harbor配置
项目地址
https://github.com/goharbor/harbor
# 下载解压部署资源包
mkdir -p /mnt/pve/local-data/docker/harbor/package
cd /mnt/pve/local-data/docker/harbor/package
wget https://github.com/goharbor/harbor/releases/download/v2.13.1/harbor-offline-installer-v2.13.1.tgz
tar -zxf harbor-offline-installer-v2.13.1.tgz -C /mnt/pve/local-data/docker/harbor
cd /mnt/pve/local-data/docker/harbor
mv harbor harbor.v2.13.1
# 编辑配置文件
cd /mnt/pve/local-data/docker/harbor/harbor.v2.13.1
cp harbor.yml.tmpl harbor.yml
# 配置文修改好后部署
cd /mnt/pve/local-data/docker/harbor/harbor.v2.13.1
./install.sh
配置文件
nano /mnt/pve/local-data/docker/harbor/harbor.v2.13.1/harbor.yml
hostname: harbor.5210125.xyz
http:
port: 1280
https:
port: 12443
certificate: /mnt/pve/local-data/certs/*.5210125.xyz.crt
private_key: /mnt/pve/local-data/certs/*.5210125.xyz.key
harbor_admin_password: harbor默认密码
database:
password: harbor
data_volume: /mnt/pve/local-data/docker/harbor/data
对象存储
nano /mnt/pve/local-data/docker/harbor/harbor.v2.13.1/harbor.yml
storage_service:
s3:
accesskey: admin
secretkey: minio默认密码
region: cn-north-1
regionendpoint: http://storage.5210125.xyz:9001
bucket: harbor
secure: false
v4auth: true
认证模式
认证模式
OIDC
Primary Auth Mode
false
OIDC 供应商
authentik
OIDC Endpoint
https://authentik.5210125.xyz:12443/application/o/harbor/
OIDC 客户端标识
Client ID
OIDC 客户端密码
Client Secret
OIDC 组过滤器
NULL
组声明名称
groups
OIDC管理员组
authentik Admins
OIDC Scope
openid,profile,email,offline_access
验证证书
false
自动登录
true
OIDC Session Logout
true
用户名声明
preferred_username
仓库管理
| 提供者 | 目标名 | 目标URL |
|---|---|---|
| Docker Hub | hub.docker.com | https://hub.docker.com |
| Docker Registry/Quay | docker.io | https://docker.io |
| Docker Registry/Quay | ghcr.io | https://ghcr.io |
| Docker Registry/Quay | gcr.io | https://gcr.io |
| Docker Registry/Quay | quay.io | https://quay.io |
| Docker Registry/Quay | k8s.gcr.io | https://k8s.gcr.io |
# harbor登录
docker login harbor.5210125.xyz:12443
# tag添加
docker pull bigbugcc/3x-ui:latest
docker tag bigbugcc/3x-ui:latest harbor.5210125.xyz:12443/library/bigbugcc/3x-ui:latest
# harbor推送镜像
docker push harbor.5210125.xyz:12443/library/bigbugcc/3x-ui:latest
# tag删除
docker rmi harbor.5210125.xyz:12443/library/3xui-3xui:latest
# harbor拉取镜像
docker pull harbor.5210125.xyz:12443/hub.docker.com/nginx:latest
docker pull harbor.5210125.xyz:12443/ghcr.io/open-webui/open-webui:latest
项目
| 提供者 | 项目名称 | 镜像代理 | 镜像代理 |
|---|---|---|---|
| Docker Hub | hub.docker.com | true | hub.docker.com |
| Docker Registry/Quay | docker.io | true | docker.io |
| Docker Registry/Quay | ghcr.io | true | ghcr.io |
| Docker Registry/Quay | gcr.io | true | gcr.io |
| Docker Registry/Quay | quay.io | true | quay.io |
| Docker Registry/Quay | k8s.gcr.io | true | k8s.gcr.io |