goharbor.io / v1beta1 / HarborConfiguration
- string
.apiVersion
APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
- string
.kind
Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
- object
.metadata
- object
.spec
HarborConfigurationSpec defines the spec of HarborConfiguration.
- object
.spec .configuration
Configuration defines the harbor configuration types.
- string
.spec .configuration .authMode
The auth mode of current system, such as “db_auth”, “ldap_auth”, “oidc_auth”.
- string
.spec .configuration .emailFrom
The sender name for Email notification.
- string
.spec .configuration .emailHost
The hostname of SMTP server that sends Email notification.
- string
.spec .configuration .emailIdentity
By default it’s empty so the email_username is picked
- boolean
.spec .configuration .emailInsecure
Whether or not the certificate will be verified when Harbor tries to access the email server.
- string
.spec .configuration .emailPassword
Email password.
- integer
.spec .configuration .emailPort
The port of SMTP server.
- boolean
.spec .configuration .emailSsl
When it”s set to true the system will access Email server via TLS by default. If it”s set to false, it still will handle “STARTTLS” from server side.
- string
.spec .configuration .emailUsername
The username for authenticate against SMTP server.
- string
.spec .configuration .httpAuthproxyAdminGroups
The group which has the harbor admin privileges.
- string
.spec .configuration .httpAuthproxyAdminUsernames
The username which has the harbor admin privileges.
- string
.spec .configuration .httpAuthproxyEndpoint
The endpoint of the HTTP auth.
- boolean
.spec .configuration .httpAuthproxyServerCertificate
The certificate of the HTTP auth provider.
- boolean
.spec .configuration .httpAuthproxySkipSearch
Search user before onboard.
- string
.spec .configuration .httpAuthproxyTokenreviewEndpoint
The token review endpoint.
- boolean
.spec .configuration .httpAuthproxyVerifyCert
Verify the HTTP auth provider’s certificate.
- string
.spec .configuration .ldapBaseDn
The Base DN for LDAP binding.
- string
.spec .configuration .ldapFilter
The filter for LDAP search.
- string
.spec .configuration .ldapGroupAdminDn
Specify the ldap group which have the same privilege with Harbor admin.
- string
.spec .configuration .ldapGroupAttributeName
The attribute which is used as identity of the LDAP group, default is cn.
- string
.spec .configuration .ldapGroupBaseDn
The base DN to search LDAP group.
- string
.spec .configuration .ldapGroupMembershipAttribute
The user attribute to identify the group membership.
- string
.spec .configuration .ldapGroupSearchFilter
The filter to search the ldap group.
- integer
.spec .configuration .ldapGroupSearchScope
The scope to search ldap group. ”0-LDAP_SCOPE_BASE, 1-LDAP_SCOPE_ONELEVEL, 2-LDAP_SCOPE_SUBTREE”.
- integer
.spec .configuration .ldapScope
The scope to search ldap users,’0-LDAP_SCOPE_BASE, 1-LDAP_SCOPE_ONELEVEL, 2-LDAP_SCOPE_SUBTREE’.
- string
.spec .configuration .ldapSearchDn
The DN of the user to do the search.
- string
.spec .configuration .ldapSearchPassword
The password ref of the ldap search dn.
- integer
.spec .configuration .ldapTimeout
Timeout in seconds for connection to LDAP server.
- string
.spec .configuration .ldapUid
The attribute which is used as identity for the LDAP binding, such as “CN” or “SAMAccountname”.
- string
.spec .configuration .ldapUrl
The URL of LDAP server.
- boolean
.spec .configuration .ldapVerifyCert
Whether verify your OIDC server certificate, disable it if your OIDC server is hosted via self-hosted certificate.
- boolean
.spec .configuration .notificationEnable
Enable notification.
- string
.spec .configuration .oidcAdminGroup
The OIDC group which has the harbor admin privileges.
- boolean
.spec .configuration .oidcAutoOnboard
Auto onboard the OIDC user.
- string
.spec .configuration .oidcClientId
The client ID of the OIDC provider.
- string
.spec .configuration .oidcClientSecret
The OIDC provider secret.
- string
.spec .configuration .oidcEndpoint
The endpoint of the OIDC provider.
- string
.spec .configuration .oidcExtraRedirectParms
Extra parameters to add when redirect request to OIDC provider.
