titan-iac/services/harbor/helmrelease.yaml

apiVersion: helm.toolkit.fluxcd.io/v2
kind: HelmRelease
metadata:
  name: harbor
  namespace: flux-system
spec:
  interval: 15m
  targetNamespace: harbor
  install:
    createNamespace: false
  chart:
    spec:
      chart: harbor
      version: 1.17.1
      sourceRef:
        kind: HelmRepository
        name: harbor
        namespace: flux-system
  values:
    expose:
      type: ingress
      ingress:
        className: traefik
        hosts:
          core: registry.bstein.dev
        annotations:
          cert-manager.io/cluster-issuer: letsencrypt-production
      tls:
        enabled: true
        certSource: secret
        secret:
          secretName: harbor-tls
    externalURL: https://registry.bstein.dev
    notary:
      enabled: false
    harborAdminPassword: "ENCRYPT-ME-WITH-SOPS"
    database:
      type: external
      external:
        host: postgres-service.postgres.svc.cluster.local
        port: 5432
        username: harbor
        password: "ENCRYPT-ME-WITH-SOPS"
        sslmode: disable
      coreDatabase: harbor
    redis:
      type: internal
    persistence:
      persistentVolumeClaim:
        registry:
          storageClass: astreae
          accessMode: ReadWriteOnce
          size: 100Gi
        jobservice:
          storageClass: astreae
          accessMode: ReadWriteOnce
          size: 5Gi
        redis:
          storageClass: astreae
          accessMode: ReadWriteOnce
          size: 2Gi
        trivy:
          storageClass: astreae
          accessMode: ReadWriteOnce
          size: 5Gi
      chartmuseum:
        enabled: false
    trivy:
      enabled: true
added harbor 2025-08-10 20:40:22 -05:00			`apiVersion: helm.toolkit.fluxcd.io/v2`
			`kind: HelmRelease`
			`metadata:`
			`name: harbor`
			`namespace: flux-system`
			`spec:`
			`interval: 15m`
			`targetNamespace: harbor`
			`install:`
			`createNamespace: false`
			`chart:`
			`spec:`
			`chart: harbor`
			`version: 1.17.1`
			`sourceRef:`
			`kind: HelmRepository`
			`name: harbor`
			`namespace: flux-system`
			`values:`
			`expose:`
			`type: ingress`
			`ingress:`
			`className: traefik`
			`hosts:`
			`core: registry.bstein.dev`
			`annotations:`
			`cert-manager.io/cluster-issuer: letsencrypt-production`
			`tls:`
			`enabled: true`
			`certSource: secret`
			`secret:`
			`secretName: harbor-tls`
			`externalURL: https://registry.bstein.dev`
			`notary:`
			`enabled: false`
			`harborAdminPassword: "ENCRYPT-ME-WITH-SOPS"`
			`database:`
			`type: external`
			`external:`
			`host: postgres-service.postgres.svc.cluster.local`
			`port: 5432`
			`username: harbor`
			`password: "ENCRYPT-ME-WITH-SOPS"`
			`sslmode: disable`
			`coreDatabase: harbor`
			`redis:`
			`type: internal`
			`persistence:`
			`persistentVolumeClaim:`
			`registry:`
			`storageClass: astreae`
			`accessMode: ReadWriteOnce`
			`size: 100Gi`
			`jobservice:`
			`storageClass: astreae`
			`accessMode: ReadWriteOnce`
			`size: 5Gi`
			`redis:`
			`storageClass: astreae`
			`accessMode: ReadWriteOnce`
			`size: 2Gi`
			`trivy:`
			`storageClass: astreae`
			`accessMode: ReadWriteOnce`
			`size: 5Gi`
			`chartmuseum:`
			`enabled: false`
			`trivy:`
			`enabled: true`