tr> <td>Persistent volumes</td> <td>Yes</td> <td>Builds on StatefulSet</td> </tr> <tr> <td>Database logic</td> <td>No</td> <td>Yes</td> </tr> <tr> <td>Replication setup</td> <td>No</td> <td>Yes</td> </tr> <tr> <td>Failover handling</td> <td>No</td> <td>Yes</td> </tr> <tr> <td>Backup management</td> <td>No</td> <td>Yes</td> </tr> <tr> <td>Zero-downtime upgrades</td> <td>No</td> <td>Yes</td> </tr> </tbody> </table></div> <blockquote> <p>Operators encode what a human DBA knows.</p> </blockquote> <h3> <strong>2. Which</strong> Postgres <strong>operator?</strong> </h3> <ul> <li> <strong>CloudNativePG</strong> – Best for Kubernetes-native workflows, Prometheus, S3 backups. CNCF sandbox. Recommended for new projects.</li> <li> <strong>Zalando</strong> – Mature (thousands of DBs at <a href="https://github.com/zalando/postgres-operator?ref=blog.easecloud.io" rel="noopener noreferrer">Zalando Postgres Operator</a>), RDS-like config, team-based access.</li> <li> <strong>Crunchy</strong> – Enterprise-focused, web UI, compliance features.</li> </ul> <h3> <strong>3.</strong> Disaster Recovery Testing Procedure <strong>?</strong> </h3> <p>Run quarterly drills:</p> <ol> <li>Pick a random Point-in-Time Recovery (PITR) target from the last 30 days</li> <li>Create cluster with <code>bootstrap.recovery</code> pointing to that time</li> <li>Operator automatically finds full backup and replays WAL logs</li> <li>Verify data integrity</li> <li>Delete cluster</li> </ol> <p>Automate with CronJob to staging if you haven't restored in 30 days, your backup strategy isn't validated.</p> containers