From f2c55adf5bb73a6ecd2e8de348d82cd7e01e0654 Mon Sep 17 00:00:00 2001 From: Bitnami Bot Date: Fri, 9 Dec 2022 21:48:18 +0100 Subject: [PATCH] [bitnami/harbor-portal] Release 2.6.2-debian-11-r6 (#16311) Signed-off-by: Bitnami Containers Signed-off-by: Bitnami Containers --- bitnami/harbor-portal/2/debian-11/Dockerfile | 4 +- .../opt/bitnami/.bitnami_components.json | 2 +- .../opt/bitnami/scripts/harbor-portal-env.sh | 31 ++ .../scripts/harbor-portal/entrypoint.sh | 6 +- .../scripts/harbor-portal/postunpack.sh | 21 +- .../bitnami/scripts/harbor-portal/setup.sh | 5 +- .../rootfs/opt/bitnami/scripts/libharbor.sh | 497 +++++++++++++++++- 7 files changed, 552 insertions(+), 14 deletions(-) create mode 100644 bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal-env.sh diff --git a/bitnami/harbor-portal/2/debian-11/Dockerfile b/bitnami/harbor-portal/2/debian-11/Dockerfile index 2a9987fbcc9d..26853898b4fd 100644 --- a/bitnami/harbor-portal/2/debian-11/Dockerfile +++ b/bitnami/harbor-portal/2/debian-11/Dockerfile @@ -4,7 +4,7 @@ ARG TARGETARCH LABEL org.opencontainers.image.authors="https://bitnami.com/contact" \ org.opencontainers.image.description="Application packaged by Bitnami" \ - org.opencontainers.image.ref.name="2.6.2-debian-11-r5" \ + org.opencontainers.image.ref.name="2.6.2-debian-11-r6" \ org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/harbor-portal" \ org.opencontainers.image.title="harbor-portal" \ org.opencontainers.image.vendor="VMware, Inc." \ @@ -21,7 +21,7 @@ SHELL ["/bin/bash", "-o", "pipefail", "-c"] RUN install_packages ca-certificates curl libcrypt1 libgeoip1 libpcre3 libssl1.1 procps zlib1g RUN mkdir -p /tmp/bitnami/pkg/cache/ && cd /tmp/bitnami/pkg/cache/ && \ COMPONENTS=( \ - "nginx-1.23.2-1-linux-${OS_ARCH}-debian-11" \ + "nginx-1.23.2-2-linux-${OS_ARCH}-debian-11" \ "render-template-1.0.4-1-linux-${OS_ARCH}-debian-11" \ "harbor-2.6.2-0-linux-${OS_ARCH}-debian-11" \ "gosu-1.14.0-156-linux-${OS_ARCH}-debian-11" \ diff --git a/bitnami/harbor-portal/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json b/bitnami/harbor-portal/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json index 1f68d01c17d4..3cd2fce59f44 100644 --- a/bitnami/harbor-portal/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json +++ b/bitnami/harbor-portal/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json @@ -18,7 +18,7 @@ "digest": "8643036fdd3909a1f96fc8d2d09fa936c5c77cdb0ff424223f856b7a75c5e924", "distro": "debian-11", "type": "NAMI", - "version": "1.23.2-1" + "version": "1.23.2-2" }, "render-template": { "arch": "amd64", diff --git a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal-env.sh b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal-env.sh new file mode 100644 index 000000000000..8036585cea8f --- /dev/null +++ b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal-env.sh @@ -0,0 +1,31 @@ +#!/bin/bash +# +# Environment configuration for harbor-portal + +# The values for all environment variables will be set in the below order of precedence +# 1. Custom environment variables defined below after Bitnami defaults +# 2. Constants defined in this file (environment variables with no default), i.e. BITNAMI_ROOT_DIR +# 3. Environment variables overridden via external files using *_FILE variables (see below) +# 4. Environment variables set externally (i.e. current Bash context/Dockerfile/userdata) + +# Load logging library +# shellcheck disable=SC1090,SC1091 +. /opt/bitnami/scripts/liblog.sh + +export BITNAMI_ROOT_DIR="/opt/bitnami" +export BITNAMI_VOLUME_DIR="/bitnami" + +# Logging configuration +export MODULE="${MODULE:-harbor-portal}" +export BITNAMI_DEBUG="${BITNAMI_DEBUG:-false}" + +# Paths +export HARBOR_PORTAL_BASE_DIR="${BITNAMI_ROOT_DIR}/harbor" +export HARBOR_PORTAL_NGINX_CONF_DIR="${HARBOR_PORTAL_BASE_DIR}/nginx-conf" +export HARBOR_PORTAL_NGINX_CONF_FILE="${HARBOR_PORTAL_NGINX_CONF_DIR}/nginx.conf" + +# System users +export HARBOR_PORTAL_DAEMON_USER="harbor" +export HARBOR_PORTAL_DAEMON_GROUP="harbor" + +# Custom environment variables may be defined below diff --git