Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Non-traditional use of Docker (Nette Camp #3)
Search
Vladimír Kriška
August 25, 2017
Programming
190
0
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
Non-traditional use of Docker (Nette Camp #3)
Vladimír Kriška
August 25, 2017
More Decks by Vladimír Kriška
See All by Vladimír Kriška
Twelve-Factor app with Docker
ujovlado
0
180
Design a REST API you will love to work with
ujovlado
0
810
Docker for PHP developers - Tips, Tricks & Lessons learned
ujovlado
3
520
Docker ‐ from development to production in minutes (PoSobota #91)
ujovlado
0
430
Contributions [lightning talk] (PyconCZ 2015)
ujovlado
0
140
CSS Flexbox (WebElement #35)
ujovlado
0
200
Simplify your dev life with Docker (WebElement Banská Bystrica)
ujovlado
0
200
Don't underestimate CSS (WebElement #30)
ujovlado
0
640
Database Migrations in PHP (Posobota #66)
ujovlado
0
170
Other Decks in Programming
See All in Programming
気圧・高度・GPSを記録&可視化するアプリ「Koudo」を作った話
hjmkth
1
350
Claude Team Plan導入・ガイド
tk3fftk
0
180
OS アップデート対応の取り組み方がもっと共有されてほしい
andpad
0
110
AI駆動開発を妨げる技術的負債の解消アプローチ / ai-refactoring-approach
minodriven
17
9k
スマートグラスで並列バイブコーディング
hyshu
0
290
Vite+ Unified Toolchain for the Web
naokihaba
0
740
どこまでゆるくて許されるのか
tk3fftk
0
480
ソフトウェア設計に溶けるインフラ ― AWS CDK のインフラ認識論
konokenj
2
180
OSINT for SRE: 学術論文とポストモーテムから探る システム障害の共通パターン / SRE NEXT 2026
tomoyk
1
3.5k
壊れたパーサから始める関数型設計と構成的なパーサ #fp_matsuri
raiga0310
2
210
才能?センス?知らん、 続けたもん勝ちだ。-- 結婚・出産・癌を越えてなお、私がプロダクトを創り続ける理由
16bitidol
2
840
鹿野さんに聞く!『TypeScriptコードレシピ集』で磨く実践力
tonkotsuboy_com
4
1.1k
Featured
See All Featured
Sam Torres - BigQuery for SEOs
techseoconnect
PRO
0
300
Fireside Chat
paigeccino
42
4k
Writing Fast Ruby
sferik
630
63k
Stewardship and Sustainability of Urban and Community Forests
pwiseman
0
300
VelocityConf: Rendering Performance Case Studies
addyosmani
333
25k
Typedesign – Prime Four
hannesfritz
42
3.1k
The browser strikes back
jonoalderson
0
1.4k
Game over? The fight for quality and originality in the time of robots
wayneb77
1
220
Product Roadmaps are Hard
iamctodd
55
12k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
249
1.3M
JAMstack: Web Apps at Ludicrous Speed - All Things Open 2022
reverentgeek
1
490
Agile Leadership in an Agile Organization
kimpetersen
PRO
0
190
Transcript
Non-traditional use of Docker Vladimír Kriška @ujovlado
$ whoami Brogrammer Developer at Keboola building ETL platform Keboola
Connection writing about it at 500.keboola.com WebElement organizer - web dev meetup (on hold) Rekurzia - custom dev trainings twitter.com/ujovlado 2
Why containers? 3
Why containers? Isolation Simplicity One container, one task, one process*
Lock environment No more "works on my machine" problems They're lightweight Almost as native (probably 99.9%) 4
Why Docker? 5
Why Docker? Most popular No VM needed* Easy to learn
Lightweight Fast startup Well supported Docker Compose Docker Swarm, etc. 6
Let's begin! 7
1. Standard usage (for dev) Docker le: FROM node:7 RUN
apt-get update -q \ && apt-get install apt-transport-https \ && wget https://dl.yarnpkg.com/debian/pubkey.gpg -O pubkey.gpg && apt-key add pubkey.gpg \ && echo "deb https://dl.yarnpkg.com/debian/ stable main" > /et && apt-get update -q \ && apt-get install yarn -y 8
