Docker

Self Hosted Docker Image Repo Using Harbor

Jamie Banks

Jamie Banks

2 min read
Self Hosted Docker Image Repo Using Harbor
Photo by Maksym Kaharlytskyi / Unsplash

Harbor is an open-source container image registry that enhances the Docker Distribution project by providing a robust set of features tailored for enterprise needs. It offers:

  • Role-Based Access Control (RBAC): Manage user permissions with fine-grained control.
  • Image Vulnerability Scanning: Automatically scan images for known vulnerabilities using tools like Trivy or Clair.
  • Content Signing and Verification: Ensure image integrity and authenticity with Notary.
  • Replication Policies: Mirror images across multiple Harbor instances or other registries.
  • Audit Logs: Maintain detailed records of user activities for compliance.
  • LDAP/AD Integration: Seamlessly integrate with enterprise identity providers.

Harbor empowers teams to build secure software supply chains and efficiently manage container images at scale.

Why Use Harbor?

Harbor stands out for several reasons:

  • Security-First: Incorporates CVE scanning, image signing, and RBAC to safeguard your containers.
  • 🚀 High Performance: Supports large-scale deployments with built-in caching and replication.
  • 🔄 Interoperability: Compatible with OCI-compliant images and integrates with Kubernetes, Helm, and CI/CD systems.
  • 🆓 Open Source: Fully open-source and actively maintained under the CNCF umbrella.

Whether you're self-hosting for compliance or seeking full control over your image storage, Harbor offers a mature and flexible solution.

Installing Harbor (Quick Start)

Getting started with Harbor is straightforward. Here's a high-level overview:

Prerequisites:

  • Docker and Docker Compose installed
  • A machine or VM with at least 2 CPU cores, 4 GB RAM, and 40 GB disk space
  • Optional: A domain name and TLS certificate for HTTPS support

Step 1: Download and Extract Harbor

wget https://github.com/goharbor/harbor/releases/download/v2.12.3/harbor-online-installer-v2.12.3.tgz
tar xvf harbor-online-installer-v2.12.3.tgz
cd harbor

Step 2: Configure harbor.yml

Copy and edit the configuration file:

cp harbor.yml.tmpl harbor.yml
nano harbor.yml

Set the hostname (e.g., myregistry.local) and configure SSL certificates or enable HTTP for testing.

Step 3: Install Harbor

sudo ./install.sh

After installation, access the Harbor web UI at your configured domain or IP address.

Why Do I Use It?

I use Harbor essentially because I like trying out different Source Control Management (SCM) platforms. I've gone from GitHub to OneDev, to self-hosted GitLab all in the last few months alone. I enjoy doing this so having a dedicated place for my images to live is pretty crucial. Harbor just works.

Learn More

Harbor offers a rich set of features and deployment options, including high-availability setups, Helm charts for Kubernetes, and external database integration.

📝 Full installation instructions are available here:
👉 https://goharbor.io/docs/

Whether you're running a small development team or managing thousands of images in production, Harbor is a powerful ally in securing and organising your containerised workflows.

Read more