harbor/make/photon/prepare/templates/registry/config.yml.jinja

version: 0.1
log:
  level: {{level}}
  fields:
    service: registry
storage:
  cache:
    layerinfo: redis
  {{storage_provider_info}}
  maintenance:
    uploadpurging:
{% if purge_upload.enabled %}
      enabled: true
      age: {{ purge_upload.age }}
      interval: {{ purge_upload.interval }}
      {% if purge_upload.dryrun %}
      dryrun: true
      {% else %}
      dryrun: false
      {% endif %}
{% else %}
      enabled: false
{% endif %}
  delete:
    enabled: true
{% if storage_redirect_disabled %}
  redirect:
    disable: true
{% endif %}
redis:
{% if sentinel_master_set %}
  sentinel:
    {# sentinel hosts are separated with comma #}
    {% set redis_hosts = redis_host.split(',') %}
    addresses:
      {% for local_redis_host in redis_hosts %}
      - {{local_redis_host}}
      {% endfor %}
    sentinelMasterSet: {{sentinel_master_set}}
{% else %}
  addr: {{redis_host}}
{% endif %}
  readtimeout: 10s
  writetimeout: 10s
  dialtimeout: 10s
  password: {{redis_password}}
  db: {{redis_db_index_reg}}
  pool:
    maxidle: 100
    maxactive: 500
    idletimeout: 60s
http:
{% if internal_tls.enabled %}
  addr: :5443
  tls:
    certificate: /etc/harbor/tls/registry.crt
    key: /etc/harbor/tls/registry.key
    minimumtls: tls1.2
{% else %}
  addr: :5000
{% endif %}
  secret: placeholder
  debug:
{% if metric.enabled %}
    addr: :{{ metric.port }}
    prometheus:
      enabled: true
      path: {{ metric.path }}
{% else %}
    addr: localhost:5001
{% endif %}
auth:
  htpasswd:
    realm: harbor-registry-basic-realm
    path: /etc/registry/passwd
validation:
  disabled: true
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`version: 0.1`
			`log:`
Fix log level issue in registry 1. fix level issue in registry.jinja 2. add log level to registryctl Signed-off-by: DQ <dengq@vmware.com> 2020-12-14 04:52:42 +01:00			`level: {{level}}`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`fields:`
			`service: registry`
			`storage:`
			`cache:`
			`layerinfo: redis`
			`{{storage_provider_info}}`
			`maintenance:`
			`uploadpurging:`
Add upload purge config to registry/config.yml Enable the uploadpurging by default Fixes #15641 Signed-off-by: stonezdj <stonezdj@gmail.com> 2021-12-16 09:00:07 +01:00			`{% if purge_upload.enabled %}`
			`enabled: true`
			`age: {{ purge_upload.age }}`
			`interval: {{ purge_upload.interval }}`
			`{% if purge_upload.dryrun %}`
			`dryrun: true`
			`{% else %}`
			`dryrun: false`
			`{% endif %}`
			`{% else %}`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`enabled: false`
Add upload purge config to registry/config.yml Enable the uploadpurging by default Fixes #15641 Signed-off-by: stonezdj <stonezdj@gmail.com> 2021-12-16 09:00:07 +01:00			`{% endif %}`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`delete:`
			`enabled: true`
Add redirect disable item if set storage redirect disable ture, will render it in registry config file Signed-off-by: Qian Deng <dengq@vmware.com> 2019-04-30 11:05:27 +02:00			`{% if storage_redirect_disabled %}`
			`redirect:`
Typo in registry config it should be disable not disabled Signed-off-by: Qian Deng <dengq@vmware.com> 2019-05-10 17:08:21 +02:00			`disable: true`
Add redirect disable item if set storage redirect disable ture, will render it in registry config file Signed-off-by: Qian Deng <dengq@vmware.com> 2019-04-30 11:05:27 +02:00			`{% endif %}`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`redis:`
feature(redis) support redis sentinel Signed-off-by: Ziming Zhang <zziming@vmware.com> 2020-06-15 18:20:18 +02:00			`{% if sentinel_master_set %}`
Upgrade to distribution (registry) v3 alpha (#19784) * registryctl/api/registry/blob: fix dropped test error (#19721) Signed-off-by: Lars Lehtonen <lars.lehtonen@gmail.com> * Remove robot account update quota permission (#19819) Signed-off-by: Yang Jiao <yang.jiao@broadcom.com> Co-authored-by: Yang Jiao <yang.jiao@broadcom.com> * Cache image list with digest key (#19801) fixes #19429 Signed-off-by: stonezdj <daojunz@vmware.com> Co-authored-by: stonezdj <daojunz@vmware.com> * Add quota permissions testcase (#19822) Signed-off-by: Yang Jiao <yang.jiao@broadcom.com> Co-authored-by: Yang Jiao <yang.jiao@broadcom.com> * deprecate gosec in makefile (#19828) remove the unused the part from makefile Signed-off-by: wang yan <wangyan@vmware.com> * Add verification that robot account duration is not 0 (#19829) Signed-off-by: Yang Jiao <yang.jiao@broadcom.com> * fix artifact page bug (#19807) * fix artifact page bug * update testcase * Upgrade to distribution (registry) v3 alpha This includes all the benefits of the v3 distribution, but also all breaking changes. Most