Centrally Managing Cloud Native Artifacts with Harbor

  1. Do you have to work under private network and host docker images internally?
  2. Are you hit by rate limit of docker hub and want to maintain cache of it?
  3. Are you hosting docker images on multiple cloud provider(AWS, GCP, Azure etc.) and want a centralized solution?
  4. Docker registry image doesn’t have granular access control, so want to meet compliance by implementing RBAC?
  5. Looking for a single solution to host and scan vulnerabilities in docker images
  6. Want to centralize artifacts like, docker, CNAB based packages, helm chart?

Why I Was Amazed Checking the Features of Harbor?

  1. Role-based Access Control: Access can be provided to repositories in granular level: Guest, Developer, Master, Project Admin. Each user will have own set of token with specific access defined for each repository.
  2. Integrated Image Scanning: Harbor integrates with Clair, a
    vulnerability static analysis for containers out of the box which makes it easier to scan the artifact and act accordingly based on the the scan result.
  3. Centralized Caching: Harbor can be used a cache server of public cloud providers’ docker registry(ECR, GCR, Docker hub) which will save along with elimination of pull limitation on docker hub. The centralized image repository makes it a single point of interaction for Kubernetes cluster as well. Not only caching, Harbor-to-Harbor replication feature makes it possible to replicate resources between Harbor and Docker Hub, Docker Registry, and the Huawei Cloud registry.
  4. Support for Other Cloud Native Artifacts: Harbor is not just a docker registry but being OCI complaints, it supports cloud native artifacts like container images, Helm charts, OPAs, Singularity — and works with CNAB(Cloud Native Application Bundles).
  5. OpenID Connect: Harbor is integrated with existing enterprise identity solutions to provide single sign-on (SSO) for developers and users. OpenID Connect (OIDC), which is an authentication layer on top of OAuth 2.0, allows Harbor to verify the identity of users based on authentication performed by an external authorization server or identity provider.
  6. API Integration: Harbor integrates swagger UI so that all APIs can be invoked through the Harbor interface

Installation

Helm Charts Repository

--

--

--

DevOps | SRE | #GDE

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Spring ’21 Release Highlights — Schedule Salesforce Surveys (and More) with a Flow

Biswap Key Metrics — Explosive Growth!

The beginning of a new adventure

Photo by Muhamad Rizal Firmansyah on unsplash

Mastering Android Themes — Chapter 4

Shopify Integration will be Updated Soon

Getting Started with Flutter Desktop

Designing a Hyperledger Fabric Network

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Raju Dawadi

Raju Dawadi

DevOps | SRE | #GDE

More from Medium

Ubiquiti EdgeOS Terraform Provider

GitOps with NSX Advanced Load Balancer and Jenkins

Integrate OPA with terraform to prohibit EC2 instance without a VPC in AWS .

How CI/CD Enabled the GoSecure Titan Platform to Respond to Log4j Vulnerabilities — GoSecure