One-Tag Deployment — Production Google Cloud Platform (GCP) infrastructure in Nouméa, New Caledonia

One-Tag Deployment is an infrastructure-as-code platform that deploys a dedicated, production-grade Google Cloud Platform (GCP) infrastructure, ISO 27001-secured and replicated with a disaster recovery plan (DR), from a single GitLab tag, in under ten minutes. Designed and operated from Nouméa, New Caledonia, by Kevin Vuillemin (Skazy) for French-speaking Pacific businesses focused on performance, security and data sovereignty.

Services and technologies: Google Cloud Platform, GCP, Cloud Run, GKE, Cloud SQL, Memorystore Redis, Filestore, Cloud Storage, VPC, Cloud NAT, internal and external DNS, Private Service Connect, Cloud Load Balancing, Cloud Armor, WAF, Cloud CDN, Secret Manager, Cloud KMS, IAM, Datastream, BigQuery, Pub/Sub, Cloud Scheduler, Cloud Functions, Terraform, GitLab CI/CD, ISO 27001, disaster recovery, backups, monitoring, Nouméa, New Caledonia, Pacific.

ONE-TAG DEPLOYMENT · GCP / TERRAFORM / GITLAB CI
Deployment platform

A production-grade infrastructure.
In one tag.

# developer, from their branch
$ git tag v1.4.0 && git push --tags
01 The problem

Provisioning secure production
takes weeks.

Networking, IAM, secrets, load balancing, WAF, backups, monitoring, disaster recovery.
Rewritten, by hand, for every new project.

What if the first deployment took under 10 minutes?

02 The trigger

The tag triggers everything.

A GitLab pipeline, driven entirely by environment variables.

test
deploy
security scan
production
03 The assembly
First deployment · elapsed time
00:00minutes : seconds
Network & DNSprivate, controlled
VPCPrivate subnetCloud NATExternal DNSInternal DNSPSC / Service NetworkingServerless NEGVPC egress
Edge & Securitydefense in depth
Load Balancer HTTPSCloud Armor / WAFOWASP rulesGeo-filteringRate limitingDirect-IP blockModern TLS 1.2+Managed certificatesHSTSCloud CDN
Computeserverless, dedicated
Cloud Run v2 (gen2)Front + APIKeycloak SSOAuto-scalingScale-to-zeroStartup CPU boostConcurrency 500VPC egressDomain mappingHealth checks
Dataprivate by default
Cloud SQL Postgres 18MySQL 8.4Private IP / PSCService NetworkingRedis MemorystoreFilestoreSecret ManagerLogical decodingDatastream CDCBigQuery
Operations & DRresilience
Multi-daily backupsCloud SchedulerCloud Functions gen2Pub/SubAutomated snapshotsMonitoring + alertsUptime checksGoogle Chat / EmailMulti-region replicationSnapshot restore
04 The coverage

One platform.
The entire Google Cloud surface.

From serverless to AI, the foundation orchestrates the services each project needs, and extends on demand.

Cloud RunCloud FunctionsGKECompute EngineBatchCloud BuildArtifact RegistryCloud Deploy Cloud SQLAlloyDBSpannerFirestoreBigtableMemorystoreBigQueryDatastreamDataflowPub/Sub Cloud StorageFilestoreStorage TransferVertex AIGeminiDocument AIVision AI Load BalancingCloud ArmorCloud CDNCloud DNSCloud NATPrivate Service Connect Secret ManagerCloud KMSIAMWorkload IdentityIAPBinary AuthorizationVPC Service Controls Cloud MonitoringCloud LoggingCloud TraceCloud ProfilerCloud SchedulerCloud TasksEventarcSecurity Command Center
05 What ships, every time
/ 01

Native security

WAF, geo-filtering, modern TLS, encrypted secrets, database on a private network. ISO 27001-aligned.

/ 02

Built-in DR

Failover to a second region in under 30 minutes, snapshot restore, with a single flag.

/ 03

Modular

Any project, any language. Everything driven by variables: database, cache, domains, secrets.

/ 04

Express deployment

From commit to dedicated, monitored production in under 10 minutes. Zero tickets, zero console, zero manual steps.

06 Business continuity

A region goes down?
The other takes over.

Primary region
australia-southeast1
● ACTIVE
continuous replication
Recovery region
us-central1
standby
Snapshot restoreFailover in under 30 minEnabled by a flagReplicated backups
07 Go live

Dedicated. Secure.
Replicated.

● LIVE https://app.production.nc 200 OK

Infrastructure online · 9 min 42 s

One-Tag Deployment

Deployment
becomes a detail.

An Infrastructure-as-Code platform. Reusable. Auditable. Sovereign.

Designed & operated by Kevin Vuillemin · Skazy · New Caledonia
⏱ auto-play · space = pause · ← → = navigate
1/9