to participate in how MariaDB-based systems are defined and adopted. Supporting the Foundation complements investment in MariaDB by: • strengthening the ecosystem in which MariaDB is used • improving how technologies are positioned within real architectures • increasing visibility at the point of infrastructure decision Support also ensures: • long-term openness and continuity of MariaDB Server • independent governance and freedom from lock-in Copyright @ 2026 MariaDB Foundation. 8
the MariaDB Operator adds 3. Installing the operator 4. Creating a first MariaDB instance 5. Databases, users, grants and app connections 6. Backups, restore and high availability 7. Practical tips for production Copyright @ 2026 MariaDB Foundation. 13
a container?" Start with "How do I operate the database?" Database operations include provisioning, configuration, access, lifecycle, backups, restore, failover, observability and upgrades. Copyright @ 2026 MariaDB Foundation. 14
a container?" Start with "How do I operate the database?" Database operations include provisioning, configuration, access, lifecycle, backups, restore, failover, observability and upgrades. Database provisioning is the process of setting up, and preparing a database to be used by applications or users. It encompasses installing the necessary database software, defining the schema, allocating storage, applying security settings, and ensuring it is ready for deployment. It often includes adding data to the database too (from a backup). Copyright @ 2026 MariaDB Foundation. 14
names and DNS names • stable persistent storage per Pod • ordered graceful deployment and rolling updates This is a major building block for databases. Copyright @ 2026 MariaDB Foundation. 16
names and DNS names • stable persistent storage per Pod • ordered graceful deployment and rolling updates This is a major building block for databases. But StatefulSet is not a DBA. Copyright @ 2026 MariaDB Foundation. 16
names and DNS names • stable persistent storage per Pod • ordered graceful deployment and rolling updates This is a major building block for databases. But StatefulSet is not a DBA. Copyright @ 2026 MariaDB Foundation. StatefulSets are essential for applications where each instance needs to remember "who it is" and "where its data is". Comparison: Deployment vs. StatefulSet +--------------+--------------------------------+-----------------------------+ | Feature | Deployment | StatefulSet | +--------------+--------------------------------+-----------------------------+ | Pod Identity | Identical/Interchangeable | Unique/Sticky | | Naming | Random suffix (e.g., web-ab12) | Ordinal index (e.g., web-0) | | Storage | Shared or ephemeral | Dedicated per Pod | | Startup | Order Parallel (any order) | Sequential (ordered) | | Updates | Rolling update | Ordered rolling update | +--------------+--------------------------------+-----------------------------+ 16
• SqlJob • Backup / Restore • PhysicalBackup / PITR-related resources • MaxScale* MariaDB What is mariadb-operator? mariadb-operator is an open source Kubernetes operator to run and operate MariaDB Server in a cloud-native way. It extends the Kubernetes API with MariaDB-specific resources such as: Copyright @ 2026 MariaDB Foundation. 20
Kubernetes version supported by your operator release • MariaDB image compatibility • storage class behavior • CSI snapshot support if using snapshot-based backups • whether you need community operator or MariaDB Enterprise Operator Copyright @ 2026 MariaDB Foundation. 25
Kubernetes version supported by your operator release • MariaDB image compatibility • storage class behavior • CSI snapshot support if using snapshot-based backups • whether you need community operator or MariaDB Enterprise Operator Copyright @ 2026 MariaDB Foundation. Pin operator chart versions in GitOps; do not float on latest. 25
objects similar to: kubectl get mariadbs kubectl get mariadbs kubectl get statefulsets kubectl get statefulsets kubectl get pods kubectl get pods kubectl get pvc kubectl get pvc kubectl get services kubectl get services The operator reconciles the MariaDB custom resource into lower-level Kubernetes objects. Copyright @ 2026 MariaDB Foundation. 27
objects similar to: kubectl get mariadbs kubectl get mariadbs kubectl get statefulsets kubectl get statefulsets kubectl get pods kubectl get pods kubectl get pvc kubectl get pvc kubectl get services kubectl get services The operator reconciles the MariaDB custom resource into lower-level Kubernetes objects. Copyright @ 2026 MariaDB Foundation. Teach people to inspect both the custom resource status and the generated Kubernetes objects. 27
