# Blocks · ICE by Light Cloud

> The 28-concept palette. Provider-neutral primitives you drop on the canvas. Each one compiles to a real service per cloud.

Blocks live in `packages/blocks/src/common/concepts/` and resolve to provider-specific implementations at deploy time. The mapping is in `packages/core/src/resources/`. Reference: https://github.com/light-cloud-com/ice/tree/main/packages/blocks/src/common/concepts

## Compute

- **Scalable Backend** — Long-running service that auto-scales on load. GCP: Cloud Run. AWS: ECS Fargate. Azure: Container Apps.
- **Worker** — Background worker that consumes a queue. GCP: Cloud Run. AWS: ECS. Azure: Container Apps.
- **Serverless Function** — Single-purpose function billed per invocation. GCP: Cloud Functions. AWS: Lambda. Azure: Functions.
- **SSR Site** — Server-side rendered site with auto-scaling compute. GCP: Cloud Run. AWS: ECS. Azure: App Service.
- **Static Site** — Pre-built static assets behind a CDN. GCP: Cloud Storage + CDN. AWS: S3 + CloudFront. Azure: Storage + CDN.

## Data

- **Postgres** — Managed PostgreSQL. GCP: Cloud SQL. AWS: RDS. Azure: Database for PostgreSQL.
- **MySQL** — Managed MySQL. GCP: Cloud SQL. AWS: RDS. Azure: Database for MySQL.
- **MongoDB** — Document database. GCP: Firestore. AWS: DocumentDB. Azure: Cosmos DB.
- **Redis Cache** — In-memory cache and pub/sub. GCP: Memorystore Redis. AWS: ElastiCache. Azure: Cache for Redis.
- **Object Storage** — Bucket for files, media, backups. GCP: Cloud Storage. AWS: S3. Azure: Blob Storage.
- **Vector DB** — Embeddings store for retrieval and search. GCP: Vertex AI Vector Search. AWS: OpenSearch. Azure: AI Search.

## Messaging

- **Message Queue** — Durable queue for async work. GCP: Pub/Sub. AWS: SQS. Azure: Service Bus.
- **Event Stream** — Append-only event log. GCP: Pub/Sub. AWS: Kinesis. Azure: Event Hubs.

## AI

- **LLM Gateway** — Managed LLM endpoint with auth and rate limits. GCP: Vertex AI endpoints. AWS: Bedrock. Azure: Azure OpenAI.
- **Private AI Service** — Self-hosted model server behind a private network. GCP: GKE. AWS: EKS. Azure: AKS.

## Networking

- **Public Traffic** — HTTPS load balancer or edge router. GCP: Load Balancer. AWS: ALB / CloudFront. Azure: Front Door.
- **Private Network** — VPC, subnets, internal routing. GCP: VPC. AWS: VPC. Azure: VNet.
- **API Gateway** — Auth, throttling, routing for HTTP APIs. GCP: API Gateway. AWS: API Gateway. Azure: API Management.
- **Custom Domain** — DNS, TLS, hostname binding. GCP: Cloud DNS + LB. AWS: Route 53. Azure: DNS Zone.

## Observability

- **Observability** — Logs, metrics, traces sink. GCP: Cloud Logging. AWS: CloudWatch. Azure: Monitor.

## Security

- **Secret Store** — Encrypted secrets and credentials. GCP: Secret Manager. AWS: Secrets Manager. Azure: Key Vault.
- **Env Config** — Per-environment configuration values. GCP: Runtime Config. AWS: SSM Parameter Store. Azure: App Configuration.

## Integration

- **GitHub Repo** — Wire a repo to a service, auto-deploy on push.
- **Email Service** — Transactional email sending. GCP: SendGrid (partner). AWS: SES. Azure: Communication Services.
- **Scheduled Task** — Cron-style triggers for backends and functions. GCP: Cloud Scheduler. AWS: EventBridge. Azure: Logic Apps.

## Validation

Each concept advertises requirements. A Scalable Backend needs either a GitHub Repo or an Object Storage for code, plus Public Traffic if it serves the open internet. Unmet requirements show as a badge on the block. Hard unmet requirements block the deploy.

## Adding a new concept

Six files per new concept: definition, blueprint, info, high-level resource mapping, per-provider handler, node renderer. See `packages/blocks/src/common/concepts/static-site/` as a reference. Open a PR.