https://s3-orchestrator.munchbox.cc/diagrams/index.htmlInteractive architecture and flow diagrams for the S3 Orchestrator internals. System Architecture End-to-end architecture showing the request path, storage layer, background services, and observability. Admission Control Flow Detailed request lifecycle through admission control, authentication, routing, and circuit breakers. Write Path PutObject flow through backend selection, encryption, failover, and metadata recording. Read Path GetObject flow through location lookup, failover, broadcast reads, decryption, and streaming.Hugoen-ushttps://s3-orchestrator.munchbox.cc/diagrams/architecture/index.htmlMon, 01 Jan 0001 00:00:00 +0000https://s3-orchestrator.munchbox.cc/diagrams/architecture/index.htmlHigh-level architecture of the S3 Orchestrator showing the request path, storage layer, background services, and observability. Hover over any component for implementation details.https://s3-orchestrator.munchbox.cc/diagrams/admission-control/index.htmlMon, 01 Jan 0001 00:00:00 +0000https://s3-orchestrator.munchbox.cc/diagrams/admission-control/index.htmlThis interactive diagram shows the complete request lifecycle through the S3 Orchestrator’s admission control pipeline. Hover over any node to highlight its upstream/downstream path and see implementation details.https://s3-orchestrator.munchbox.cc/diagrams/write-path/index.htmlMon, 01 Jan 0001 00:00:00 +0000https://s3-orchestrator.munchbox.cc/diagrams/write-path/index.htmlDetailed flow of a PutObject request through backend selection, encryption, failover, and metadata recording. Hover over any component for implementation details.https://s3-orchestrator.munchbox.cc/diagrams/read-path/index.htmlMon, 01 Jan 0001 00:00:00 +0000https://s3-orchestrator.munchbox.cc/diagrams/read-path/index.htmlDetailed flow of a GetObject request through location lookup, failover, broadcast reads, decryption, and streaming. Hover over any component for implementation details.https://s3-orchestrator.munchbox.cc/diagrams/circuit-breaker/index.htmlMon, 01 Jan 0001 00:00:00 +0000https://s3-orchestrator.munchbox.cc/diagrams/circuit-breaker/index.htmlThree-state circuit breaker state machine shared by the database wrapper (CircuitBreakerStore) and per-backend wrapper (CircuitBreakerBackend). Hover over any component for implementation details.https://s3-orchestrator.munchbox.cc/diagrams/encryption/index.htmlMon, 01 Jan 0001 00:00:00 +0000https://s3-orchestrator.munchbox.cc/diagrams/encryption/index.htmlEnvelope encryption and decryption paths for S3 objects using chunked AES-256-GCM with pluggable key providers. Hover over any component in the diagram for implementation details. How it works When encryption is enabled, every object stored through the S3 Orchestrator is encrypted before it leaves the server. The system uses envelope encryption — a two-layer key scheme where each object gets its own throwaway key, and that key is itself encrypted by a master key. Encryption is optional — see the configuration reference for how to enable it.https://s3-orchestrator.munchbox.cc/diagrams/background-services/index.htmlMon, 01 Jan 0001 00:00:00 +0000https://s3-orchestrator.munchbox.cc/diagrams/background-services/index.htmlCoordination of periodic background workers that maintain storage health, enforce replication, and persist counters. Hover over any component for implementation details.https://s3-orchestrator.munchbox.cc/diagrams/database-schema/index.htmlMon, 01 Jan 0001 00:00:00 +0000https://s3-orchestrator.munchbox.cc/diagrams/database-schema/index.htmlEntity-relationship diagram of the PostgreSQL metadata store. Hover over any table for column details and usage context.