a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/entrypoint.sh b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/entrypoint.sh index ac414cf505a9..dcd3c82f2808 100755 --- a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/entrypoint.sh +++ b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/entrypoint.sh @@ -5,7 +5,7 @@ set -o errexit set -o nounset set -o pipefail -# set -o xtrace # Uncomment this line for debugging purpose +# set -o xtrace # Uncomment this line for debugging purposes # Load libraries . /opt/bitnami/scripts/libbitnami.sh @@ -17,10 +17,10 @@ set -o pipefail print_welcome_page if [[ "$1" = "/opt/bitnami/scripts/nginx/run.sh" ]]; then - info "** Starting Harbor Portal setup **" + info "** Starting harbor-portal setup **" /opt/bitnami/scripts/nginx/setup.sh /opt/bitnami/scripts/harbor-portal/setup.sh - info "** Harbor Portal setup finished! **" + info "** harbor-portal setup finished! **" fi echo "" diff --git a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/postunpack.sh b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/postunpack.sh index 6dab37e812e0..90c1449e64ae 100755 --- a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/postunpack.sh +++ b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/postunpack.sh @@ -2,19 +2,26 @@ # shellcheck disable=SC1091 +set -o errexit +set -o nounset +set -o pipefail +# set -o xtrace # Uncomment this line for debugging purposes + # Load libraries . /opt/bitnami/scripts/libfile.sh . /opt/bitnami/scripts/libfs.sh +. /opt/bitnami/scripts/libos.sh . /opt/bitnami/scripts/libnginx.sh . /opt/bitnami/scripts/libharbor.sh -export HARBOR_PORTAL_BASE_DIR="/opt/bitnami/harbor" -export HARBOR_PORTAL_NGINX_CONF_DIR="${HARBOR_PORTAL_BASE_DIR}/nginx-conf" -export HARBOR_PORTAL_NGINX_CONF_FILE="${HARBOR_PORTAL_NGINX_CONF_DIR}/nginx.conf" - # Load Nginx environment variables . /opt/bitnami/scripts/nginx-env.sh +# Load environment +. /opt/bitnami/scripts/harbor-portal-env.sh + +ensure_user_exists "$HARBOR_PORTAL_DAEMON_USER" --group "$HARBOR_PORTAL_DAEMON_GROUP" + # Ensure NGINX temp folders exists for dir in "${NGINX_BASE_DIR}/client_body_temp" "${NGINX_BASE_DIR}/proxy_temp" "${NGINX_BASE_DIR}/fastcgi_temp" "${NGINX_BASE_DIR}/scgi_temp" "${NGINX_BASE_DIR}/uwsgi_temp"; do ensure_dir_exists "$dir" @@ -23,10 +30,12 @@ done # Fix for CentOS Internal TLS if [[ -f /etc/pki/tls/certs/ca-bundle.crt ]]; then chmod g+w /etc/pki/tls/certs/ca-bundle.crt + chown "$HARBOR_PORTAL_DAEMON_USER" /etc/pki/tls/certs/ca-bundle.crt fi if [[ -f /etc/pki/tls/certs/ca-bundle.trust.crt ]]; then chmod g+w /etc/pki/tls/certs/ca-bundle.trust.crt + chown "$HARBOR_PORTAL_DAEMON_USER" /etc/pki/tls/certs/ca-bundle.trust.crt fi # Loading bitnami paths @@ -37,10 +46,10 @@ cp -a "${HARBOR_PORTAL_NGINX_CONF_DIR}/." "$NGINX_CONF_DIR" # Remove the folder, otherwise it will get exposed when accessing via browser rm -rf "${HARBOR_PORTAL_NGINX_CONF_DIR}" -# Ensure the non-root user has writing permission at a set of directories +# Ensure a set of directories exist and the non-root user has write privileges to them read -r -a directories <<<"$(get_system_cert_paths)" directories+=("$NGINX_CONF_DIR") - for dir in "${directories[@]}"; do chmod -R g+rwX "$dir" + chown -R "$HARBOR_PORTAL_DAEMON_USER" "$dir" done diff --git a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/setup.sh b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/setup.sh index 8a253e5e8dc6..fbb78900d897 100755 --- a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/setup.sh +++ b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/harbor-portal/setup.sh @@ -5,9 +5,12 @@ set -o errexit set -o nounset set -o pipefail -# set -o xtrace +# set -o xtrace # Uncomment this line for debugging purposes # Load libraries . /opt/bitnami/scripts/libharbor.sh +# Load environment +. /opt/bitnami/scripts/harbor-portal-env.sh + install_custom_certs diff --git a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/libharbor.sh b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/libharbor.sh index 2965dc02ad82..c33761e3e2e4 100644 --- a/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/libharbor.sh +++ b/bitnami/harbor-portal/2/debian-11/rootfs/opt/bitnami/scripts/libharbor.sh @@ -6,6 +6,8 @@ # Load Generic Libraries . /opt/bitnami/scripts/liblog.sh +. /opt/bitnami/scripts/libos.sh +. /opt/bitnami/scripts/libservice.sh ######################## # Get the paths relevant to CA certs depending @@ -76,7 +78,6 @@ install_cert() { # None ######################### install_custom_certs() { - local installed=false # Install any internalTLS CA authority certificate, found under @@ -117,3 +118,497 @@ install_custom_certs() { info "No custom certificates were installed in the system" fi } + +######################## +# Generate an .env file contents given an input string containing all envvars +# Arguments: +# None +# Returns: +# String +######################### +harbor_generate_env_file_contents() { + local -r envvars_string="${1:?missing envvars}" + echo "#!/bin/bash" + while IFS= read -r ENV_VAR_LINE; do + if [[ ! "$ENV_VAR_LINE" =~ ^[A-Z_] ]]; then + continue + fi + ENV_VAR_NAME="${ENV_VAR_LINE/=*}" + ENV_VAR_VALUE="${ENV_VAR_LINE#*=}" + # Use single quotes to avoid shell expansion, and escape to be parsed properly (even if it contains quotes) + # Escape the value, so it can be parsed as a variable even with quotes set + echo "export ${ENV_VAR_NAME}='${ENV_VAR_VALUE//\'/\'\\\'\'}'" + done <<< "$envvars_string" +} + +######################## +# Print harbor-core runtime environment +# Arguments: +# None +# Returns: +# Boolean +######################### +harbor_core_print_env() { + # The CSRF key can only be up to 32 characters long + HARBOR_CORE_CFG_CSRF_KEY="${HARBOR_CORE_CFG_CSRF_KEY:0:32}" + for var in "${!HARBOR_CORE_CFG_@}"; do + echo "${var/HARBOR_CORE_CFG_/}=${!var}" + done +} + +######################## +# Check if harbor-core is running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_core_running() { + # harbor-core does not create any PID file + # We regenerate the PID file for each time we query it to avoid getting outdated + pgrep -f "$(command -v harbor_core)" > "$HARBOR_CORE_PID_FILE" + + pid="$(get_pid_from_file "$HARBOR_CORE_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if harbor-core is not running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_core_not_running() { + ! is_harbor_core_running +} + +######################## +# Stop harbor-core +# Arguments: +# None +# Returns: +# None +######################### +harbor_core_stop() { + ! is_harbor_core_running && return + stop_service_using_pid "$HARBOR_CORE_PID_FILE" +} + +######################## +# Print harbor-jobservice runtime environment +# Arguments: +# None +# Returns: +# Boolean +######################### +harbor_jobservice_print_env() { + for var in "${!HARBOR_JOBSERVICE_CFG_@}"; do + echo "${var/HARBOR_JOBSERVICE_CFG_/}=${!var}" + done +} + +######################## +# Check if harbor-jobservice is running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_jobservice_running() { + # harbor-jobservice does not create any PID file + # We regenerate the PID file for each time we query it to avoid getting outdated + pgrep -f "$(command -v harbor_jobservice)" > "$HARBOR_JOBSERVICE_PID_FILE" + + pid="$(get_pid_from_file "$HARBOR_JOBSERVICE_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if harbor-jobservice is not running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_jobservice_not_running() { + ! is_harbor_jobservice_running +} + +######################## +# Stop harbor-jobservice +# Arguments: +# None +# Returns: +# None +######################### +harbor_jobservice_stop() { + ! is_harbor_jobservice_running && return + stop_service_using_pid "$HARBOR_JOBSERVICE_PID_FILE" +} + +######################## +# Print harbor-notary-server runtime environment +# Arguments: +# None +# Returns: +# Boolean +######################### +harbor_notary_server_print_env() { + if [[ -n "${HARBOR_NOTARY_SERVER_DATABASE_NAME:-}" ]]; then + HARBOR_NOTARY_SERVER_CFG_DB_URL="postgres://${HARBOR_NOTARY_SERVER_DATABASE_USERNAME:-}:${HARBOR_NOTARY_SERVER_DATABASE_PASSWORD:-}@${HARBOR_NOTARY_SERVER_DATABASE_HOST:-127.0.0.1}:${HARBOR_NOTARY_SERVER_DATABASE_PORT_NUMBER:-5432}/${HARBOR_NOTARY_SERVER_DATABASE_NAME}?sslmode=${HARBOR_NOTARY_SERVER_DATABASE_SSLMODE:-disable}" + fi + for var in "${!HARBOR_NOTARY_SERVER_CFG_@}"; do + echo "${var/HARBOR_NOTARY_SERVER_CFG_/}=${!var}" + done +} + +######################## +# Check if harbor-notary-server is running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_notary_server_running() { + # harbor-notary-server does not create any PID file + # We regenerate the PID file for each time we query it to avoid getting outdated + pgrep -f "$(command -v notary-server)" > "$HARBOR_NOTARY_SERVER_PID_FILE" + + pid="$(get_pid_from_file "$HARBOR_NOTARY_SERVER_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if harbor-notary-server is not running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_notary_server_not_running() { + ! is_harbor_notary_server_running +} + +######################## +# Stop harbor-notary-server +# Arguments: +# None +# Returns: +# None +######################### +harbor_notary_server_stop() { + ! is_harbor_notary_server_running && return + stop_service_using_pid "$HARBOR_NOTARY_SERVER_PID_FILE" +} + +######################## +# Print harbor-notary-signer runtime environment +# Arguments: +# None +# Returns: +# Boolean +######################### +harbor_notary_signer_print_env() { + if [[ -n "${HARBOR_NOTARY_SIGNER_DATABASE_NAME:-}" ]]; then + HARBOR_NOTARY_SIGNER_CFG_DB_URL="postgres://${HARBOR_NOTARY_SIGNER_DATABASE_USERNAME:-}:${HARBOR_NOTARY_SIGNER_DATABASE_PASSWORD:-}@${HARBOR_NOTARY_SIGNER_DATABASE_HOST:-127.0.0.1}:${HARBOR_NOTARY_SIGNER_DATABASE_PORT_NUMBER:-5432}/${HARBOR_NOTARY_SIGNER_DATABASE_NAME}?sslmode=${HARBOR_NOTARY_SIGNER_DATABASE_SSLMODE:-disable}" + fi + for var in "${!HARBOR_NOTARY_SIGNER_CFG_@}"; do + echo "${var/HARBOR_NOTARY_SIGNER_CFG_/}=${!var}" + done +} + +######################## +# Check if harbor-notary-signer is running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_notary_signer_running() { + # harbor-notary-signer does not create any PID file + # We regenerate the PID file for each time we query it to avoid getting outdated + pgrep -f "$(command -v notary-signer)" > "$HARBOR_NOTARY_SIGNER_PID_FILE" + + pid="$(get_pid_from_file "$HARBOR_NOTARY_SIGNER_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if harbor-notary-signer is not running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_notary_signer_not_running() { + ! is_harbor_notary_signer_running +} + +######################## +# Stop harbor-notary-signer +# Arguments: +# None +# Returns: +# None +######################### +harbor_notary_signer_stop() { + ! is_harbor_notary_signer_running && return + stop_service_using_pid "$HARBOR_NOTARY_SIGNER_PID_FILE" +} + +######################## +# Print harbor-registry runtime environment +# Arguments: +# None +# Returns: +# Boolean +######################### +harbor_registry_print_env() { + if [[ -n "$HARBOR_REGISTRY_USER" && -n "$HARBOR_REGISTRY_PASSWORD" ]]; then + HARBOR_REGISTRY_CFG_REGISTRY_HTPASSWD="$(htpasswd -nbBC10 "$HARBOR_REGISTRY_USER" "$HARBOR_REGISTRY_PASSWORD")" + # Update passwd file + echo "$HARBOR_REGISTRY_CFG_REGISTRY_HTPASSWD" >/etc/registry/passwd + fi + for var in "${!HARBOR_REGISTRY_CFG_@}"; do + echo "${var/HARBOR_REGISTRY_CFG_/}=${!var}" + done +} + +######################## +# Check if harbor-registry is running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_registry_running() { + # harbor-registry does not create any PID file + # We regenerate the PID file for each time we query it to avoid getting outdated + pgrep -f "$(command -v registry)" > "$HARBOR_REGISTRY_PID_FILE" + + pid="$(get_pid_from_file "$HARBOR_REGISTRY_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if harbor-registry is not running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_registry_not_running() { + ! is_harbor_registry_running +} + +######################## +# Stop harbor-registry +# Arguments: +# None +# Returns: +# None +######################### +harbor_registry_stop() { + ! is_harbor_registry_running && return + stop_service_using_pid "$HARBOR_REGISTRY_PID_FILE" +} + +######################## +# Print harbor-registryctl runtime environment +# Arguments: +# None +# Returns: +# Boolean +######################### +harbor_registryctl_print_env() { + if [[ -n "$HARBOR_REGISTRYCTL_USER" && -n "$HARBOR_REGISTRYCTL_PASSWORD" ]]; then + HARBOR_REGISTRYCTL_CFG_REGISTRY_HTPASSWD="$(htpasswd -nbBC10 "$HARBOR_REGISTRYCTL_USER" "$HARBOR_REGISTRYCTL_PASSWORD")" + # Update passwd file + echo "$HARBOR_REGISTRYCTL_CFG_REGISTRY_HTPASSWD" >/etc/registry/passwd + fi + for var in "${!HARBOR_REGISTRYCTL_CFG_@}"; do + echo "${var/HARBOR_REGISTRYCTL_CFG_/}=${!var}" + done +} + +######################## +# Check if harbor-registryctl is running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_registryctl_running() { + # harbor-registryctl does not create any PID file + # We regenerate the PID file for each time we query it to avoid getting outdated + pgrep -f "$(command -v harbor_registryctl)" > "$HARBOR_REGISTRYCTL_PID_FILE" + + pid="$(get_pid_from_file "$HARBOR_REGISTRYCTL_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if harbor-registryctl is not running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_registryctl_not_running() { + ! is_harbor_registryctl_running +} + +######################## +# Stop harbor-registryctl +# Arguments: +# None +# Returns: +# None +######################### +harbor_registryctl_stop() { + ! is_harbor_registryctl_running && return + stop_service_using_pid "$HARBOR_REGISTRYCTL_PID_FILE" + # The service may not respond properly to the default kill signal, so send a SIGKILL if it fails + local -r retries=5 + local -r sleep_time=1 + if ! retry_while "is_harbor_registryctl_not_running" "$retries" "$sleep_time"; then + stop_service_using_pid "$HARBOR_REGISTRYCTL_PID_FILE" SIGKILL + fi +} + +######################## +# Print harbor-adapter-trivy runtime environment +# Arguments: +# None +# Returns: +# Boolean +######################### +harbor_adapter_trivy_print_env() { + for var in "${!SCANNER_TRIVY_CFG_@}"; do + echo "${var/SCANNER_TRIVY_CFG_/}=${!var}" + done +} + +######################## +# Check if harbor-adapter-trivy is running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_adapter_trivy_running() { + # harbor-adapter-trivy does not create any PID file + # We regenerate the PID file for each time we query it to avoid getting outdated + pgrep -f "$(command -v scanner-trivy)" > "$SCANNER_TRIVY_PID_FILE" + + pid="$(get_pid_from_file "$SCANNER_TRIVY_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if harbor-adapter-trivy is not running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_harbor_adapter_trivy_not_running() { + ! is_harbor_adapter_trivy_running +} + +######################## +# Stop harbor-adapter-trivy +# Arguments: +# None +# Returns: +# None +######################### +harbor_adapter_trivy_stop() { + ! is_harbor_adapter_trivy_running && return + stop_service_using_pid "$SCANNER_TRIVY_PID_FILE" +} + +######################## +# Print chartmuseum runtime environment +# Arguments: +# None +# Returns: +# Boolean +######################### +chartmuseum_print_env() { + for var in "${!CHARTMUSEUM_CFG_@}"; do + echo "${var/CHARTMUSEUM_CFG_/}=${!var}" + done +} + +######################## +# Check if chartmuseum is running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_chartmuseum_running() { + # chartmuseum does not create any PID file + # We regenerate the PID file for each time we query it to avoid getting outdated + pgrep -f "$(command -v chartmuseum)" > "$CHARTMUSEUM_PID_FILE" + + pid="$(get_pid_from_file "$CHARTMUSEUM_PID_FILE")" + if [[ -n "$pid" ]]; then + is_service_running "$pid" + else + false + fi +} + +######################## +# Check if chartmuseum is not running +# Arguments: +# None +# Returns: +# Boolean +######################### +is_chartmuseum_not_running() { + ! is_chartmuseum_running +} + +######################## +# Stop chartmuseum +# Arguments: +# None +# Returns: +# None +######################### +chartmuseum_stop() { + ! is_chartmuseum_running && return + stop_service_using_pid "$CHARTMUSEUM_PID_FILE" +}