sheppy/no-secrets-athq-ansible
1
0
Fork 0
mirror of https://github.com/FAUSheppy/no-secrets-athq-ansible synced 2025-12-06 07:21:40 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

feat: harbor setup done

Browse Source
This commit is contained in:
Johnathen Sheppard
2023-12-29 14:49:58 +00:00
parent 1c23da0249
commit d48316f34d
4 changed files with 17 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
group_vars/harbor-registry.yaml Normal file
View File

@@ -0,0 +1,4 @@
harbor_version: v2.10.0
harbor_file: harbor-online-installer-{{ harbor_version }}.tgz
harbor_admin_password: 20Dino00
harbor_db_password: HISTORY_PURGED_SECRET

0
roles/harbor-registry/templates/harbor-oidc.json → roles/harbor-registry/files/harbor-oidc.json
View File

24
roles/harbor-registry/tasks/main.yaml
View File

@@ -5,10 +5,6 @@
- docker.io
- docker-compose
- set_fact:
harbor_version: v2.10.0
harbor_file: harbor-online-installer-{{ harbor_version }}.tgz
- name: Create /data/ dir
file:
path: /data/
@@ -23,24 +19,26 @@
unarchive:
remote_src: true
src: /opt/harbor-online-installer-v2.10.0.tgz
dest: /opt/harbor/
dest: /opt/
register: release
- name: Copy harbor config
template:
src: harbor.config.yaml
dest: /opt/harbor/harbor.yaml
dest: /opt/harbor/harbor.yml # mind the missing a
register: config
- name: run installer
shell:
cmd: ./install.sh
chdir: /opt/harbor/
- name: Read in OIDC-json
set_fact:
oidc_config_json: "{{ lookup('file','harbor-oidc.json') | from_json }}"
when: config.changed or release.changed
notify: restart harbor
- name: Inject OIDC Config
line_in_file:
file: /opt/harbor/common/config/core/env
line: CONFIG_OVERWRITE_JSON={{ oidc_config_json }}
lineinfile:
state: present
path: /opt/harbor/common/config/core/env
line: CONFIG_OVERWRITE_JSON={{ lookup('file','harbor-oidc.json') | from_json | to_json }}
regex: CONFIG_OVERWRITE_JSON=
notify: restart harbor

4
roles/harbor-registry/templates/harbor.config.yaml
View File

@@ -33,12 +33,12 @@ external_url: https://harbor.atlantishq.de
# The initial password of Harbor admin
# It only works in first time to install harbor
# Remember Change the admin password from UI after launching Harbor.
harbor_admin_password: Harbor12345
harbor_admin_password: {{ harbor_admin_password }}
# Harbor DB configuration
database:
# The password for the root user of Harbor DB. Change this before any production use.
password: root123
password: {{ harbor_db_password }}
# The maximum number of connections in the idle connection pool. If it <=0, no idle connections are retained.
max_idle_conns: 100
# The maximum number of open connections to the database. If it <= 0, then there is no limit on the number of open connections.