Harbor

Jan 1, 0001

Definition

Harbor is an open-source container image registry that provides secure and efficient management of container images. It extends the Docker Distribution by adding functionalities such as role-based access control, vulnerability scanning, and image replication. Harbor is designed to store, sign, and scan content, ensuring that container images are secure and compliant with organizational policies.

Secure Settings Example

harbor:
  auth_mode: ldap
  ldap:
    url: "ldaps://ldap.example.com"
    search_dn: "uid=searchuser,dc=example,dc=com"
    search_password: "securepassword"
    base_dn: "dc=example,dc=com"
    filter: "(objectClass=person)"
  storage_service:
    filesystem:
      rootdirectory: /data
  jobservice:
    max_job_workers: 10
  clair:
    updaters_interval: 12h
  notary:
    enabled: true
  tls:
    enabled: true
    cert: /path/to/cert.pem
    key: /path/to/key.pem

Insecure Settings Example

harbor:
  auth_mode: db_auth
  storage_service:
    filesystem:
      rootdirectory: /data
  jobservice:
    max_job_workers: 50
  clair:
    updaters_interval: 0
  notary:
    enabled: false
  tls:
    enabled: false

Harbor

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter