goharbor.io / v1beta1 / HarborProject
- string
.apiVersion
APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
- string
.kind
Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
- object
.metadata
- object
.spec
HarborProjectSpec defines the spec of HarborProject.
- array
.spec .cveAllowList
The CVE allowlist for the project.
- string required
.spec .harborServerConfig
HarborServerConfig contains the name of a HarborServerConfig resource describing the harbor instance to manage.
- array
.spec .memberships
Group or user memberships of the project.
- string required
.spec .memberships[] .name
Name of the member. Has to match with a existing user or group
- string required
.spec .memberships[] .role
Role of the member in the Project. This controls the member’s permissions on the project.
- string required
.spec .memberships[] .type
Type of the member, group or user
- object
.spec .metadata
HarborProjectMetadata related configurations.
- boolean
.spec .metadata .autoScan
Whether to scan images automatically after pushing.
- boolean
.spec .metadata .enableContentTrust
Whether content trust is enabled or not. If enabled, user can’t pull unsigned images from this project.
- boolean
.spec .metadata .enableContentTrustCosign
Whether cosign content trust is enabled or not. Similar to enableContentTrust, but using cosign.
- boolean
.spec .metadata .preventVulnerable
Whether to prevent vulnerable images from running.
- boolean
.spec .metadata .public
The flag to indicate whether the project should be public or not.
- boolean
.spec .metadata .reuseSysCveAllowlist
Whether this project reuses the system level CVE allowlist for itself. If this is set to
true, the actual allowlist associated with this project will be ignored. - string
.spec .metadata .severity
If an image’s vulnerablilities are higher than the severity defined here, the image can’t be pulled. Can be either
none,low,medium,highorcritical. - string required
.spec .projectName
The name of the harbor project. Has to match harbor’s naming rules.
- string
.spec .storageQuota
The project’s storage quota in human-readable format, like in Kubernetes memory requests/limits (Ti, Gi, Mi, Ki). The Harbor’s default value is used if empty.
- object
.status
HarborProjectStatus defines the status of HarborProject.
- string
.status .lastApplyTime
LastApplyTime represents the last apply configuration time.
- string
.status .membershipHash
MembershipHash provides a way to quickly notice changes in project membership.
- string
.status .message
Message provides human-readable message.
- integer
.status .projectID
ProjectID represents ID of the managed project.
- integer
.status .quotaID
QuotaID is the ID of the project’s quota. Used to be able to update it.
- string
.status .reason
Reason represents status reason.
- string
.status .status
Status represents harbor project status.