Internal Developer Platform (IDP) built with Backstage for infrastructure self-service, service catalog management, and developer productivity tools.
This project implements a professional-grade Internal Developer Platform using Backstage as the foundation. The platform is designed to run on a homelab Kubernetes cluster (k3s + Cilium) and serves as a learning environment for real-world DevOps practices while maintaining production-grade standards.
- 🏗️ Infrastructure Self-Service: Automated resource provisioning and management
- 📚 Service Catalog: Centralized discovery and documentation of services
- 🔌 Plugin Ecosystem: Extensible platform with popular Backstage plugins
- ☸️ Kubernetes Native: Designed for k3s with Cilium CNI
- 🚀 GitOps Deployment: ArgoCD-managed deployments
- 🔒 Security First: Container scanning, dependency audits, and best practices
┌─────────────────┐ ┌─────────────────┐ ┌─────────────────┐
│ Backstage │ │ Kubernetes │ │ ArgoCD │
│ Web Interface │───►│ (k3s + │───►│ (GitOps) │
│ (Browser) │ │ Cilium) │ │ │
└─────────────────┘ └─────────────────┘ └─────────────────┘
Simple and Clean: Backstage web interface runs on Kubernetes, managed by ArgoCD for GitOps deployment.
| Component | Technology | Purpose |
|---|---|---|
| Platform | Backstage | Core IDP framework |
| Runtime | k3s | Lightweight Kubernetes |
| Networking | Cilium | eBPF-based CNI |
| GitOps | ArgoCD | Deployment automation |
| Container Registry | Docker Hub | Image distribution |
| CI/CD | GitHub Actions | Automated builds |
-
Local Development:
- Node.js 18+ and npm
- Docker Desktop
- Git
-
Production Deployment:
- k3s cluster with Cilium CNI
- ArgoCD installed and configured
- Docker Hub account with repository access
# 1. Clone the repository
git clone https://github.com/fede-r1c0/backstage.git
cd backstage
# 2. Install dependencies
npm install
# 3. Setup environment configuration
cp app-config.local.yaml.example app-config.local.yaml
# Edit app-config.local.yaml with your local settings
# 4. Start development server
npm run dev
# 5. Open in browser
open http://localhost:3000# Build the image locally
docker build -t backstage-idp .
# Run the container
docker run -p 3000:3000 \
-e NODE_ENV=production \
-e LOG_LEVEL=info \
backstage-idp
# Test the container
curl http://localhost:3000/health# 1. Ensure ArgoCD is running in your cluster
kubectl get pods -n argocd
# 2. Apply the ArgoCD application
kubectl apply -f argocd/backstage-idp.yaml
# 3. Check deployment status
kubectl get applications -n argocd
kubectl describe application backstage-idp -n argocd
# 4. Access the platform
kubectl port-forward svc/backstage-idp -n backstage 3000:3000| Variable | Default | Description |
|---|---|---|
NODE_ENV |
development |
Node.js environment |
LOG_LEVEL |
info |
Logging level |
PORT |
3000 |
HTTP server port |
DATABASE_URL |
- | PostgreSQL connection string |
GITHUB_TOKEN |
- | GitHub API token for integrations |
app-config.yaml: Base configurationapp-config.local.yaml: Local development overridesapp-config.production.yaml: Production environment settings
Our CI/CD pipeline automatically:
- Security Scanning: Trivy vulnerability scanning + Snyk security analysis
- Quality Gates: Unit tests, integration tests, linting, type checking
- Docker Build: Multi-architecture builds (ARM64 + x86_64)
- Image Push: Automatic push to Docker Hub with semantic tagging
- Deployment: ArgoCD sync for GitOps deployment
- Push to
main: Production deployment - Push to
develop: Staging deployment - Pull Request: Quality checks and security scanning
| Plugin | Purpose | Status |
|---|---|---|
| @backstage/plugin-catalog-backend | Service catalog management | ✅ Included |
| @backstage/plugin-scaffolder-backend | Template-based scaffolding | ✅ Included |
| @backstage/plugin-techdocs-backend | Technical documentation | ✅ Included |
| @backstage/plugin-explore | Service discovery | ✅ Included |
| Plugin | Purpose | Status |
|---|---|---|
| @internal/infrastructure-plugin | Infrastructure self-service | 🚧 In Development |
| @internal/monitoring-plugin | System monitoring dashboard | 🚧 In Development |
| @internal/security-plugin | Security compliance tools | 🚧 In Development |
# Run all tests
npm test
# Run specific test suites
npm run test:unit # Unit tests
npm run test:integration # Integration tests
npm run test:coverage # Coverage report
# Linting and type checking
npm run lint # ESLint
npm run lint:fix # Auto-fix linting issues
npm run type-check # TypeScript compilation check/health: Basic health check/metrics: Prometheus metrics/ready: Readiness probe for Kubernetes
- HTTP request duration
- Memory usage
- Plugin performance
- Database connection status
- Base Image: Alpine Linux (minimal attack surface)
- User: Non-root user (
backstage:1001) - Vulnerability Scanning: Trivy + Snyk integration
- Dependency Audits: Automated npm audit in CI/CD
- Regular security updates
- Principle of least privilege
- Secrets management via Kubernetes
- Network policies with Cilium
Docker Build Fails
# Clear Docker cache
docker system prune -a
# Rebuild without cache
docker build --no-cache .
# Check available disk space
df -hBackstage Won't Start
# Clean install
rm -rf node_modules package-lock.json
npm install
# Check configuration
npm run type-check
npm run lint
# Verify environment variables
env | grep NODEArgoCD Sync Issues
# Check application status
kubectl get applications -n argocd
kubectl describe application backstage-idp -n argocd
# Check pod logs
kubectl logs -n backstage deployment/backstage-idp
# Verify image exists
docker pull fede-r1c0/backstage-idp:latest- Check the logs:
kubectl logs -n backstage deployment/backstage-idp - Review ArgoCD status: Check the ArgoCD UI for sync issues
- Verify configuration: Ensure all required environment variables are set
- Check network policies: Verify Cilium policies allow necessary traffic
We welcome contributions! Please see our Contributing Guide for details.
- Fork the repository
- Create a feature branch (
git checkout -b feature/amazing-feature) - Commit your changes (
git commit -m 'Add amazing feature') - Push to the branch (
git push origin feature/amazing-feature) - Open a Pull Request
- TypeScript: Strict mode enabled
- Testing: Minimum 80% coverage
- Linting: ESLint + Prettier
- Commits: Conventional commit format
- Deployment Guide: Detailed deployment instructions
- Plugin Development: How to create custom plugins
- API Reference: Backend API documentation
- Troubleshooting: Common issues and solutions
- Project setup and basic Backstage configuration
- Docker image with security best practices
- CI/CD pipeline with security scanning
- Basic plugin ecosystem
- Infrastructure self-service plugin
- Monitoring and observability integration
- Multi-environment deployment support
- Performance optimization
- Advanced security features
- Multi-tenant support
- Advanced analytics and reporting
- Production hardening
This project is licensed under the MIT License - see the LICENSE file for details.
- Backstage: The amazing platform that makes this possible
- CNCF: For incubating Backstage
- k3s: Lightweight Kubernetes for edge computing
- Cilium: eBPF-based networking and security
- Issues: GitHub Issues
- Discussions: GitHub Discussions
- Wiki: Project Wiki
Built with ❤️ for the DevOps community
This project serves as both a learning environment and a foundation for real-world Internal Developer Platforms. Every decision prioritizes simplicity, maintainability, and production-grade standards.