notably, Image Manifest v2 Schema v1 support has been dropped, as well as the `oss` and `swift` storage drivers. Currently, this still relies on v2's github.com/docker/distribution/registry/client/auth/challenge, because that code has been removed from the public API in v3. Signed-off-by: Aaron Dewes <aaron.dewes@protonmail.com> --------- Signed-off-by: Lars Lehtonen <lars.lehtonen@gmail.com> Signed-off-by: Yang Jiao <yang.jiao@broadcom.com> Signed-off-by: stonezdj <daojunz@vmware.com> Signed-off-by: wang yan <wangyan@vmware.com> Signed-off-by: Aaron Dewes <aaron.dewes@protonmail.com> Co-authored-by: Lars Lehtonen <lars.lehtonen@gmail.com> Co-authored-by: Yang Jiao <72076317+YangJiao0817@users.noreply.github.com> Co-authored-by: Yang Jiao <yang.jiao@broadcom.com> Co-authored-by: stonezdj(Daojun Zhang) <stonezdj@gmail.com> Co-authored-by: stonezdj <daojunz@vmware.com> Co-authored-by: Wang Yan <wangyan@vmware.com> Co-authored-by: ShengqiWang <124650040+ShengqiWang@users.noreply.github.com> 2024-01-26 22:48:06 +01:00			`sentinel:`
			`{# sentinel hosts are separated with comma #}`
			`{% set redis_hosts = redis_host.split(',') %}`
			`addresses:`
			`{% for local_redis_host in redis_hosts %}`
			`- {{local_redis_host}}`
			`{% endfor %}`
			`sentinelMasterSet: {{sentinel_master_set}}`
feature(redis) support redis sentinel Signed-off-by: Ziming Zhang <zziming@vmware.com> 2020-06-15 18:20:18 +02:00			`{% else %}`
			`addr: {{redis_host}}`
			`{% endif %}`
fix(jobservice) redis sentinel failover hang Signed-off-by: Ziming Zhang <zziming@vmware.com> 2020-08-21 05:13:39 +02:00			`readtimeout: 10s`
			`writetimeout: 10s`
			`dialtimeout: 10s`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`password: {{redis_password}}`
			`db: {{redis_db_index_reg}}`
perf: configurations for perf improvement (#15142) Closes #15041 Signed-off-by: He Weiwei <hweiwei@vmware.com> 2021-06-15 12:39:15 +02:00			`pool:`
			`maxidle: 100`
			`maxactive: 500`
			`idletimeout: 60s`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`http:`
Feat: Enable mtls for registry Signed-off-by: DQ <dengq@vmware.com> 2020-02-12 10:40:57 +01:00			`{% if internal_tls.enabled %}`
			`addr: :5443`
Set registry tls version to 1.2 when internal tls enabled set min version of registry to 1.2 Signed-off-by: DQ <dengq@vmware.com> 2020-04-13 11:50:37 +02:00			`tls:`
Fix tls min version for registry cert,key,mintls should in the same context Signed-off-by: DQ <dengq@vmware.com> 2020-04-19 10:16:19 +02:00			`certificate: /etc/harbor/tls/registry.crt`
			`key: /etc/harbor/tls/registry.key`
Set registry tls version to 1.2 when internal tls enabled set min version of registry to 1.2 Signed-off-by: DQ <dengq@vmware.com> 2020-04-13 11:50:37 +02:00			`minimumtls: tls1.2`
Feat: Enable mtls for registry Signed-off-by: DQ <dengq@vmware.com> 2020-02-12 10:40:57 +01:00			`{% else %}`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`addr: :5000`
Feat: Enable mtls for registry Signed-off-by: DQ <dengq@vmware.com> 2020-02-12 10:40:57 +01:00			`{% endif %}`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`secret: placeholder`
			`debug:`
Add metrics to Harbor Core 1. Add configs in prepare 2. Add models and config items in Core 3. Encapdulate getting metric in commom package 4. Add a middleware for global request to collect 3 metrics Signed-off-by: DQ <dengq@vmware.com> 2020-10-18 18:16:02 +02:00			`{% if metric.enabled %}`
			`addr: :{{ metric.port }}`
			`prometheus:`
			`enabled: true`
			`path: {{ metric.path }}`
			`{% else %}`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`addr: localhost:5001`
Add metrics to Harbor Core 1. Add configs in prepare 2. Add models and config items in Core 3. Encapdulate getting metric in commom package 4. Add a middleware for global request to collect 3 metrics Signed-off-by: DQ <dengq@vmware.com> 2020-10-18 18:16:02 +02:00			`{% endif %}`
Refacotr the prepare script base on the proposal https://github.com/goharbor/community/pull/22 Signed-off-by: Qian Deng <dengq@vmware.com> 2018-11-15 04:09:57 +01:00			`auth:`
Populate basic auth information for registry This commit updates `prepare` and templates to populate the credential for registry for basic authentication. A temporary flag `registry_use_basic_auth` was added to avoid breakage. It MUST be removed before the release. Signed-off-by: Daniel Jiang <jiangd@vmware.com> 2019-12-25 07:59:47 +01:00			`htpasswd:`
			`realm: harbor-registry-basic-realm`
			`path: /etc/registry/passwd`
Fix: the adminserver caused regression Remove some code related to adminserver Fix some issues by adminserver removeing Signed-off-by: Qian Deng <dengq@vmware.com> 2019-02-20 11:01:48 +01:00			`validation:`
			`disabled: true`