forked from DevOps/deploy.stack
227 lines
5.4 KiB
YAML
227 lines
5.4 KiB
YAML
services:
|
|
log:
|
|
image: goharbor/harbor-log:v2.14.1
|
|
container_name: harbor-log
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- CHOWN
|
|
- DAC_OVERRIDE
|
|
- SETGID
|
|
- SETUID
|
|
volumes:
|
|
- /var/log/harbor/:/var/log/docker/:z
|
|
- /data/harbor/common/config/log/logrotate.conf:/etc/logrotate.d/logrotate.conf
|
|
- /data/harbor/common/config/log/rsyslog_docker.conf:/etc/rsyslog.d/rsyslog_docker.conf
|
|
ports:
|
|
- 127.0.0.1:1514:10514
|
|
networks:
|
|
- harbor
|
|
registry:
|
|
image: goharbor/registry-photon:v2.14.1
|
|
container_name: registry
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- CHOWN
|
|
- SETGID
|
|
- SETUID
|
|
volumes:
|
|
- /data/harbor/registry:/storage:z
|
|
- /data/harbor/common/config/registry/:/etc/registry/:z
|
|
- /data/harbor/secret/registry/root.crt:/etc/registry/root.crt
|
|
- /data/harbor/common/config/shared/trust-certificates:/harbor_cust_cert
|
|
networks:
|
|
- harbor
|
|
depends_on:
|
|
- log
|
|
logging:
|
|
driver: "syslog"
|
|
options:
|
|
syslog-address: "tcp://localhost:1514"
|
|
tag: "registry"
|
|
registryctl:
|
|
image: goharbor/harbor-registryctl:v2.14.1
|
|
container_name: registryctl
|
|
env_file:
|
|
- /data/harbor/common/config/registryctl/env
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- CHOWN
|
|
- SETGID
|
|
- SETUID
|
|
volumes:
|
|
- /data/harbor/registry:/storage:z
|
|
- /data/harbor/common/config/registry/:/etc/registry/:z
|
|
- /data/harbor/common/config/registryctl/config.yml:/etc/registryctl/config.yml
|
|
- /data/harbor/common/config/shared/trust-certificates:/harbor_cust_cert
|
|
networks:
|
|
- harbor
|
|
depends_on:
|
|
- log
|
|
logging:
|
|
driver: "syslog"
|
|
options:
|
|
syslog-address: "tcp://localhost:1514"
|
|
tag: "registryctl"
|
|
postgresql:
|
|
image: goharbor/harbor-db:v2.14.1
|
|
container_name: harbor-db
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- CHOWN
|
|
- DAC_OVERRIDE
|
|
- SETGID
|
|
- SETUID
|
|
volumes:
|
|
- /data/harbor/database:/var/lib/postgresql/data:z
|
|
networks:
|
|
harbor:
|
|
env_file:
|
|
- /data/harbor/common/config/db/env
|
|
depends_on:
|
|
- log
|
|
logging:
|
|
driver: "syslog"
|
|
options:
|
|
syslog-address: "tcp://localhost:1514"
|
|
tag: "postgresql"
|
|
shm_size: '1gb'
|
|
core:
|
|
image: goharbor/harbor-core:v2.14.1
|
|
container_name: harbor-core
|
|
env_file:
|
|
- /data/harbor/common/config/core/env
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- SETGID
|
|
- SETUID
|
|
volumes:
|
|
- /data/harbor/ca_download/:/etc/core/ca/:z
|
|
- /data/harbor/:/data/:z
|
|
- /data/harbor/common/config/core/certificates/:/etc/core/certificates/:z
|
|
- /data/harbor/common/config/core/app.conf:/etc/core/app.conf
|
|
- /data/harbor/secret/core/private_key.pem:/etc/core/private_key.pem
|
|
- /data/harbor/data/harbor/secret/keys/secretkey:/etc/core/key
|
|
- /data/harbor/common/config/shared/trust-certificates:/harbor_cust_cert
|
|
networks:
|
|
harbor:
|
|
depends_on:
|
|
- log
|
|
- registry
|
|
- redis
|
|
- postgresql
|
|
logging:
|
|
driver: "syslog"
|
|
options:
|
|
syslog-address: "tcp://localhost:1514"
|
|
tag: "core"
|
|
portal:
|
|
image: goharbor/harbor-portal:v2.14.1
|
|
container_name: harbor-portal
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- CHOWN
|
|
- SETGID
|
|
- SETUID
|
|
- NET_BIND_SERVICE
|
|
volumes:
|
|
- /data/harbor/common/config/portal/nginx.conf:/etc/nginx/nginx.conf
|
|
networks:
|
|
- harbor
|
|
depends_on:
|
|
- log
|
|
logging:
|
|
driver: "syslog"
|
|
options:
|
|
syslog-address: "tcp://localhost:1514"
|
|
tag: "portal"
|
|
|
|
jobservice:
|
|
image: goharbor/harbor-jobservice:v2.14.1
|
|
container_name: harbor-jobservice
|
|
env_file:
|
|
- /data/harbor/common/config/jobservice/env
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- CHOWN
|
|
- SETGID
|
|
- SETUID
|
|
volumes:
|
|
- /data/harbor/job_logs:/var/log/jobs:z
|
|
- /data/harbor/common/config/jobservice/config.yml:/etc/jobservice/config.yml
|
|
- /data/harbor/common/config/shared/trust-certificates:/harbor_cust_cert
|
|
networks:
|
|
- harbor
|
|
depends_on:
|
|
- core
|
|
logging:
|
|
driver: "syslog"
|
|
options:
|
|
syslog-address: "tcp://localhost:1514"
|
|
tag: "jobservice"
|
|
redis:
|
|
image: goharbor/redis-photon:v2.14.1
|
|
container_name: redis
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- CHOWN
|
|
- SETGID
|
|
- SETUID
|
|
volumes:
|
|
- /data/harbor/redis:/var/lib/redis
|
|
networks:
|
|
harbor:
|
|
depends_on:
|
|
- log
|
|
logging:
|
|
driver: "syslog"
|
|
options:
|
|
syslog-address: "tcp://localhost:1514"
|
|
tag: "redis"
|
|
proxy:
|
|
image: goharbor/nginx-photon:v2.14.1
|
|
container_name: nginx
|
|
restart: always
|
|
cap_drop:
|
|
- ALL
|
|
cap_add:
|
|
- CHOWN
|
|
- SETGID
|
|
- SETUID
|
|
- NET_BIND_SERVICE
|
|
volumes:
|
|
- /data/harbor/common/config/nginx:/etc/nginx:z
|
|
- /data/harbor/common/config/shared/trust-certificates:/harbor_cust_cert
|
|
networks:
|
|
- harbor
|
|
ports:
|
|
- 8080:8080
|
|
- 8443:8443
|
|
depends_on:
|
|
- registry
|
|
- core
|
|
- portal
|
|
- log
|
|
logging:
|
|
driver: "syslog"
|
|
options:
|
|
syslog-address: "tcp://localhost:1514"
|
|
tag: "proxy"
|
|
networks:
|
|
harbor:
|
|
external: false |