Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Containerless Django
Search
Peter Baumgartner
October 16, 2018
Programming
1.8k
5
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
Containerless Django
Deploying Django without Docker
Peter Baumgartner
October 16, 2018
More Decks by Peter Baumgartner
See All by Peter Baumgartner
High Performance Django at Ten
ipmb
0
64
Just Enough Ops for Developers
ipmb
0
320
Prepping Your Project for Production
ipmb
2
920
Django Deployments Done Right
ipmb
6
1.6k
High Performance Django: From runserver to Reddit hugs
ipmb
1
1.5k
Getting Started with Salt (PyCon 2014)
ipmb
6
1.3k
Monitoring Infrastructure with SaltStack
ipmb
16
10k
Getting Started with Salt
ipmb
11
1.7k
Other Decks in Programming
See All in Programming
A2UI という光を覗いてみる
satohjohn
1
170
Vite+ Unified Toolchain for the Web
naokihaba
0
410
Skillsは効率化、Agentsは"自分の拡張"——Builder時代のエージェント編成(CC Night 2026)
wemra
1
180
技術記事、 専門家としてのプログラマ、 言語化
mizchi
13
7.1k
Javaの型とAI時代に型が大事な理由 / java types and type in AI era
kishida
2
160
はてなアカウント基盤 State of the Union
cockscomb
1
1.2k
キャリア迷子上等 ─ "ない道"は自分で作ればいい
16bitidol
3
2.6k
The NotImplementedError Problem in Ruby
koic
1
1k
act1-costs.pdf
sumedhbala
0
140
Dataformのリポジトリを立ち上げるときにまずやること / dataform-day0-2026
snhryt
0
200
「AIで開発し、AIを届ける」をEvalでつなぐ 〜AIネイティブに始めるプロダクト開発の実践〜 / Connecting "Develop with AI, deliver AI" with Eval
rkaga
4
5.6k
1B+ /day規模のログを管理する技術
broadleaf
0
120
Featured
See All Featured
State of Search Keynote: SEO is Dead Long Live SEO
ryanjones
0
210
The Power of CSS Pseudo Elements
geoffreycrofte
82
6.3k
How STYLIGHT went responsive
nonsquared
100
6.2k
Design of three-dimensional binary manipulators for pick-and-place task avoiding obstacles (IECON2024)
konakalab
0
480
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
25
2k
10 Git Anti Patterns You Should be Aware of
lemiorhan
PRO
659
62k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
34
2.8k
SERP Conf. Vienna - Web Accessibility: Optimizing for Inclusivity and SEO
sarafernandez
2
1.5k
What's in a price? How to price your products and services
michaelherold
247
13k
The browser strikes back
jonoalderson
0
1.3k
[RailsConf 2023] Rails as a piece of cake
palkan
59
6.7k
Understanding Cognitive Biases in Performance Measurement
bluesmoon
32
2.9k
Transcript
DjangoCon US—San Diego Oct 2018 Deploying without Docker Containerless Django
Peter Baumgartner
Founder at Lincoln Loop—lincolnloop.com Former SysAdmin, DevOps for 8 years
Author of High Performance Django About Me
Docker is cool!
@ipmb | #djangocon Docker is cool! The “pipeline” Security Isolation
Dev/prod parity
Just bundle the entire OS
Some philosophy
“ —Mike Perham https://www.mikeperham.com/2016/02/09/kill-your-dependencies/ No code runs faster than no
code. No code has fewer bugs than no code. No code uses less memory than no code. No code is easier to understand than no code. “
None
@ipmb | #djangocon Docker Drawbacks Slow Extra abstractions More software,
more problems
None
How did we get here?
@ipmb | #djangocon Deployments sucked Dependencies would shift underneath you
Build tools and dev packages needed to be installed Multiple languages, multiple builds (Python & Node)
@ipmb | #djangocon The ideal deployment Download a binary Create
a configuration file Run it
@ipmb | #djangocon The ideal deployment /usr/local/bin/traefik \ --configFile=/etc/traefik/traefik.toml /usr/local/bin/telegraf
\ --config=/etc/telegraf/telegraf.conf /usr/sbin/nginx -c /etc/nginx/nginx.conf
@ipmb | #djangocon Python isn’t C or Go Requires a
VM Dynamic linking Packaging isn’t straightforward
None
Can we do better?
@ipmb | #djangocon We already are! Lock files via pipenv
or poetry Pre-compiled wheels (Pillow, psycopg2-binary, etc.) Still lots of holes - Assembling virtualenvs - Static files - Production webserver
@ipmb | #djangocon Prior art Private PyPI virtualenv-clone Platter dh-virtualenv
Pex
@ipmb | #djangocon ZIP applications? Part of Python since 2.6
PEP-441 improves support in 3.5 Create a ZIP archive of your project. Run it with Python. …but no mechanism for handling dependencies
None
@ipmb | #djangocon Enter shiv! A project from LinkedIn Zipapps
with dependencies A single artifact you can build → test → deploy ./myproject.pyz runserver
Django as a zipapp
Package your project with setup.py
@ipmb | #djangocon Include templates & static files Create a
MANIFEST.in graft your_project/collected_static graft your_project/templates
@ipmb | #djangocon Production webserver gunicorn + whitenoise ⭐ https://pypi.org/project/django-pyuwsgi/
@ipmb | #djangocon Build your zipapp
@ipmb | #djangocon Run your zipapp ./yourproject.pyz pyuwsgi --http=:8000
@ipmb | #djangocon Configuration Same zipapp, but different settings per
environment Options: - Multiple settings files and DJANGO_SETTINGS_MODULE - Environment variables - ⭐ https://pypi.org/project/goodconf/
@ipmb | #djangocon The zipapp pipeline Use CI (Travis, CircleCI,
Bitbucket, etc.) to: - Build - Test - Push Deploy = Download and run
None
What about security?
Systemd's got your back
@ipmb | #djangocon Systemd is awesome ProtectSystem=strict ProtectHome=true DynamicUser=true CapabilityBoundingSet=~CAP_SYS_ADMIN
AppArmorProfile=srv.yourproject.pyz ProtectKernelTunables=true ProtectControlGroups=true ProtectKernelModules=true PrivateDevices=true PrivateTmp=true SystemCallArchitectures=native
What about isolation?
@ipmb | #djangocon Isolation You still need Python installed globally
Easy to install multiple Pythons on one server Docker has better isolation, but do you need it?
@ipmb | #djangocon What about parity? Zipapp is the same
from CI to all deployed environments Use Docker to mimic deployment envionrment locally (or don't)
@ipmb | #djangocon Pros Simpler. No Docker on the server.
No registry. ~1M fewer lines of code to depend on. Smaller artifacts Faster deployments It's just Python
@ipmb | #djangocon Cons Not as isolated as true containers
Requires Python runtime on the server Python-specific Not cross-platform compatible (if you have packages with C extensions)
@ipmb | #djangocon Sweet spot for zipapps You are deploying
primarily Python services You have outgrown PaaS (Heroku, PythonAnywhere, Divio, etc.) You have fewer than 50 services to maintain
None
None
Thanks! Peter Baumgartner
[email protected]
@ipmb