docker-compose.yml: services: node: build: . ports: - "3000:3000" volumes: -
./:/code working_dir: /code tty: true command: sh -c 'yarn && yarn start' and: docker-compose run --rm --service-ports node 9
2. Helpers (e.g. in Travis) services: - docker script: -
... - docker-compose up -d udp-listener - php tests/run.php - docker-compose logs udp-listener | grep 'Some text' check if library made UDP request 10
3. Concurency problems (almost DIND) $ docker run --rm \
-v /var/run/docker.sock:/var/run/docker.sock \ docker:1.11 \ sh -c 'docker login \ && docker pull some-image \ && docker logout' mounting Docker socket to container Docker in container will run Docker on host logins will not con ict 11
4. Tools you don't want on host e.g. Ruby or
Node PHP ... 12
4.1. Travis CLI to run Travis CLI in container using
host FS FROM ruby:2 RUN gem install travis -v 1.8.2 --no-rdoc --no-ri ARG USER_NAME ARG USER_UID ARG USER_GID RUN groupadd --gid $USER_GID $USER_NAME RUN useradd --uid $USER_UID --gid $USER_GID $USER_NAME ENTRYPOINT ["travis"] 13
4.1. Travis CLI $ docker build -t travis \ --build-arg
USER_UID=`id -u` \ --build-arg USER_GID=`id -g` \ --build-arg USER_NAME=`id -un` \ . $ docker run -i -t --rm \ -v "/home/vlado/workspace/travis-cli/.travis :/home/`id -un`/.travis" \ -u `id -u` \ travis 14
4.1. Travis CLI #!/bin/bash docker run -i -t --rm \
-v "/home/vlado/workspace/travis-cli/.travis :/home/`id -un`/.travis" \ -v "$PWD:$PWD" \ -w $PWD \ -u `id -u` \ travis "$@" 15
5. OpenVPN FROM debian:jessie RUN apt-get update -q \ &&
apt-get install openvpn ssh -y --no-install-recommends ARG USER_NAME ARG USER_UID ARG USER_GID RUN groupadd --gid $USER_GID $USER_NAME \ && useradd --uid $USER_UID --gid $USER_GID \ --shell /bin/bash $USER_NAME COPY entrypoint.sh /root/ ENTRYPOINT ["/root/entrypoint.sh"] 16
Entrypoint: openvpn --daemon --config $1 && su - $SU_USERNAME Build:
docker build -t openvpn \ --build-arg USER_UID=`id -u` \ --build-arg USER_GID=`id -g` \ --build-arg USER_NAME=`id -un` \ . similar Travis CLI 17
Run script: #!/bin/bash SCRIPT_DIR=$(cd `dirname $0`; pwd -P) if [
! -f $SCRIPT_DIR/config/$1 ]; then echo "Specified config file not found" else docker run -i -t --rm \ --device "/dev/net/tun:/dev/net/tun" \ -v "$SCRIPT_DIR/config:/etc/openvpn/config" \ -v "/home/`id -un`/.ssh:/home/`id -un`/.ssh" \ -w "/etc/openvpn/config" \ --cap-add NET_ADMIN \ --env SU_USERNAME=`id -un` \ openvpn $1 fi 18
6. Shared socket services: syslog: build: docker/syslog volumes: - ./docker/.syslog-datadir/socket:/syslog-socket
- ./docker/.syslog-datadir/log:/var/log syslog-watcher: image: debian:8 volumes_from: - syslog command: tail -f /var/log/syslog everything is a le 19
services: apache: build: docker/php-apache volumes: - ... - ./docker/.syslog-datadir/socket/log:/dev/log -
... links: - syslog now you can log to syslog and will see logs using "watcher" service 20
Conclusion you can run any service in Docker in Linux,
everything is a le -> can be mounted super fast onboarding (just docker run/up) clean host system ... 21
Questions? 22