Skip to content
HBM is an application to authorize and manage authorized docker commands using Docker AuthZ plugin
Go Shell Makefile Dockerfile
Branch: master
Clone or download
Type Name Latest commit message Commit time
Failed to load latest commit information.
.vscode vscode Jun 27, 2018
config Refactor config Nov 13, 2017
contrib/init/systemd Add systemd socket file Apr 27, 2017
docker Add checks for double dots in volume path May 24, 2019
docs Set theme jekyll-theme-cayman Jan 25, 2019
gen Update generate scripts for man and shell completion Mar 12, 2018
object User "all" is also valid for ports Jul 10, 2018
pkg Remove DCB May 11, 2018
plugin Add more new fields to log when command is not allowed May 16, 2018
scripts Replace latest_tag var with version in scripts/release Nov 13, 2018
storage Move conditions from storage to object package Apr 6, 2018
vendor Update package cpuguy83/go-md2man/md2man to an older revision Jul 3, 2018
version Add some default value to version package variables Nov 13, 2017
.gitignore vscode Jun 27, 2018
.travis.yml Add encrypted value to travis config file Nov 13, 2018
Dockerfile.dapper Fix Dockerfiles Aug 30, 2018 Change docker version case in Dockerfile Aug 29, 2018
LICENSE Initial commit Jun 16, 2016
Makefile Bump version of github-release Nov 13, 2018 Add file Oct 3, 2018 Update documentation Sep 20, 2018
main.go Update copyright year to 2018 Mar 12, 2018
packages.go Add missing volumedriver to packages.go May 23, 2019

HBM (Harbormaster)

Build Status Go Report Card MicroBadger

Harbormaster is a basic extendable Docker Engine access authorization plugin that runs on directly on the host.

By default, Harbormaster plugin prevents from executing commands with certain parameters.

  1. Docker commands
  2. Pull images
  3. Start containers with specific parameters
  • --privileged
  • --ipc=host
  • --net=host
  • --pid=host
  • --userns=host
  • --uts=host
  • any Linux capabilities with parameter --cap-add=[]
  • any devices added with parameter --device=[]
  • any dns servers added with parameter --dns
  • any ports added with parameter --port
  • any volumes mounted with parameter -v
  • any logging with parameters --log-driver and --log-opt
  • --sysctl
  • --security-opt


Supported Docker versions with HBM.

HBM Version Docker Version Docker API
0.2.x       1.12.x         1.24      
0.3.x       17.05.x       1.29    
0.5.x 17.06.x 1.30
0.5.x 17.09.x 1.32
>= 0.6.0 >= 1.12.x >= 1.24

Getting Started & Documentation

All documentation is available on the Harbormaster website.

User Feedback


If you have any problems with or questions about this application, please contact us through a GitHub issue.

You can’t perform that action at this time.