143 lines
3.2 KiB
YAML
143 lines
3.2 KiB
YAML
harbor:
|
|
expose:
|
|
type: clusterIP
|
|
tls:
|
|
auto:
|
|
commonName: harbor.alexlebens.net
|
|
externalURL: https://harbor.alexlebens.net
|
|
persistence:
|
|
enabled: true
|
|
persistentVolumeClaim:
|
|
registry:
|
|
storageClass: ceph-block
|
|
accessMode: ReadWriteOnce
|
|
size: 100Gi
|
|
existingSecretAdminPassword: harbor-secret
|
|
existingSecretAdminPasswordKey: HARBOR_ADMIN_PASSWORD
|
|
internalTLS:
|
|
enabled: false
|
|
ipFamily:
|
|
ipv6:
|
|
enabled: false
|
|
ipv4:
|
|
enabled: true
|
|
updateStrategy:
|
|
type: Recreate
|
|
existingSecretSecretKey: harbor-secret
|
|
enableMigrateHelmHook: true
|
|
metrics:
|
|
enabled: true
|
|
serviceMonitor:
|
|
enabled: true
|
|
cache:
|
|
enabled: true
|
|
nginx:
|
|
image:
|
|
repository: goharbor/nginx-photon
|
|
tag: v2.13.1
|
|
replicas: 0
|
|
portal:
|
|
image:
|
|
repository: goharbor/harbor-portal
|
|
tag: v2.13.1
|
|
replicas: 2
|
|
core:
|
|
image:
|
|
repository: goharbor/harbor-core
|
|
tag: v2.13.1
|
|
replicas: 2
|
|
existingSecret: harbor-secret
|
|
secretName: harbor-secret
|
|
existingXsrfSecret: harbor-secret
|
|
jobservice:
|
|
image:
|
|
repository: goharbor/harbor-jobservice
|
|
tag: v2.13.1
|
|
replicas: 2
|
|
jobLoggers:
|
|
- stdout
|
|
existingSecret: harbor-secret
|
|
registry:
|
|
registry:
|
|
image:
|
|
repository: goharbor/registry-photon
|
|
tag: v2.13.1
|
|
controller:
|
|
image:
|
|
repository: goharbor/harbor-registryctl
|
|
tag: v2.13.1
|
|
existingSecret: harbor-secret
|
|
relativeurls: true
|
|
credentials:
|
|
existingSecret: harbor-secret
|
|
upload_purging:
|
|
enabled: true
|
|
age: 72h
|
|
interval: 24h
|
|
dryrun: false
|
|
trivy:
|
|
enabled: true
|
|
database:
|
|
type: external
|
|
external:
|
|
host: harbor-postgresql-17-cluster-rw
|
|
port: "5432"
|
|
username: app
|
|
coreDatabase: app
|
|
existingSecret: harbor-postgresql-17-cluster-app
|
|
redis:
|
|
type: external
|
|
external:
|
|
addr: "harbor-valkey-primary.harbor:6379"
|
|
exporter:
|
|
image:
|
|
repository: goharbor/harbor-exporter
|
|
tag: v2.13.1
|
|
replicas: 2
|
|
valkey:
|
|
architecture: replication
|
|
auth:
|
|
enabled: false
|
|
usePasswordFiles: false
|
|
primary:
|
|
resources:
|
|
requests:
|
|
cpu: 100m
|
|
memory: 64Mi
|
|
persistence:
|
|
enabled: true
|
|
size: 5Gi
|
|
replica:
|
|
resources:
|
|
requests:
|
|
cpu: 100m
|
|
memory: 64Mi
|
|
persistence:
|
|
enabled: true
|
|
size: 5Gi
|
|
postgres-17-cluster:
|
|
mode: standalone
|
|
cluster:
|
|
storage:
|
|
storageClass: local-path
|
|
walStorage:
|
|
storageClass: local-path
|
|
monitoring:
|
|
enabled: true
|
|
prometheusRule:
|
|
enabled: true
|
|
recovery:
|
|
method: objectStore
|
|
objectStore:
|
|
endpointURL: https://nyc3.digitaloceanspaces.com
|
|
destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/harbor/harbor-postgresql-17-cluster
|
|
endpointCredentials: harbor-postgresql-17-cluster-backup-secret
|
|
recoveryIndex: 1
|
|
backup:
|
|
enabled: true
|
|
endpointURL: https://nyc3.digitaloceanspaces.com
|
|
destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/harbor/harbor-postgresql-17-cluster
|
|
endpointCredentials: harbor-postgresql-17-cluster-backup-secret
|
|
backupIndex: 1
|
|
retentionPolicy: "7d"
|