Production-grade platform engineering showcase demonstrating infrastructure automation, configuration management, and security patterns across hybrid-cloud environments.
Complete infrastructure-to-application pipeline showing Terraform β Ansible β ArgoCD integration
Infrastructure Provisioning (apexvirtual-terraform)
- 29 VMs across hybrid cloud (Proxmox + Azure)
- Multi-environment management (on-prem, Azure dev, Azure prod)
- Data-driven infrastructure from YAML configuration
- Secretless CI/CD with Vault OIDC authentication
Configuration Management (apexvirtual-ansible)
- Tag-based dynamic inventory from Terraform
- Automated OS hardening and security baseline
- Role-based architecture with 15+ reusable components
- Monitoring federation across infrastructure
Application Deployment (apexvirtual-gitops)
- GitOps patterns with ArgoCD
- Multi-cluster Kubernetes management
- Sealed secrets for encrypted credentials
- 90% Faster Provisioning: Reduced VM provisioning from 90 minutes to under 10 minutes through automated Terraform and Ansible pipeline.
- 100% Secretless CI/CD: Eliminated all static credentials using GitHub OIDC and HashiCorp Vault integration.
- Multi-Environment Consistency: Single codebase manages dev, prod, and on-prem environments with zero configuration drift.
- Hybrid Cloud Architecture: Seamless resource management across Proxmox (on-premise) and Azure (cloud) platforms.
The platform follows a three-stage pipeline: infrastructure provisioning, configuration management, and application deployment.
- Provisions VMs from YAML-defined specifications
- Applies tags for automated configuration targeting
- Manages network segmentation (VLANs 283, 284, 285)
- Stores state in Azure Blob Storage with locking
- Discovers infrastructure via Proxmox dynamic inventory
- Groups hosts by Terraform-applied tags
- Deploys monitoring, security, and application services
- Retrieves all credentials from Vault at runtime
- Declarative Kubernetes manifests in Git
- ArgoCD syncs cluster state automatically
- Sealed secrets for credential management
- Multi-cluster deployment patterns
- Infrastructure: Terraform, Proxmox VE, Microsoft Azure
- Configuration: Ansible, HashiCorp Vault, Docker
- Orchestration: Kubernetes (k3s), ArgoCD, FluxCD
- Observability: Prometheus, Grafana, Node Exporter
- CI/CD: GitHub Actions, Azure DevOps
-
apexvirtual-terraform
Infrastructure as Code for hybrid-cloud platform. Demonstrates modular Terraform design, remote state management, OIDC authentication, and multi-environment workflows. -
apexvirtual-ansible
Configuration management with dynamic inventory. Demonstrates role-based architecture, Vault integration, data-driven configuration, and automated security hardening. -
apexvirtual-gitops Production GitOps patterns with ArgoCD ApplicationSets, multi-cluster Kubernetes management, and automated application deployment across environments.
- Infrastructure as Code: Advanced Terraform patterns with modules, remote state, multi-environment management
- Configuration Management: Ansible with dynamic inventory, tag-based targeting, Vault integration
- Security Engineering: Zero-trust networking, OIDC authentication, secrets management, automated hardening
- Cloud Architecture: Hybrid cloud design, network segmentation, high-availability patterns
- DevOps Practices: GitOps workflows, automated testing, CI/CD pipelines, infrastructure monitoring
Corne Blignaut
LinkedIn | [email protected]
Platform engineering showcase designed to demonstrate production-ready automation patterns through practical implementation of enterprise infrastructure practices.