demo data • operational one-shot scripts kind kind: : SqlJob SqlJob spec spec: : mariaDbRef mariaDbRef: : name name: : mariadb mariadb database database: : appdb appdb sql sql: : | | CREATE TABLE IF NOT EXISTS CREATE TABLE IF NOT EXISTS demo(id INT PRIMARY KEY); demo(id INT PRIMARY KEY); SQL jobs SqlJob lets you run SQL through Kubernetes Jobs. Copyright @ 2026 MariaDB Foundation. Keep complex migrations in a dedicated migration tool; use SqlJob where Kubernetes-native orchestration helps. 32
kind kind: : Restore Restore metadata metadata: : name name: : restore restore- -demo demo spec spec: : mariaDbRef mariaDbRef: : name name: : mariadb mariadb backupRef backupRef: : name name: : backup backup- -daily daily A backup strategy is incomplete until restore is tested. Copyright @ 2026 MariaDB Foundation. Rehearse restores in a separate namespace or cluster. Record RPO/RTO with real measurements. 34
patterns: • single instance with strong backup/ restore discipline • replication topology • Galera topology • MaxScale for routing and proxying Pick topology based on workload, failure domain, latency and operational maturity. Copyright @ 2026 MariaDB Foundation. HA is not a checkbox; define which failures you want to survive. 37
a stable access layer in front of MariaDB MaxScale in the picture MaxScale can provide: Application -> Service -> MaxScale -> MariaDB Pods Copyright @ 2026 MariaDB Foundation. 39
a stable access layer in front of MariaDB MaxScale in the picture MaxScale can provide: Application -> Service -> MaxScale -> MariaDB Pods Copyright @ 2026 MariaDB Foundation. Put connection behavior in the platform, not in every application. 39
limits deliberately • avoid CPU limits unless you know why • leave headroom for buffer pool, connections and temp tables • tune probes for startup time • keep configuration in reviewed ConfigMaps or CR fields Copyright @ 2026 MariaDB Foundation. 44
limits deliberately • avoid CPU limits unless you know why • leave headroom for buffer pool, connections and temp tables • tune probes for startup time • keep configuration in reviewed ConfigMaps or CR fields Copyright @ 2026 MariaDB Foundation. OOMKilled is a database outage with a Kubernetes label. 44
separate app users from admin users • use least privilege grants • enable TLS where required • restrict network access with NetworkPolicies • use Pod Security Standards / restricted contexts • manage image provenance and upgrades Copyright @ 2026 MariaDB Foundation. 45
separate app users from admin users • use least privilege grants • enable TLS where required • restrict network access with NetworkPolicies • use Pod Security Standards / restricted contexts • manage image provenance and upgrades Copyright @ 2026 MariaDB Foundation. Make user and grant reviews a part of application pull requests. 45
2. upgrade progressively; do not skip required intermediate versions 3. confirm CRD changes 4. check backup freshness 5. test in staging with production-like data 6. monitor reconciliation after upgrade Copyright @ 2026 MariaDB Foundation. 47
2. upgrade progressively; do not skip required intermediate versions 3. confirm CRD changes 4. check backup freshness 5. test in staging with production-like data 6. monitor reconciliation after upgrade Copyright @ 2026 MariaDB Foundation. Treat operator upgrades like database platform upgrades, not just Helm chart upgrades. 47
version • Secret name/key mismatch • storage class problem • insufficient memory • slow startup vs probe thresholds • network policy or DNS issue Copyright @ 2026 MariaDB Foundation. 49
but not full operations. 2. The MariaDB Operator makes MariaDB operations declarative. 3. CRDs such as MariaDB, Database, User, Grant, Connection, Backup and Restore move platform work into GitOps workflows. 4. Production success depends on storage, backups, restore tests, observability and upgrade discipline. Copyright @ 2026 MariaDB Foundation. 53
lefred
oracle4engineer
stefafafan
cscengineer
subroh0508
8maki
wyamazak_devrel
line_developers_tw
konifar
hamukazu
ming_ayami
rymiyamoto
mayatellez
katiecoart
notwaldorf
stuffmc
shlominoach
skipperchong
irinanazarova
aemeredith
thirion
rabernat
nmsamuel
garrettdimon
![• @lefred • @lefredbe.bsky.social • @[email protected] • MariaDB Community Advocate](https://files.speakerdeck.com/presentations/81f4fe313984459c867c010b6d1611c4/slide_2.jpg){kind=link}
