Mapping Pivot's Infrastructure
Overview
Our primary service providers are AWS and Cloudflare. We also use various third-party hosted services many of which run on AWS (Elastic Cloud, Temporal Cloud, Synadia Cloud, etc.).
Cloudflare
Cloudflare is the entrypoint as our DNS and WAF provider. From there we route to Cloudflare services like R2, and AWS.
AWS
US East 2
All backend services run in AWS ECS as well as Flipt. Our Aurora PostgreSQL clusters (Facebox, Blockhead, and Messenger) use serverless configuration with global database features.
Cloudflare Pages
- Marketing site (Next.js site)
- Docs site (Astro site)
- Web App (Expo web export)
- Storybook
- EngBook (Next.js site)
- PivotAdmin (Next.js site)
Other
Infrastructure Hosting
-
Synadia Cloud (NATS JetStream)
-
Elastic Cloud (Full-text and vector search)
-
Supabase (Auth and Postgres for PivotAdmin)
Product feature support
-
OpenAI (GPT, Embedding, and DALLE APIs)
-
AssemblyAI (Transcription and Audio Intelligence)
-
LiveKit Cloud (WebRTC qudio/video provider)
-
Mux (Audio/video storage)
-
Expo Push Notifications Service
-
Temporal Cloud (Cron/workflow engine)
-
Google Cloud (Sign in with Google API)
-
Apple (Sign in with Apple API and iOS App Store distribution)
Analytics
-
PostHog (Product analytics, CDP, feature flags, in-app events, website analytics)
-
EAS Insights (mobile app analytics)
-
Axiom (Observability -- metrics, logs, and traces)
-
Sentry (Frontend error tracking)
-
Rootly (Incident management and status page)
Dev Tools
-
Buf (Protobuf schema registry)
-
GitHub (CI/CD and VCS)
-
Rootly Alerting (AWS via Axiom, Sentry)
-
Expo EAS (Mobile app Build/Update/Submit)
-
Terraform Cloud (Infrastructure as Code CI/CD)
-
JumpCloud and Cloudflare Access (SAML SSO and SAML gateway for our internal team)
-
1Password (Secrets that our internal team needs access to, such as break glass accounts)