写在最前

在 ARM 环境中部署 Harbor 的确有些复杂，但幸运的是，GitHub 上有一些大佬提供了预编译的 Harbor 版本安装包，能够大大简化我们的部署过程。本篇文章将使用 wise2c-devops 大佬提供的编译结果来完成 Harbor 的安装，从而省去编译过程，直接实现快速部署。

不不推荐将 Harbor 部署在 Kubernetes 中，因为如果某个节点故障且未快速恢复，可能会破坏 Harbor 组件的完整性，导致拉取异常或死循环。将 Harbor 部署在独立节点上更为稳妥，能确保更好的稳定性。

https://github.com/wise2c-devops/build-harbor-aarch64?tab=readme-ov-file

1. docker 部署

自行部署docker与docker-compose选择版本wget下载即可

https://github.com/wise2c-devops/build-harbor-aarch64/releases/tag/v2.13.0

在登录页面输入默认的用户名和密码：

• 用户名：admin

• 密码：Harbor12345

# 下载到服务器
wget https://github.com/wise2c-devops/build-harbor-aarch64/releases/download/v2.13.0/harbor-offline-installer-aarch64-v2.13.0.tgz

# 解压
tar -xf harbor-offline-installer-aarch64-v2.13.0.tgz

# 复制配置文件
cd harbor
cp harbor.yml.tmpl harbor.yml

# 编辑harbor.yaml

# 安装！
./install.sh
[root@iZj6c0tl20kby7y2kezmk0Z harbor]# ./install.sh 

[Step 0]: checking if docker is installed ...

Note: docker version: 26.1.4

[Step 1]: checking docker-compose is installed ...

Note: Docker Compose version v2.27.1

[Step 2]: loading Harbor images ...
Loaded image: goharbor/redis-photon:v2.13.0-aarch64
Loaded image: goharbor/harbor-redis-base:v2.13.0-aarch64
Loaded image: goharbor/trivy-adapter-photon:v2.13.0-aarch64
Loaded image: goharbor/harbor-trivy-adapter-base:v2.13.0-aarch64
Loaded image: goharbor/registry-photon:v2.13.0-aarch64
Loaded image: goharbor/harbor-jobservice-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-core-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-exporter-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-registry-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-nginx-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-log-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-portal:v2.13.0-aarch64
Loaded image: goharbor/harbor-portal-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-db-base:v2.13.0-aarch64
Loaded image: goharbor/prepare:v2.13.0-aarch64
Loaded image: goharbor/harbor-registryctl:v2.13.0-aarch64
Loaded image: goharbor/harbor-registryctl-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-jobservice:v2.13.0-aarch64
Loaded image: goharbor/harbor-db:v2.13.0-aarch64
Loaded image: goharbor/harbor-prepare-base:v2.13.0-aarch64
Loaded image: goharbor/harbor-exporter:v2.13.0-aarch64
Loaded image: goharbor/nginx-photon:v2.13.0-aarch64
Loaded image: goharbor/harbor-log:v2.13.0-aarch64
Loaded image: goharbor/harbor-core:v2.13.0-aarch64


[Step 3]: preparing environment ...

[Step 4]: preparing harbor configs ...
prepare base dir is set to /app/harbor
WARNING:root:WARNING: HTTP protocol is insecure. Harbor will deprecate http protocol in the future. Please make sure to upgrade to https
Generated configuration file: /config/portal/nginx.conf
Generated configuration file: /config/log/logrotate.conf
Generated configuration file: /config/log/rsyslog_docker.conf
Generated configuration file: /config/nginx/nginx.conf
Generated configuration file: /config/core/env
Generated configuration file: /config/core/app.conf
Generated configuration file: /config/registry/config.yml
Generated configuration file: /config/registryctl/env
Generated configuration file: /config/registryctl/config.yml
Generated configuration file: /config/db/env
Generated configuration file: /config/jobservice/env
Generated configuration file: /config/jobservice/config.yml
copy /data/secret/tls/harbor_internal_ca.crt to shared trust ca dir as name harbor_internal_ca.crt ...
ca file /hostfs/data/secret/tls/harbor_internal_ca.crt is not exist
copy  to shared trust ca dir as name storage_ca_bundle.crt ...
copy None to shared trust ca dir as name redis_tls_ca.crt ...
Generated and saved secret to file: /data/secret/keys/secretkey
Successfully called func: create_root_cert
Generated configuration file: /compose_location/docker-compose.yml
Clean up the input dir


Note: stopping existing Harbor instance ...


[Step 5]: starting Harbor ...
[+] Running 10/10
 ✔ Network harbor_harbor        Created                                                                                                                  0.0s 
 ✔ Container harbor-log         Started                                                                                                                  0.8s 
 ✔ Container harbor-db          Started                                                                                                                  1.4s 
 ✔ Container redis              Started                                                                                                                  1.6s 
 ✔ Container registryctl        Started                                                                                                                  1.3s 
 ✔ Container registry           Started                                                                                                                  1.4s 
 ✔ Container harbor-portal      Started                                                                                                                  1.5s 
 ✔ Container harbor-core        Started                                                                                                                  2.0s 
 ✔ Container harbor-jobservice  Started                                                                                                                  2.5s 
 ✔ Container nginx              Started                                                                                                                  2.6s 
✔ ----Harbor has been installed and started successfully.----

1.1 配置详解

# 修改harbor的域名，例如harbor.tanqidi.com
hostname: localhost

# 如果不需要使用https则需要注释它才能启动，否则会启动异常 The protocol is https but attribute ssl_cert is not set
https:
  # https port for harbor, default is 443
  port: 443
  # The path of cert and key files for nginx
  certificate: /your/certificate/path
  private_key: /your/private/key/path
  # enable strong ssl ciphers (default: false)
  # strong_ssl_ciphers: false

# 修改harbor镜像存储路径
# The default data volume
data_volume: /data/harbor

2. kubernetes 部署

写在最后

有时间的研究一下大佬是如何构建的，这的确很有学习意义