HRZ Maui Cluster: Deployment Progress & Sprint Plan
3 min readBy openDesk Edu
infrastructuredeployment
hrzmauikubernetesclustersprintdeploymentinfrastructure
The openDesk Edu infrastructure is now running on the HRZ K3s Maui cluster (vhrz2331-2339). This post covers the current deployment status, known issues, and the sprint plan to complete the remaining services.
Current Status
| Metric | Value |
|---|---|
| Running pods | 39 (all healthy) |
| Pending pods | 1 (slidev — PVC stuck) |
| Deployments | 31 |
| Ingresses | 16 |
| Custom charts (local) | 24 |
| Missing services | 6 |
Deployed Services
Core Platform (opendesk namespace)
The following services are fully operational:
- IAM — Nubus/UMS/Keycloak
- Groupware — OX App Suite, Dovecot, Postfix
- Collaboration — Nextcloud, Collabora, CryptPad, Jitsi, Element, Matrix
- Project Management — OpenProject
- Knowledge Base — XWiki, Notes
- Storage — MinIO, SeaweedFS, OpenCloud
- Learning — BigBlueButton, Moodle, ILIAS
- Monitoring — Prometheus/Grafana
Education-Specific (opendesk-edu namespace)
- BookStack, Code-Server, Collab Dashboard
- Dask/JupyterHub, DrawIO, Etherpad, Excalidraw
- ILIAS (edu), LimeSurvey, Ollama, Open WebUI
- OpenLDAP, Planka, PostgreSQL, RStudio
- Self-Service Password Portal (LTB SSP)
- Slidev, TTYD, TYPO3, SeaweedFS
- MariaDB (shared dependency)
Known Issues
Two issues are currently being tracked:
- slidev PVC pending — The slidev PersistentVolumeClaim is stuck in Pending state on ceph-rbd-ssd storage class (0/9 nodes schedulable). This blocks the slidev deployment from starting.
- SOGo namespace — SOGo is currently deployed in the demo namespace instead of opendesk-edu. A redeploy is needed to align with the cluster naming convention.
Missing Services
Six services are not yet deployed on the Maui cluster:
| Service | Chart Type | Status |
|---|---|---|
| Zammad | Local chart | Upstream image available, needs helmfile deploy |
| Overleaf | Upstream chart | Upstream image sharelatex/sharelatex:5.0.2, needs helmfile deploy |
| KasmVNC | Upstream chart | Desktop access via browser, needs helmfile deploy |
| Portal Entries | Local chart (configmap-only) | No container needed, ready to apply |
| Snipr | Local chart | Dockerfile needed — must be built and pushed to ghcr.io |
| SOGo | Local chart | Deployed in wrong namespace, needs redeploy |
Sprint Plan
Sprint 1: Infrastructure Fixes
- Fix slidev PVC (delete stuck PVC, recreate with correct StorageClass)
- Move SOGo to opendesk-edu namespace
- Audit storage classes for all edu PVCs
- Smoke tests after fixes
Sprint 2: Core Missing Services
- Deploy Zammad — configure ingress, PostgreSQL, and Elasticsearch dependencies
- Deploy Overleaf — upstream chart with Redis and MongoDB dependencies
- Deploy KasmVNC — browser-based desktop access with persistence
- Smoke tests for each new service
Sprint 3: Custom Services (Snipr + Portal Entries)
- Create Dockerfile for Snipr (Rust SNIpR recording service) and push to ghcr.io
- Deploy Snipr chart with SeaweedFS dependency
- Deploy portal-entries (configmap-only chart)
- Smoke tests for new services
Sprint 4: Hardening & Documentation
- Update ingress configs for all new services
- Run full smoke test suite
- Update AGENTS.md with current state and ingress URLs
- GitOps sync (ArgoCD monolith manifest)
Summary
The HRZ K3s Maui cluster is in a healthy state with 39 running pods and 31 deployments across two namespaces. Six services remain to be deployed, with Snipr being the only one requiring a custom Docker image. Total estimated effort to complete the remaining work is approximately 21 hours across four sprints.
Stay tuned for progress updates as we work through the sprint plan.