Thank you for all the information and guidelines. I would like to go the IAM route within the cluster, which I think will be the most practical.
If you do have time available, I will take you up on the offer for an IAM example.

I have a question regarding productionized deployments.
Can the internal IRIS web-server be used, i.e. Port 52773?
Or should there still be a web-gateway between IAM and the IRIS instance?

Regarding Kubernetes:
I would think that IAM should be the ingress, is that correct?

Thank you for the answers.

I've only used the XML format up to now, where we create builds by exporting projects to XML and then import. The OBJ Load seems like it is what I need.

Thank you again.