- string
.spec .configuration .oidcGroupsClaim
The attribute claims the group name.
- string
.spec .configuration .oidcName
The OIDC provider name.
- string
.spec .configuration .oidcScope
The scope of the OIDC provider.
- string
.spec .configuration .oidcUserClaim
The attribute claims the username.
- boolean
.spec .configuration .oidcVerifyCert
Verify the OIDC provider’s certificate’.
- string
.spec .configuration .projectCreationRestriction
Indicate who can create projects, it could be ”adminonly” or ”everyone”.
- boolean
.spec .configuration .quotaPerProjectEnable
Enable quota per project.
- boolean
.spec .configuration .readOnly
The flag to indicate whether Harbor is in readonly mode.
- string
.spec .configuration .robotNamePrefix
The rebot account name prefix.
- integer
.spec .configuration .robotTokenDuration
The robot account token duration in days.
- boolean
.spec .configuration .selfRegistration
Whether the Harbor instance supports self-registration. If it”s set to false, admin need to add user to the instance.
- integer
.spec .configuration .storagePerProject
The storage quota per project.
- integer
.spec .configuration .tokenExpiration
The expiration time of the token for internal Registry, in minutes.
- string
.spec .configuration .uaaClientId
The client id of UAA.
- string
.spec .configuration .uaaClientSecret
The client secret of the UAA.
- string
.spec .configuration .uaaEndpoint
The endpoint of the UAA.
- boolean
.spec .configuration .uaaVerifyCert
Verify the certificate in UAA server.
- string
.spec .harborClusterRef
HarborClusterRef defines the reference of the harbor cluster name.
- object
.status
HarborConfigurationStatus defines the status of HarborConfiguration.
- string
.status .lastApplyTime
LastApplyTime represents the last apply configuration time.
- object
.status .lastConfiguration
LastConfiguration represents the configuration of last time.
- object
.status .lastConfiguration .configuration
Configuration defines the harbor configuration types.
- string
.status .lastConfiguration .configuration .authMode
The auth mode of current system, such as “db_auth”, “ldap_auth”, “oidc_auth”.
- string
.status .lastConfiguration .configuration .emailFrom
The sender name for Email notification.
- string
.status .lastConfiguration .configuration .emailHost
The hostname of SMTP server that sends Email notification.
- string
.status .lastConfiguration .configuration .emailIdentity
By default it’s empty so the email_username is picked
- boolean
.status .lastConfiguration .configuration .emailInsecure
Whether or not the certificate will be verified when Harbor tries to access the email server.
- string
.status .lastConfiguration .configuration .emailPassword
Email password.
- integer
.status .lastConfiguration .configuration .emailPort
The port of SMTP server.
- boolean
.status .lastConfiguration .configuration .emailSsl
When it”s set to true the system will access Email server via TLS by default. If it”s set to false, it still will handle “STARTTLS” from server side.
- string
.status .lastConfiguration .configuration .emailUsername
The username for authenticate against SMTP server.
- string
.status .lastConfiguration .configuration .httpAuthproxyAdminGroups
The group which has the harbor admin privileges.
- string
.status .lastConfiguration .configuration .httpAuthproxyAdminUsernames
The username which has the harbor admin privileges.
- string
.status .lastConfiguration .configuration .httpAuthproxyEndpoint
The endpoint of the HTTP auth.
- boolean
.status .lastConfiguration .configuration .httpAuthproxyServerCertificate
The certificate of the HTTP auth provider.
- boolean
.status .lastConfiguration .configuration .httpAuthproxySkipSearch
Search user before onboard.
- string
.status .lastConfiguration .configuration .httpAuthproxyTokenreviewEndpoint
The token review endpoint.
- boolean
.status .lastConfiguration .configuration .httpAuthproxyVerifyCert
Verify the HTTP auth provider’s certificate.
- string
.status .lastConfiguration .configuration .ldapBaseDn
The Base DN for LDAP binding.
- string
.status .lastConfiguration .configuration .ldapFilter
The filter for LDAP search.
- string
.status .lastConfiguration .configuration .ldapGroupAdminDn
Specify the ldap group which have the same privilege with Harbor admin.
- string
.status .lastConfiguration .configuration .ldapGroupAttributeName
The attribute which is used as identity of the LDAP group, default is cn.
- string
.status .lastConfiguration .configuration .ldapGroupBaseDn
The base DN to search LDAP group.
