Skip to content

Platform overview

Fontana ships as an integrated stack you can run on major clouds or on-premises: a modern web app, real-time backend, workflow engine, identity plane, secrets store, observability, and connector runtime, each with a clear role in production. The sections below cover platform capabilities, the technology stack in a typical workspace, and how external services are bounded.

Fontana delivers governed capabilities for data, workflows, and AI. Each area below is a first-class part of what you run in production.

  • Governed AI - Your approved LLM gateways and models, BYOK key scoping at org, team, or person level, agents and skills, Knowledge Graph retrieval, tools, MCP, and agent interop under one control surface.
  • Workflow orchestration - Visual pipelines on the Flow canvas, reactive server-side execution, node families for transforms and connectors, plus built-in validations, conditions, and document parsing.
  • Identity and access - Self-hosted Zitadel per workspace with OIDC, corporate SSO, MFA, SCIM provisioning, and application RBAC in Flow for teams and admin surfaces.
  • Data - File uploads, PyAirbyte connectors, encrypted Arrow storage, REST triggers, and governed export
  • Observability - Platform-cluster HyperDX for OTLP logs and dashboards, in-cluster Gatus health probes, and observability-api routing operational telemetry alongside the security audit ledger.
  • Deployment - cloud, self-hosted, architecture, backup and restore, Fontana CLI
  • Security - cluster-per-tenant isolation, Vault secrets, encryption, network hardening, supply chain integrity, and SOC 2-aligned control summary
  • Compliance evidence - workflow data lineage and immutable security audit trail

Fontana uses a platform cluster plus one workspace cluster per tenant for isolation. Shared services (edge gateway, observability, Docling, OpenSandbox) run on the platform; Flow, Convex, workflow engine, Vault, Zitadel, and workspace data run inside each workspace cluster.

Component breakdown and deployment models: Deployment architecture.

The table below summarises the major components in a typical workspace and what each one does.

ComponentTechnologyRole
HostAWS / Azure / GCP / on-premDeploy anywhere - platform-agnostic infrastructure
Container orchestrationKubernetes (K3s)Multi-tenant container orchestration with per-workspace cluster segregation
Flow AppModern React PWAWeb UI - canvas, grids, AI chat, admin panels
Workflow engineNode.js, PythonServer-side execution of workflow graphs
Real-time backendConvexApplication backend - config, AI orchestration, persistence
AuthZitadelSelf-hosted OIDC identity per workspace - SSO, MFA, SCIM provisioning
Secrets storageHashiCorp VaultPer-workspace encrypted secret storage (API keys, connector credentials) - SOC 2-aligned controls
ObservabilityHyperDXPlatform-cluster OTLP collector and operator dashboards (shared across workspaces)
AI code sandboxOpenSandboxIsolated code execution for agents via MCP
Data replicationAirbyte (PyAirbyte)Data ingress and egress - catalog connectors in the workflow engine

Fontana is designed for security and contractual control: the platform stack above runs inside your Kubernetes boundary with per-workspace Postgres, Convex, Vault, and Zitadel. Fontana does not operate a shared LLM pool or route production inference through Fontana-owned model accounts. Your workspace data is not sent to external data processors for platform operation beyond what you configure and approve.

When you use AI, requests leave the workspace only through LLM gateways and providers you choose. You store credentials with Bring Your Own Key (BYOK) in per-workspace Vault and, in Admin, approve which gateways and model IDs are reachable in production. Fontana supports 12+ gateways (unified routers such as OpenRouter and LLM API, direct vendor APIs, and cloud-hosted foundation models on AWS Bedrock) and 300+ models behind one governed routing layer. Spend, retention, training policy, and Zero Data Retention (ZDR) posture follow your provider contracts and gateway settings, not a shared vendor account Fontana operates on your behalf. See Bring Your Own Key (BYOK), Zero Data Retention (ZDR), Governed AI, and Gateways for key scoping, retention posture, and approval workflows.

You may also connect to external systems through connectors, REST and GraphQL triggers, and MCP servers when your workflows require them. Connector and API secrets resolve from Vault at execution time; nothing is embedded in workflow config. Operational telemetry and security audit routing stay within the model described in Observability.