helm安装Harbor

curl https://raw.githubusercontent.com/helm/helm/master/scripts/get-helm-3 | bash

helm repo add harbor https://helm.goharbor.io
helm repo update

helm search repo harbor --versions

helm pull harbor/harbor --version 1.15.0

expose:
  # Set how to expose the service. Set the type as "ingress", "clusterIP", "nodePort" or "loadBalancer"
  # and fill the information in the corresponding section
  # 访问 Harbor服务的方式。本示例使用 nodePort。
  type: nodePort 
  tls:
    # Enable TLS or not.
    # Delete the "ssl-redirect" annotations in "expose.ingress.annotations" when TLS is disabled and "expose.type" is "ingress"
    # Note: if the "expose.type" is "ingress" and TLS is disabled,
    # the port must be included in the command when pulling/pushing images.
    # Refer to https://github.com/goharbor/harbor/issues/5291 for details.
    # tls：指定是否启用 HTTPS。多数情况下设置为 false,这里我们使用的是false
    enabled: false

# If Harbor is deployed behind the proxy, set it as the URL of proxy
# 暴露给租户的 URL。替换你的服务器IP，
#请指定 externalURL，如果您访问 Harbor有问题，该字段会对解决问题非常有用。
#请确保在本教程中使用 HTTP协议和其对应的nodePort
externalURL: http://xx.xx.xx.xx:30002

persistence:
  enabled: true
  # Setting it to "keep" to avoid removing PVCs during a helm delete
  # operation. Leaving it empty will delete PVCs after the chart deleted
  # (this does not apply for PVCs that are created for internal database
  # and redis components, i.e. they are never deleted automatically)
  resourcePolicy: "keep"
  persistentVolumeClaim:
    registry:
      # Use the existing PVC which must be created manually before bound,
      # and specify the "subPath" if the PVC is shared with other components
      existingClaim: ""
      # Specify the "storageClass" used to provision the volume. Or the default
      # StorageClass will be used (the default).
      # Set it to "-" to disable dynamic provisioning
      storageClass: "localpath" # 根据kubectl get sc 选择你这边需要的storageClass
      subPath: ""

grep 'repository: ' values.yaml

    repository: ccr.ccs.tencentyun.com/xxxxxx/nginx-photon
    repository: ccr.ccs.tencentyun.com/xxxxxx/harbor-portal
    repository: ccr.ccs.tencentyun.com/xxxxxx/harbor-core
    repository: ccr.ccs.tencentyun.com/xxxxxx/harbor-jobservice
      repository: ccr.ccs.tencentyun.com/xxxxxx/registry-photon
      repository: ccr.ccs.tencentyun.com/xxxxxx/harbor-registryctl
    repository: ccr.ccs.tencentyun.com/xxxxxx/trivy-adapter-photon
      repository: ccr.ccs.tencentyun.com/xxxxxx/harbor-db
      repository: ccr.ccs.tencentyun.com/xxxxxx/redis-photon
    repository: ccr.ccs.tencentyun.com/xxxxxx/harbor-exporter

kubectl create secret generic harbor-admin-secret \
  --from-literal=HARBOR_ADMIN_PASSWORD=密码 \
  -n harbor

existingSecretAdminPassword: "harbor-admin-secret"  #选择secret
existingSecretAdminPasswordKey: HARBOR_ADMIN_PASSWORD  #选择对应的key

cd harbor/  #进入到values.yaml同级目录
helm install harbor -n harbor .

helm list -n harbor
NAME  	NAMESPACE	REVISION	UPDATED                                	STATUS  	CHART        	APP VERSION
harbor	harbor   	2       	2024-11-13 14:49:24.015848301 +0800 CST	deployed	harbor-1.15.0	2.11.0

kubectl  get pod -n harbor
NAME                                 READY   STATUS    RESTARTS   AGE
harbor-core-59794977f5-dmjhd         1/1     Running   0          29m
harbor-database-0                    1/1     Running   0          35m
harbor-jobservice-5696c7c865-tkxj8   1/1     Running   0          29m
harbor-nginx-7dc98bb7f-6qg9n         1/1     Running   0          35m
harbor-portal-747449d7bd-4w4z7       1/1     Running   0          35m
harbor-redis-0                       1/1     Running   0          35m
harbor-registry-7d79b788f4-whwpm     2/2     Running   0          29m
harbor-trivy-0                       1/1     Running   0          35m