- string
.status .lastConfiguration .configuration .ldapGroupMembershipAttribute
The user attribute to identify the group membership.
- string
.status .lastConfiguration .configuration .ldapGroupSearchFilter
The filter to search the ldap group.
- integer
.status .lastConfiguration .configuration .ldapGroupSearchScope
The scope to search ldap group. ”0-LDAP_SCOPE_BASE, 1-LDAP_SCOPE_ONELEVEL, 2-LDAP_SCOPE_SUBTREE”.
- integer
.status .lastConfiguration .configuration .ldapScope
The scope to search ldap users,’0-LDAP_SCOPE_BASE, 1-LDAP_SCOPE_ONELEVEL, 2-LDAP_SCOPE_SUBTREE’.
- string
.status .lastConfiguration .configuration .ldapSearchDn
The DN of the user to do the search.
- string
.status .lastConfiguration .configuration .ldapSearchPassword
The password ref of the ldap search dn.
- integer
.status .lastConfiguration .configuration .ldapTimeout
Timeout in seconds for connection to LDAP server.
- string
.status .lastConfiguration .configuration .ldapUid
The attribute which is used as identity for the LDAP binding, such as “CN” or “SAMAccountname”.
- string
.status .lastConfiguration .configuration .ldapUrl
The URL of LDAP server.
- boolean
.status .lastConfiguration .configuration .ldapVerifyCert
Whether verify your OIDC server certificate, disable it if your OIDC server is hosted via self-hosted certificate.
- boolean
.status .lastConfiguration .configuration .notificationEnable
Enable notification.
- string
.status .lastConfiguration .configuration .oidcAdminGroup
The OIDC group which has the harbor admin privileges.
- boolean
.status .lastConfiguration .configuration .oidcAutoOnboard
Auto onboard the OIDC user.
- string
.status .lastConfiguration .configuration .oidcClientId
The client ID of the OIDC provider.
- string
.status .lastConfiguration .configuration .oidcClientSecret
The OIDC provider secret.
- string
.status .lastConfiguration .configuration .oidcEndpoint
The endpoint of the OIDC provider.
- string
.status .lastConfiguration .configuration .oidcExtraRedirectParms
Extra parameters to add when redirect request to OIDC provider.
- string
.status .lastConfiguration .configuration .oidcGroupsClaim
The attribute claims the group name.
- string
.status .lastConfiguration .configuration .oidcName
The OIDC provider name.
- string
.status .lastConfiguration .configuration .oidcScope
The scope of the OIDC provider.
- string
.status .lastConfiguration .configuration .oidcUserClaim
The attribute claims the username.
- boolean
.status .lastConfiguration .configuration .oidcVerifyCert
Verify the OIDC provider’s certificate’.
- string
.status .lastConfiguration .configuration .projectCreationRestriction
Indicate who can create projects, it could be ”adminonly” or ”everyone”.
- boolean
.status .lastConfiguration .configuration .quotaPerProjectEnable
Enable quota per project.
- boolean
.status .lastConfiguration .configuration .readOnly
The flag to indicate whether Harbor is in readonly mode.
- string
.status .lastConfiguration .configuration .robotNamePrefix
The rebot account name prefix.
- integer
.status .lastConfiguration .configuration .robotTokenDuration
The robot account token duration in days.
- boolean
.status .lastConfiguration .configuration .selfRegistration
Whether the Harbor instance supports self-registration. If it”s set to false, admin need to add user to the instance.
- integer
.status .lastConfiguration .configuration .storagePerProject
The storage quota per project.
- integer
.status .lastConfiguration .configuration .tokenExpiration
The expiration time of the token for internal Registry, in minutes.
- string
.status .lastConfiguration .configuration .uaaClientId
The client id of UAA.
- string
.status .lastConfiguration .configuration .uaaClientSecret
The client secret of the UAA.
- string
.status .lastConfiguration .configuration .uaaEndpoint
The endpoint of the UAA.
- boolean
.status .lastConfiguration .configuration .uaaVerifyCert
Verify the certificate in UAA server.
- string
.status .lastConfiguration .harborClusterRef
HarborClusterRef defines the reference of the harbor cluster name.
- string
.status .message
Message provides human-readable message.
- string
.status .reason
Reason represents status reason.
- string
.status .status
Status represents harbor configuration status.