Use Harbor ourselves #237
There are no files selected for viewing
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,75 @@ | ||
| # Harbor Community Proposal - Eating your own dog food Container Registry | ||
|
|
||
| Status: In Progress | ||
| Created by: Vadim Bauer | ||
| Created time: January 24, 2024 1:17 PM | ||
| Last Edited: January 24, 2024 1:52 PM | ||
|
|
||
| # **Proposal:Use Our Own Registry** | ||
|
|
||
| # **Abstract** | ||
|
|
||
| Use of our Harbor registry to distribute our own container images. We should be the first to adopt our own technology. If we are not willing to utilize our own application for day-to-date use, don't expect others to do so. | ||
|
|
||
| # **Background** | ||
|
|
||
| Today, Harbor is the most popular and widely recognized full-fledged container registry on the market. Yet, we are not using our own product ourselfs. Hence the [dogfooding](https://www.projectmanagement.com/articles/217092/eat-your-own-dog-food#_=_) title. | ||
|
|
||
| # **Proposal** | ||
|
|
||
| Deploy and operate Harbor on AWS to distribute containerized images of Harbor. | ||
|
|
||
| With support and sponsoring from [8gears](https://container-registry.com/), a 24/7 operation can be accomplished. | ||
|
|
||
| # **Non-Goals** | ||
|
|
||
| # Rationale | ||
|
|
||
| Here are some advantages of using our own Registry. | ||
|
|
||
| *Eating your own dog food* doesn't just mean we should use our own product. It also means you should attempt to install it and configure it ourselves. | ||
|
|
||
| - Better understanding of the end users' experience. | ||
| - Product's quality would significantly improve. | ||
| - Better documentation | ||
| - Users can see how Harbor can be used in real case scenario | ||
|
|
||
| ## Costs | ||
|
|
||
| The used AWS account is sponsored by AWS. There is currently no cost limited or restriction. | ||
|
|
||
| - 80% of the costs will be traffic. Assuming 10 TiB monthly traffic per month would generate ~870-1000 USD (10240 GiB * 0.085USD/GiB) | ||
| - Fixed costs will be around 200-300 USD a month. | ||
| - As a Fallback, Cloudflare R2 can be used instead of AWS S3, where there are no egress fees. However there are no agreements between CNCF and Cloudflare in place.. | ||
|
|
||
| # **Compatibility** | ||
|
|
||
| - | ||
| - | ||
|
|
||
| # **Implementation** | ||
|
|
||
|  | ||
|
|
||
| Better understanding of the end users' experience | ||
|
|
||
| ## Phase 0 | ||
|
|
||
| - Deploy Harbor on AWS registry.goharbor.io | ||
| - Mirror all images from Docker Hub to Harbor | ||
| - Use registry to push test artifacts | ||
| - Parallel operation next to Docker Hub. | ||
|
|
||
| ## Phase I | ||
|
|
||
| - Dedicated IaC Repo containing the infrastructure | ||
| - Since all images from Docker Hub are already in Harbor. | ||
| - Replace image references in Documentation | ||
| - Replace Image references in Compose | ||
| - Replace image references in Helm | ||
|
Contributor
There was a problem hiding this comment. We aim to use this instance as the single source of truth for serving our release images, meaning all network traffic will be redirected from Docker Hub to this instance. The main concern is whether we can provide and ensure the same level of stability as Docker Hub, as well as allocate dedicated resources to monitor and maintain this instance. Could we set a criterion where, if we don't encounter continuous failures while pulling images in the Harbor CI for three months, we can then consider switching the online package traffic to this instance and eventually to Harbor Helm?
Member
Author
There was a problem hiding this comment. We can replicate images from registry.goharbor.io to dockerhub as a fallback, for cases if users can't pull from registry.goharbor.io Over the years we had remarkable availability of registry.goharbor.io |
||
| - Keep Docker Hub account as a fallback | ||
| - Replicate images from Harbor to Docker Hub | ||
|
|
||
| ## Phase II - Future | ||
|
|
||
| - Potentially we can disable DockerHub Account | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.