You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/software_ready/ADRs/harbor_as_image_registry.md
+4-4
Original file line number
Diff line number
Diff line change
@@ -17,7 +17,7 @@ The question is: **Which container image registry should we use for our on-premi
17
17
18
18
***Harbor:** An open-source, cloud-native registry that provides vulnerability scanning, role-based access control (RBAC), and image replication. It integrates well with Kubernetes and supports OCI-compliant images.
19
19
***JFrog Artifactory:** A universal artifact repository manager that supports container images, binaries, and other artifacts. It offers advanced features like high availability, replication, and enterprise-grade security but comes with licensing costs.
20
-
***Sonatype Nexus:** A repository manager that supports container images and other artifacts. It provides features like vulnerability scanning and integration with CI/CD pipelines but lacks some Kubernetes-specific optimizations.
20
+
***Sonatype Nexus:** A repository manager that supports container images and other artifacts. It provides features like vulnerability scanning and integration with CI/CD pipelines. Has almost feature parity with Artifactory, and also comes with licensing costs.
21
21
22
22
## Decision Outcome
23
23
@@ -32,12 +32,12 @@ Chosen option: **Harbor**, because it provides a strong balance of features, ope
32
32
* Harbor supports Helm charts and OCI-compliant libraries, making it versatile for managing not only container images but also other Kubernetes-related artifacts.
33
33
34
34
***Bad, because:**
35
-
* Harbor's user interface and feature set may not be as polished or extensive as JFrog Artifactory.
35
+
* Harbor's user interface and feature set may not be as polished or extensive as JFrog Artifactory. User/role section is no way as feature rich and extensible as the competitors, only providing a fixed set of roles with limits in how much you can change.
36
36
* It lacks some advanced enterprise features, such as those offered by Artifactory, which might be needed for highly complex environments.
37
-
*While Harbor supports Helm charts, its feature set for managing non-container artifacts may not be as comprehensive as JFrog Artifactory or Sonatype Nexus.
37
+
*It only supports OCI and helm repositories as its types of artifacts. If you need more than that, then choose one of JFrog Artifactory or Sonatype Nexus.
38
38
39
39
### Recommendations
40
40
41
41
* For organizations that require a cost-effective, Kubernetes-native solution with strong security features and support for Helm charts and OCI-compliant libraries, Harbor is an excellent choice.
42
42
* For teams with complex artifact management needs and a budget for licensing, JFrog Artifactory may be a better fit due to its advanced features and broader artifact support.
43
-
* For simpler use cases or teams already using Sonatype Nexus for other artifacts, Nexus can be considered, though it may lack Kubernetes-specific optimizations and advanced Helm chart support.
0 commit comments