An open source trusted cloud native registry project that stores, signs, and scans content.
Go to file
He Weiwei e254fe3095
fix(permissions): permissions checking for member and quota info (#9490)
1. Only show project member info when has member list permission.
2. Only show quota info when has quota read permission.
3. Add quota read permission for all roles of project.
4. Refactor permission service in portoal.
5. Clear cache when clear session.

Closes #8697

Signed-off-by: He Weiwei <hweiwei@vmware.com>
2019-10-21 14:03:52 +08:00
.github Update config file names 2019-09-02 18:19:06 +08:00
contrib Update config file names 2019-09-02 18:19:06 +08:00
docs feat(role): introduce a limited guest role (#9403) 2019-10-20 14:21:28 +08:00
make feat(role): introduce a limited guest role (#9403) 2019-10-20 14:21:28 +08:00
src fix(permissions): permissions checking for member and quota info (#9490) 2019-10-21 14:03:52 +08:00
tests Merge pull request #9467 from danfengliu/modify-quota-error-msg 2019-10-18 16:40:46 +08:00
tools Update config file names 2019-09-02 18:19:06 +08:00
.dockerignore Add dockerignore file to prevent local node_modules to be copied into the portal image 2019-05-18 09:11:35 +02:00
.drone.yml fix drone ci docker compose version out of date 2019-10-18 13:34:48 +08:00
.gitignore Add immutable tag in project detail 2019-10-18 11:28:39 +08:00
.gitmessage Update README and .gitmessage 2018-07-17 16:42:03 +08:00
.travis.yml Upgrade angualr from 7.1.3 to 8.2.0 and clarity from 1.0 to 2.2 2019-09-18 10:12:20 +08:00
ADOPTERS.md Update the adopters documentation 2019-09-26 14:26:48 +08:00
CHANGELOG.md Update CHANGELOG.md for v1.8.0 2019-06-04 11:20:28 +01:00
CONTRIBUTING.md add harbor components version and gosec checking in drone ci 2019-09-03 14:46:25 +08:00
gskey.sh.enc Enable travis to update logs to GSR (#5949) 2018-09-27 08:54:56 +08:00
LICENSE Replacing copyright notices with "Copyright Project Harbor Authors". 2018-09-19 16:59:36 +00:00
Makefile build(clair): internal clair adapter when install with clair 2019-10-17 12:00:51 +08:00
OWNERS.md update documents (#7727) 2019-05-09 09:49:30 +08:00
README.md Fix docker-compose version to 1.18.0 2019-09-02 18:37:42 +08:00
RELEASES.md Document the versioning and release process, also updating the SECURITY.md 2019-10-18 14:24:42 +08:00
ROADMAP.md update documents (#2020) 2017-04-17 13:46:39 +08:00
SECURITY.md Document the versioning and release process, also updating the SECURITY.md 2019-10-18 14:24:42 +08:00
VERSION Bump up version to v1.10 2019-10-19 01:19:13 +08:00

Harbor

Build Status Coverage Status Go Report Card CII Best Practices Codacy Badge Nightly Status


notificationCommunity Meeting
The Harbor Project holds bi-weekly community calls, to join them and watch previous meeting notes and recordings, please see meeting schedule.

Welcome to join below Harbor community events and meet with project maintainers and users:

May 20-24, 2019, KubeCon EU, Barcelona: Harbor Community Reception, Intro and Deep-dive sessions.

June 24-26, 2019, KubeCon Shanghai: Harbor community meetup, Harbor session.

Note: The master branch may be in an unstable or even broken state during development. Please use releases instead of the master branch in order to get stable binaries.

Harbor

Harbor is an open source trusted cloud native registry project that stores, signs, and scans content. Harbor extends the open source Docker Distribution by adding the functionalities usually required by users such as security, identity and management. Having a registry closer to the build and run environment can improve the image transfer efficiency. Harbor supports replication of images between registries, and also offers advanced security features such as user management, access control and activity auditing.

Harbor is hosted by the Cloud Native Computing Foundation (CNCF). If you are an organization that wants to help shape the evolution of cloud native technologies, consider joining the CNCF. For details about who's involved and how Harbor plays a role, read the CNCF announcement.

Features

  • Cloud native registry: With support for both container images and Helm charts, Harbor serves as registry for cloud native environments like container runtimes and orchestration platforms.
  • Role based access control: Users and repositories are organized via 'projects' and a user can have different permission for images or Helm charts under a project.
  • Policy based replication: Images and charts can be replicated (synchronized) between multiple registry instances based on policies with multiple filters (repository, tag and label). Harbor automatically retries a replication if it encounters any errors. Great for load balancing, high availability, multi-datacenter, hybrid and multi-cloud scenarios.
  • Vulnerability Scanning: Harbor scans images regularly and warns users of vulnerabilities.
  • LDAP/AD support: Harbor integrates with existing enterprise LDAP/AD for user authentication and management, and supports importing LDAP groups into Harbor and assigning proper project roles to them.
  • OIDC support: Harbor leverages OpenID Connect (OIDC) to verify the identity of users authenticated by an external authorization server or identity provider. Single sign-on can be enabled to log into the Harbor portal.
  • Image deletion & garbage collection: Images can be deleted and their space can be recycled.
  • Notary: Image authenticity can be ensured.
  • Graphical user portal: User can easily browse, search repositories and manage projects.
  • Auditing: All the operations to the repositories are tracked.
  • RESTful API: RESTful APIs for most administrative operations, easy to integrate with external systems. An embedded Swagger UI is available for exploring and testing the API.
  • Easy deployment: Provide both an online and offline installer. In addition, a Helm Chart can be used to deploy Harbor on Kubernetes.

Install & Run

System requirements:

On a Linux host: docker 17.06.0-ce+ and docker-compose 1.18.0+ .

Download binaries of Harbor release and follow Installation & Configuration Guide to install Harbor.

If you want to deploy Harbor on Kubernetes, please use the Harbor chart.

Refer to User Guide for more details on how to use Harbor.

Community

Additional Tools

Tools layered on top of Harbor and contributed by community.

  • Harbor.Tagd
    • Automates the process of cleaning up old tags from your Harbor container registries.
    • Lead by @nlowe from HylandSoftware.

Demos

  • Live Demo - A demo environment with the latest Harbor stable build installed. For additional information please refer to this page.
  • Video Demos - Demos for Harbor features and continuously updated.

Partners and Users

For a list of users, please refer to ADOPTERS.md.

License

Harbor is available under the Apache 2 license.

This project uses open source components which have additional licensing terms. The official docker images and licensing terms for these open source components can be found at the following locations: