Terminology

Terminology

OS Architecture

APP processes-> (system call) -> Kernel -> RESOURCES[CPU, MEMORY, HARD DISK]
APP-> Kernel-> RESOURCES(HDD, network, RAM, CPU + 'IMAGE PROCESS(HD segment for this process)')

Through Namespacing (isolate resources per process or group of processes)
and Control Groups(limit resources: mem,CPU,HD,network Bandwidth),
forms Container (grouping of resources assigned to it)
Namespacing and Control Groups are not included by default
e.g. hello-world. This is specific to Linux Operating System.
# In Windows and MacOs, Linux Virtual Machine is used to host containers.

Docker CLI (client)

docker version

# Docker Server download from Docker hub and store it into image cache, if image is not found locally
docker run <image name>

# show running container process
docker ps

# all container processes including exited
docker ps --all
docker ps -a

docker run busybox ping google.com
# open another CLI window, `docker ps` will show running process (ping)
docker ps

Override startup command inside image

# command executables have to be included in busybox file system image
# in order to execute override command
docker run <image name> <override command>
docker run busybox echo hi there
docker run busybox ls

# Override does not work because hello-world image does not provide file system
# only a single file hello-world exists inside the file system
docker run hello-world echo hi there
docker run hello-world ls

Container LifeCycle

docker rm {container_id}

# delete all stopped containers, networks, dangling images, cache
docker system prune

docker create busybox echo hi there
docker start {id}
# show logs without re-running container with -a option
docker logs {id}

docker create busybox ping google.com
docker start {id}
docker logs {id}
docker ps

# SIGTERM shutdown on its own time with cleanup
# container not shutting down in 10 seconds will fallback to docker kill
docker stop {container_id}

# SIGKILL shutdown immediately
docker kill {container_id}

Multi-command container

# run without docker and use redis-cli
redis-server
# another terminal to use redis-cli to approach redis-server
redis-cli
> set mynumber 5
> get mynumber

# run with docker
docker run redis
# redis-cli cannot connect since redis only running inside container
# override command also has this problem
# need to get inside container and run `redis-cli`
# need to run second command inside a container
# instead try `docker run -it redis redis-cli`
redis-cli

# run redis-server inside docker container
docker run redis

# execute 'redis-cli' inside a running container
# exec: run another command in a container
# -it: allow us to provide input to the container
docker exec -it {container_id} <command>
docker exec -it {container_id} redis-cli
> set mynumber 5
> get mynumber

# redis-cli is started up but no ability to enter in any text, closing down kicked back to terminal
# have to use -it tag
docker exec {container_id} redis-cli

# execute an additional command inside a container
# container runs inside virtual machine running linux
# ping google.com / echo hi there /redis-cli each process has: STDIN STDOUT STDERR
# -i attach(direct) our terminal to the STDIN channel in the new running process
# -t make text nicely formatted, prettier
# -it allows input of your terminal directed to the running process and allows to output back over to the terminal

# get full terminal access: easy debugging
# sh: another command shell
docker exec -it {docker_container} sh
> cd ~/
> ls
> redis-cli

# go inside shell without running any other commands (no default override command)
docker run -it busybox sh
> ls
> cd ~/
> ping google.com
> ^C
> exit

Container isolation

docker run -it busybox sh
> touch hithere.txt
> ls

# another cli
docker run -it busybox sh
> ls (not seeing hithere.txt)

docker ps
CONTAINER ID
<a>
<b>

Create a Dockerfile

# Writing a Dockerfile
# == being given a computer with no OS and being told to install Chrome

# install OS
# -> start browser
# -> chrome.google.com
# -> download installer
# -> run installer exe
# -> run chrome.exe

1. Specifiy a base image (like OS it includes set of useful programs)
2. Run some commands to install additional programs
3. Specify a command to run on container startup

Create image that runs redis-server Using Dockerfile
Dockerfile (Configuration to define how our container should behave)
-> Docker Client (CLI)
-> Docker Server
-> Build Usable Image

mkdir redis-image
cd redis-image
# instruction telling Docker server what to do + argument to the instruction
touch Dockerfile

# Use an existing docker image as a base
# alpine image might include default set of programs
# download image if locally not found
FROM alpine

# use this image to create a temporary container
# download and install a dependency
# alpine contains apk(alpine package manager app) commands
# create a temporary container with the downloaded image in 'FROM'
# inside the container, it runs 'apk add...' as a primary running process
# installs redis on the container file system
# running in {id1}
# removing {id1}
# return new snapshot {id1-1}
RUN apk add --update redis

# Tell the image what to do when it strats as a container
# use created image in RUN command and create a container
# and set a primary command for the container (executed when container is running)
# create final image
# running in {id2}
# removing {id2}
# return new snapshot {id2-1}
CMD ["redis-server"]

# generate image with build context (current directory);
# set of files and folders to encapsulate in this container
docker build .
docker build -t junho/redis:latest .
docker run [#id]

docker build -t {docker id}/{repo_name}:{version} .
docker build -t username/redis:latest .

1. create container
2  execute 'apk add --update redis'
3. assign a startup-command 'redis-server'
=> remove intermediate containers and return final image with id

Recap

FROM alpine
-> download alpine image
RUN apk add --update redis
-> get image from previous step
-> create a container out of it: [container]
-> run 'apk add --update redis' in it: [container with modified FS]
-> take snapshot of that container's FS: [FS snapshot]
-> shut down that temporary container
-> get image ready for next instruction
CMD ["redis-server"]
-> get image from last step
-> create a container out of it: [container]
-> tell container it should run 'redis-server' when started: [container with modifed primary command]
-> shut down that temporary container
-> get image ready for next instruction
-> no more steps!

=> Output is the image generated from previous step

Rebuilds with Cache

FROM alpine
RUN apk add --update redis
RUN apk add --update gcc
CMD ["redis-server"]

# no fetch or installation of redis: image has been cached
# it will not use cached image if redis and gcc RUN command order changes
# installation of gcc and redis
docker build .
docker run 7dfdfbcf1017

Manual image Generation with Docker commit

FROM alpine
RUN apk add --update redis
RUN apk add --update gcc
CMD ["redis-server"]

# do the equivalent as above Dockerfile but manually with docker commands
docker run -it alpine sh
> apk add --update redis
docker ps
# 39075447a383
# set default command -c
docker commit -c 'CMD ["redis-server"]' 39075447a383
# sha256: 0835898662...
docker run 0835898662

Node js Project with Docker

Create Node JS web app
Create a Dockerfile
Build image from dockerfile
Run image as container
Connect to web app from a browser

mkdir simpleweb
cd simpleweb
touch package.json

{
	"dependencies":{
		"express": "*"
	},
	"scripts":{
		"start": "node index.js"
	}
}

const express = require('express');
const app = express();
app.get('/', (req, res) => {
	res.send('Hi there');
});

app.listen(5000, () =>{
	console.log('Listening on port 5000');
});

# specify a base image
FROM alpine

# install dependencies and additional programs
RUN npm install

# specify default command to run on container startup
# start nodejs server
CMD ["npm", "start"]

# find different base image with npm install or run additional command to install npm
# dockerhub > Explore > node
# alpine version of an image is small and compact as possible
# many repositories provide alpine versions of their image
FROM node:alpine
RUN npm install
CMD ["npm", "start"]

FROM node:alpine

# COPY {path1} {path2}
# path1: path to folder to copy from on your machine relative to build context(e.g. simpleweb)
#		local project file system
# path2: place to copy stuff to inside the container
# 		container file system
COPY ./ ./

RUN npm install

CMD ["npm", "start"]

open a web browser localhost:5000

ERROR site cann’t be reached (port 5000 is for container)



