Maniphest T202504

Evaluate VMWare's Harbour as a docker registry
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	Joe
	Aug 22 2018, 10:24 AM

Description

Harbour is, by all definitions, a superior docker registry for our needs:

It has multitenancy builtin
Can (quite easily) integrate with LDAP
Is thought to work in multiple instances
Has native support for Swift including removal of old images and TLS if supported https://docs.docker.com/registry/storage-drivers/swift/
Has support for cross-instance replication (multi-dc too)
Has support for read-only builtin (we could also separate the public and private instances this way)
Can use clair to scan images for vulnerabilities
Has an api that is richer than the original docker one, with client libraries in python

I think we should start testing it out ASAP, before migrating our registry becomes too complex.

Related Objects
Search...

Status	Assigned	Task
Resolved	• fsero	T202504 Evaluate VMWare's Harbour as a docker registry
Open	None	T209271 improve docker registry architecture
Resolved	• fsero	T210071 debianize docker-registry 2.7.0-rc0 and upload in stretch-wikimedia
Resolved	• fsero	T210076 set up a test node with new version, Redis as cache, a new Swift container and export metrics over graphana
Resolved	• fsero	T214289 Make swift containers for docker registry cross replicated.
Open	None	T215809 Set up a local redis proxy since docker-registry can only connect to one redis instance for caching
Resolved	• fsero	T215810 Package envoy 1.9.X for stretch and use it as redis proxy on docker registry
Resolved	• fsero	T221099 expose metrics in prometheus format for new docker-registry and create a grafana dashboard
Resolved	• fsero	T221101 migrate endpoint from old registry instance to new one
Resolved	• fsero	T221759 create and enable alerting on docker_registry_ha
Resolved	• fsero	T222210 placeholder task for migration problems
Resolved	akosiaris	T256726 redis for docker-registry should have maxmemory-policy set to allkeys-lru
Open	None	T256762 Fix nginx config and caching for docker registry

Event Timeline

Joe created this task.Aug 22 2018, 10:24 AM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 22 2018, 10:24 AM

Reedy updated the task description. (Show Details)Aug 22 2018, 10:28 AM

colewhite subscribed.Aug 28 2018, 9:36 PM

colewhite mentioned this in T179696: Homepage for https://docker-registry.wikimedia.org.Aug 28 2018, 9:46 PM

ArielGlenn triaged this task as Medium priority.Aug 29 2018, 10:25 AM

• fsero subscribed.Nov 8 2018, 9:52 AM

• GTirloni subscribed.Nov 12 2018, 11:43 AM

hashar removed a project: Continuous-Integration-Infrastructure (shipyard).Dec 31 2018, 3:10 PM

• GTirloni unsubscribed.Dec 31 2018, 6:44 PM

• Phabricator_maintenance moved this task from Backlog to Acknowledged on the SRE board.Jan 26 2019, 10:17 PM

since we are not moving forward with Harbor at least for now, closing this task. The evaluation was done and the results are listed on this task https://phabricator.wikimedia.org/T209271

• fsero closed subtask T209271: improve docker registry architecture as Resolved.Jul 24 2019, 8:38 AM

• fsero reopened subtask T209271: improve docker registry architecture as Open.

Evaluate VMWare's Harbour as a docker registryClosed, ResolvedPublicActions

Description

Related ObjectsSearch...

Event Timeline

Evaluate VMWare's Harbour as a docker registry
Closed, ResolvedPublic
Actions

Related Objects
Search...