Skip to main content

Building Your Internal Developer Platform: A Practical Guide to the PlatformEngineering.org Architecture and Tools

· 7 min read
Victor Ikeme
Victor Ikeme
Platform Engineer | Kubernetes | Cloud-Native Advocate | OSS | Technical Writer

For me, One of the big takeaways from PlatformCon 2024? The undeniable rise of IDPs and the crucial role of reference architectures in their successful implementation.

PlatformCon 2024 underscored the growing importance of IDPs, showcasing the adoption of reference architectures like the one developed by Luca and the PlatformEngineering.org team (introduced at PlatformCon 2023). This architecture, which i detailed in a [previous article], divides the IDP into interconnected "planes" for enhanced clarity and efficiency. This series provides a practical guide, building on that foundation, to help you build a successful IDP. We'll explore each plane and the specific tools you need to create a cohesive and efficient platform.

title image reading "platform-tooling-landscape-by-platformengineering.org"

What Are IDP Planes, and Why Are They Important?

Here are a few options for rewriting the section on IDP planes, emphasizing the practical value of the series and maintaining a clear, concise style:

Option 1 (Focus on problem/solution):

Building a high-performing Internal Developer Platform (IDP) requires a structured approach. The PlatformEngineering.org reference architecture provides this structure, dividing the IDP into five distinct planes. Each plane addresses a specific challenge in the software development lifecycle, making it easier to select the right tools and build a cohesive, efficient platform. This series provides a practical, hands-on guide to each plane, helping you build an IDP that solves your organization's unique needs. The planes are:

  1. Developer Control Plane: Streamlines developer workflows with tools for coding, collaboration, and environment management.
  2. Integration & Delivery Plane: Automates the build, test, and deployment process for faster, more reliable releases.
  3. Monitoring & Logging Plane: Provides real-time insights into application performance and system health, enabling proactive issue resolution.
  4. Security Plane: Protects your IDP and applications with tools for secrets management, vulnerability scanning, and policy enforcement.
  5. Resource Plane: Manages the underlying infrastructure resources (compute, storage, networking) to ensure scalability and reliability.

Each plane contains tools with specific capabilities to make development, deployment, and monitoring more accessible and reliable. Throughout this series, we’ll dive into each plane, providing a complete look at the tools that power a successful IDP, offering insights into their functionality and best-use scenarios.

Series Overview: What to Expect from Each Article

Each article in this series will focus on one plane of the IDP architecture, exploring the tools within it. We'll provide practical use cases, detailed breakdowns of tool features, and implementation tips. Let’s take a closer look at each section of the series:

1. Developer Control Plane

The Developer Control Plane is where development teams interact with the IDP, accessing essential tools to manage code, collaborate, and configure resources. Tools within this plane are designed to streamline development workflows, enhance productivity, and ensure teams can focus on building rather than managing infrastructure.

Topics Covered:

  • IDEs - Popular Integrated Development Environments like Visual Studio Code that allow developers to write, debug, and test code.
  • Developer Portals - Platforms like Backstage and Atlassian Compass that provide a centralized space for accessing resources, documentation, and APIs.
  • Version Control - Tools such as GitHub, Bitbucket, and GitLab that track changes in codebases, facilitating team collaboration and code versioning.
  • Infrastructure as Code (IaC) - Tools like Terraform, Pulumi, and Crossplane that automate infrastructure provisioning, making it repeatable and scalable.

In this article, we’ll discuss each tool’s purpose, unique capabilities, and how they integrate into the IDP.

2. Integration & Delivery Plane

The Integration & Delivery Plane supports the CI/CD pipelines and orchestration processes, ensuring efficient integration, deployment, and delivery. This plane plays a vital role in automating and speeding up software delivery cycles, making it easier to deliver quality applications to end users.

Topics Covered:

  • CI Pipeline - Tools such as GitHub Actions, Jenkins, and Azure DevOps that support continuous integration, testing, and building.
  • Platform Orchestrator - Orchestrators like Humanitec and Kratix, which help automate application deployment and management.
  • Image Registry - Repositories like Docker Hub and Harbor, where containerized applications are stored, versioned, and retrieved.
  • CD Pipeline - Tools like ArgoCD and Flux CD that facilitate continuous deployment, automating the release process to ensure smoother production rollouts.

This section will examine how to set up effective CI/CD pipelines, the benefits of different registries, and strategies for orchestrating containerized applications.

3. Monitoring & Logging Plane

The Monitoring & Logging Plane provides observability and analytics capabilities, enabling development and operations teams to track performance, identify issues, and optimize applications in real time. By gaining insights into system behavior, organizations can prevent downtime, troubleshoot efficiently, and enhance user experience.

Topics Covered:

  • Observability - Tools such as Datadog, Grafana, and Prometheus that monitor application performance, system health, and network activity.
  • Logging - Platforms like the ELK Stack (Elasticsearch, Logstash, Kibana) and Fluentbit that collect and analyze log data for system diagnostics.
  • Analytics - Solutions like Logilica that provide insights into developer productivity and CI/CD performance, helping teams improve workflows.

In this article, we’ll dive into how observability tools work together to monitor performance, prevent incidents, and give teams actionable insights.

4. Security Plane

The Security Plane is critical for protecting sensitive data, enforcing policies, and maintaining compliance across all deployments. This plane’s tools prevent unauthorized access, manage secrets, and continuously monitor for vulnerabilities.

Topics Covered:

  • Secrets Management - Solutions such as HCP Vault, AWS Secrets Manager, and Azure Key Vault, which secure sensitive information.
  • Security Monitoring and Compliance - Tools like Snyk, Sysdig, and Aqua Security that perform security assessments, detect threats, and ensure compliance.

This article will provide a comprehensive overview of security practices, from managing secrets to enforcing robust security policies, with insights on implementing a secure IDP.

5. Resource Plane

The Resource Plane encompasses tools and systems for managing infrastructure resources, such as compute power, data storage, networking, and messaging. This plane forms the core of an IDP’s operational capacity, providing the essential resources applications need to run effectively.

Topics Covered:

  • Compute - Services like Amazon EKS, Google Kubernetes Engine, and Azure Kubernetes Service that manage Kubernetes clusters.
  • Data Management - Tools such as Amazon S3, MongoDB, and Redis that handle data storage and retrieval.
  • Networking - Solutions like Route 53 and Cloudflare that ensure secure and reliable networking.
  • Messaging - Tools like RabbitMQ and Kafka that facilitate communication between services, enabling reliable data streaming.

We’ll cover how these tools can be configured for scalability, reliability, and efficiency, supporting everything from data storage to message brokering.

Why This Series Is Essential for Building a Robust IDP

IDPs streamline the development lifecycle, but choosing the right tools for each plane is crucial to maximize the platform’s potential. This series will empower you with a comprehensive understanding of each tool’s purpose, helping you select and integrate the right options for your organization. By exploring each plane in detail, you’ll gain insights into creating a well-structured, efficient IDP that supports faster development cycles, robust security, and seamless deployment.

Looking Ahead: Building Your Ideal IDP

Over the course of this series, we’ll explore how to structure each plane, select tools based on use case, and implement best practices. Whether you’re a developer, DevOps engineer, or platform architect, these articles will provide practical insights, real-world examples, and actionable steps to help you build or optimize an IDP that aligns with your goals.

Stay tuned for the first article on the Developer Control Plane, where we’ll dive into the tools that empower developers to code, collaborate, and configure with efficiency and flexibility. Each subsequent article will bring us one step closer to understanding and utilizing the full potential of an IDP, transforming how your team builds, tests, and deploys software.