官网: goharbor.io/docs/2.14.0...
harbor是容器镜像仓库,我们写好的代码打包镜像上传到这里。
添加源
sql
helm repo add harbor https://helm.goharbor.io
helm fetch harbor/harbor --untarvalues.yaml
yaml
# 1. 暴露配置:定义如何从外部访问 Harbor
expose:
type: ingress # 生产环境推荐使用 ingress
ingress:
className: "nginx"
hosts:
core: harbor.cyan.com # 替换为你自己的域名
annotations:
nginx.ingress.kubernetes.io/ssl-redirect: "false"
nginx.ingress.kubernetes.io/force-ssl-redirect: "false"
# 2. 外部访问 URL:必须与上面的配置匹配
externalURL: http://harbor.cyan.com
# 3. 管理员密码:生产环境建议通过 Secret 管理,此处为示例
harborAdminPassword: "123456"
# 4. 持久化配置:为 Harbor 各组件配置存储
persistence:
enabled: true
resourcePolicy: "keep" # 卸载 Helm release 时保留 PVC,防止数据丢失
persistentVolumeClaim:
registry:
storageClass: "local-storage" # 替换为你的 StorageClass 名称
accessMode: ReadWriteOnce
size: 50Gi
chartmuseum:
storageClass: "local-storage"
accessMode: ReadWriteOnce
size: 10Gi
jobservice:
jobLog:
storageClass: "local-storage"
accessMode: ReadWriteOnce
size: 5Gi
database:
storageClass: "local-storage"
accessMode: ReadWriteOnce
size: 5Gi
redis:
storageClass: "local-storage"
size: 5Gi
trivy:
storageClass: "local-storage"
accessMode: ReadWriteOnce
size: 10Gi
# 5. 组件配置:禁用已弃用的 ChartMuseum,拥抱 OCI
chartmuseum:
enabled: false
bash
# 使用 Helm 安装 Harbor
helm install harbor harbor/harbor -f harbor-values.yaml -n harbor --create-namespace