- Fourth build

```sh
# container Port Mapping
# local host is not routed to container ports
# container has its own isolated set of ports that can receive traffics
# need to forward localhost:8090 request to one of container ports
# container can reach out across the internet (it can get traffics through ports)
# port forwarding is only in RUNTIME not in Dockerfile configuration
# docker run -p {port1}:{port2} <image id/tagname>
# 	{port1} Route incoming requests to this port on local host to ...
# 	{port2} this port inside the container.
# 	ALSO CHANGE index.js listening port: app.listen({port2},...
# port forward to some port inside container
docker run -p {local network port}:{container port} {image id}

# CHANGE index.js : app.listen(5000, ...
docker run -p 4001:5000 username/simpleweb

# Go to browser http://localhost:4001

Specify a working directory in a Dockerfile

# inspect file system without starting up a server
docker run -it username/simpleweb sh
# js and json files are copied into container  root / directory
# need to modify directory
> ls

FROM node:alpine

# any following command will be executed relative to this path in the container
WORKDIR /usr/app

COPY ./ ./

RUN npm install

CMD ["npm", "start"]

// editting js files is not applied to running container
// need to rebuild the container to apply changes in js file
const express = require('express');
const app = express();
app.get('/', (req, res) => {
	res.send('Bye there');
});

app.listen(5000, () =>{
	console.log('Listening on port 5000');
});

# every step is executed again (unnecessary rerun of commands)
# need better way to copy changed files to working directory of a container
docker build -t username/simpleweb .

FROM node:alpine

WORKDIR /usr/app

# npm install only changes in package.json
COPY ./package.json ./
RUN npm install

# copy everything else (applies editting js file without npm install again!)
COPY ./ ./

CMD ["npm", "start"]

Docker Compose App overview

# 1
web -> Container1[Node App+ Redis (visits=1)]
	-> Container2[Node App+ Redis 99]
	...
	-> ContainerN[Node App+ Redis 5]

# 2
web -> Container1[Node App]
	...
	-> ContainerN[Node App] -> Continaer[Redis]

{
	"dependencies": {
		"express": "*",
		"redis": "2.8.0"
	},
	"scripts": {
		"start": "node index.js"
	}
}

// index.js
const express = require('express');
const redis = require('redis');

const app = express();
// connection redis server
const client = redis.createClient();
client.set('visits', 0);

app.get('/', (req, res) => {
	client.get('visits', (err, visits) => {
		res.send('Number of visits is ' + visits);
		client.set('visits', parseInt(visits) + 1);
	});
});

app.listen(8081, () => {
	console.log('Listening on port 8081');
});

# dockerfile for node
FROM node:alpine

WORKDIR '/app'

# only build image when package.json changes
COPY package.json .
RUN npm install
COPY ./ ./

CMD["npm", "start"]

docker build -t username/visits:latest .

# ERROR! connecting to redis(server not running)
docker run username/visits

# Run separate redis server
docker run redis
# still same error connecting to redis
# because each container is isolated from each other
# need networking infrastructure
docker run username/visits

# Options for connecting these Containers
# 1. Use Docker CLI's network features (too complicated and not practical)
# 2. Use Dcoker compose

Docker Compose

docker build -t username/visits:latest
docker run -p 4001:8081 username/visits
-> docker-compose.yml (contains all the options we'd normally pass to docker-cli)
-> docker-compose CLI

Encode docker commands likedocker build and docker run into docker-compose.yml file using special syntax.

Want to create containers:

# docker-compose.yml
version: '3'
services:
	redis-server:
		image: 'redis'
	node-app:
		build: .
		ports:
		  - "4001:8081"

// index.js
const express = require('express');
const redis = require('redis');

const app = express();
// connection to redis server
// specify default port 6379 that the redis server is running on
const client = redis.createClient({
	// host: 'https://redis-server-url-without-docker.com'
	// port: 디폴트포트 6379
	host: 'redis-server',
	port: 6379

});
client.set('visits', 0);

app.get('/', (req, res) => {
	client.get('visits', (err, visits) => {
		res.send('Number of visits is ' + visits);
		client.set('visits', parseInt(visits) + 1);
	});
});

app.listen(8081, () => {
	console.log('Listening on port 8081');
});

Docker Compose Commands

docker run {image}
=> docker-compose up


docker build .
docker run {image}
# rebuild with --build tag
=> docker-compose up --build

Stopping Docker Compose Containers

# previously
docker run -d redis
docker ps
docker stop ba1220ea9edc

# Launch in background
docker-compose up -d

# Stop and Remove Containers
docker-compose down

Container Maintenance with Compose

const express = require('express');
const redis = require('redis');
const process = require('process');
const app = express(); // connection to redis server
const client = redis.createClient({
	// host: 'https://redis-server-url-without-docker.com'
	// port: 포트 (디폴트 6379)
	host: 'redis-server',
	port: 6379
});
client.set('visits', 0);

app.get('/', (req, res) => {

	// make server to crash
	// 0: exited and everything is OK
	// 1,2,3,etc: exited because something went wrong!
	process.exit(0);

	client.get('visits', (err, visits) => {
		res.send('Number of visits is ' + visits);
		client.set('visits', parseInt(visits) + 1);
	});
});

app.listen(8081, () => {
	console.log('Listening on port 8081');
});

# Rebuild container!
# log: "exited with 0"
docker-compose up --build

# now localhost:4001 cannot be reached (crashed)
# only shows 'redis' container process
docker ps

Automatic Container Restarts

Restart Policies Description
“no” Never attempt to restart this container if it stops or crashed
always If this container stops “for any reason” always attempt to restart it
on-failure Only restart if the container stops with an error code
unless-stopped Always restart unless we(the developers) forcibly stop it 
version: '3'
services:
  redis-server:
    image: 'redis'
  node-app:
    restart: always
    build: .
      # - array of ports
      # {port_localMachine}:{port_container}
    ports:
      - "4001:8081"

docker-compose up
# restart: always : logs of restarting nodejs server
# restart: on-failure : logs of not restarting (because nodejs server exited with 0)
#	or change exit(100) and rebuilt : docker-compose up --build
# restart: unless-stopped : logs of not restarting (because nodejs server exited with 0)

const express = require('express');
const redis = require('redis');
const process = require('process');

const app = express();
// connection to redis server
const client = redis.createClient({
	// host: 'https://redis-server-url-without-docker.com'
	// port: 포트 (디폴트 6379)
	host: 'redis-server',
	port: 6379
});
client.set('visits', 0);

app.get('/', (req, res) => {

	// make server to crash
	// 0: exited and everything is OK
	// 1,2,3,etc: exited because something went wrong!
	process.exit(0);

	client.get('visits', (err, visits) => {
		res.send('Number of visits is ' + visits);
		client.set('visits', parseInt(visits) + 1);
	});
});

app.listen(8081, () => {
	console.log('Listening on port 8081');
});

# must be executed in the same directory as 'docker-compose.yml'
docker-compose ps

Development Workflow

Development -> Testing -> Deployment

=> Docker makes it easier


### Project Generation

- Install nodejs and npm
```sh
sudo apt install npm
sudo apt install nodejs

