alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 7 Actions Packages Projects Releases Wiki Activity
Files
5f0e47fc5945c910ded344b0e2bc943fc62739b7
infrastructure/clusters/cl01tl/services/harbor/values.yaml
Alex Lebens 98d5f6de80
Some checks failed
renovate / renovate (push) Has been cancelled
Details
add trivy
2025-06-04 21:50:19 -05:00

142 lines
3.3 KiB
YAML
Raw Blame History

harbor:
expose:
type: clusterIP
tls:
auto:
commonName: harbor.alexlebens.net
externalURL: https://harbor.alexlebens.net
persistence:
enabled: true
persistentVolumeClaim:
registry:
storageClass: ceph-block
accessMode: ReadWriteOnce
size: 80Gi
existingSecretAdminPassword: harbor-secret
existingSecretAdminPasswordKey: HARBOR_ADMIN_PASSWORD
internalTLS:
enabled: false
ipFamily:
ipv6:
enabled: false
ipv4:
enabled: true
updateStrategy:
type: Recreate
existingSecretSecretKey: harbor-secret
enableMigrateHelmHook: true
metrics:
enabled: true
serviceMonitor:
enabled: true
cache:
enabled: true
nginx:
image:
repository: goharbor/nginx-photon
tag: v2.13.1
replicas: 0
portal:
image:
repository: goharbor/harbor-portal
tag: v2.13.1
replicas: 2
core:
image:
repository: goharbor/harbor-core
tag: v2.13.1
replicas: 3
# existingSecret: harbor-secret
jobservice:
image:
repository: goharbor/harbor-jobservice
tag: v2.13.1
replicas: 3
jobLoggers:
- stdout
# existingSecret: harbor-secret
# existingSecretKey: JOBSERVICE_SECRET
registry:
registry:
image:
repository: goharbor/registry-photon
tag: v2.13.1
controller:
image:
repository: goharbor/harbor-registryctl
tag: v2.13.1
# existingSecret: harbor-secret
# existingSecretKey: REGISTRY_HTTP_SECRET
# relativeurls: true
# credentials:
# existingSecret: harbor-secret
# upload_purging:
# enabled: true
# age: 168h
# interval: 24h
# dryrun: false
trivy:
enabled: true
database:
type: external
external:
host: harbor-postgresql-17-cluster-rw
port: "5432"
username: app
coreDatabase: app
existingSecret: harbor-postgresql-17-cluster-app
redis:
type: external
external:
addr: "harbor-valkey-primary.harbor:6379"
exporter:
image:
repository: goharbor/harbor-exporter
tag: v2.13.1
replicas: 2
valkey:
architecture: replication
auth:
enabled: false
usePasswordFiles: false
primary:
resources:
requests:
cpu: 100m
memory: 64Mi
persistence:
enabled: true
size: 5Gi
replica:
resources:
requests:
cpu: 100m
memory: 64Mi
persistence:
enabled: true
size: 5Gi
postgres-17-cluster:
mode: standalone
cluster:
storage:
storageClass: local-path
walStorage:
storageClass: local-path
monitoring:
enabled: true
prometheusRule:
enabled: true
recovery:
method: objectStore
objectStore:
endpointURL: https://nyc3.digitaloceanspaces.com
destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/harbor/harbor-postgresql-17-cluster
endpointCredentials: harbor-postgresql-17-cluster-backup-secret
recoveryIndex: 1
backup:
enabled: true
endpointURL: https://nyc3.digitaloceanspaces.com
destinationPath: s3://postgres-backups-ce540ddf106d186bbddca68a/cl01tl/harbor/harbor-postgresql-17-cluster
endpointCredentials: harbor-postgresql-17-cluster-backup-secret
backupIndex: 1
Reference in New Issue View Git Blame Copy Permalink