# install a tool in order to create react project
npm install -g create-react-app

# Do the following https://stackoverflow.com/a/40905762 and
# append 'export PATH=$HOME/.npm-global/bin:$PATH' to ~/.profile 
source ~/.profile

# Create react project
create-react-app frontend

# wrap this react project inside a Docker Container
Commands Descriptions  
  npm run start Starts up a development server. For development use only
  npm run test Runs tests associated with the project
  npm run build Builds a production version of the application

Creating the Dev Dockerfile

# In Development
Docker Container
[npm run start]

# In Production
Docker Container
[npm run build]

How to wrap up react app with Docker container

FROM node:alpine

WORKDIR /app

COPY package.json .
RUN npm install

COPY . .

CMD ["npm", "run", "start"]

# Sending build context to Docker daemon 193.3MB
docker build -f Dockerfile.dev .
# 	: create-react-app tool created a react project and 
# 	installed all the dependencies '193.3MB' in the working dir: 'node_modules'
# 	need to use Docker image instead

# much faster build!
rm -rf node_modules
docker build -f Dockerfile.dev .

docker run -p 3000:3000 4ab3744f206b

// ./src/App.js
// EDIT something : rebuild required
// => workaround to automatically propagate the change to the containers

Local dir -> Docker Container
Instead of COPYing all the local dir to container,
volume can set up a refrence that points back to files in local machines
: it maps docker container folders to local machine folders
: syntax might be complicated in docker run

# -v /app/node_modules		Put a bookmark on the node_modules folder
# -v $(pwd):/app			Map the pwd(frontend) into the /app folder
# 	/frontend 			<- /app
#		/src 			<- ref
#		/public 		<- ref
#		/node_modules 	<- ref

docker run -p 3000:3000 -v /app/node_modules -v $(pwd):/app <image_id>

# rebuild
docker build -f Dockerfile.dev .
# ERROR: react-scripts: not found
# node_modules folder missing in local(frontend) it was deleted!
docker run -p 3000:3000 -v $(pwd):/app 6f0e74155767

docker run -p 3000:3000 -v /app/node_modules -v $(pwd):/app 6f0e74155767

version: '3'
services:
  web-react:
    build: .
    ports:
      - "3000:3000"
    volumes:
      - /app/node_modules
      - .:/app

From the book ‘Docker and Kubernetes for Java’

docker network ls
docker network create {network_name}
docker network rm {network_name}
docker network connect {network_name}
docker network disconnect {network_name}

# docker network create 커멘드 옵션
# -d, --driver="bridge"
docker network create myNetwork
docker network create -d bridge myNetwork
docker network create --driver=bridge myNetwork

docker network create -d myNetwork
docker network inspect myNetwork
docker run -it --net=myNetwork tomcat

# 'myPostgreSQL' container can use the same network as the other container, 'myTomcat', use
# they can directly communite each other in the same network, 'bridge'
# though the network itself isolates the containers from external networks
# [Docker Host] -> [ISOLATED Network(container1, 2, 3, ...)]
docker run -it --net=bridge myTomcat
docker run -it --net=container:myTomcat myPostgreSQL

# Official 'tomcat' image Dockerfile fragment FROM openjdk:8-jre-alpine
ENV CATALINA_HOME /usr/local/tomcat
ENV PATH $CATALINA_HOME/bin:$PATH
RUN mkdir -p "$CATALINA_HOME"
WORKDIR "$CATALINA_HOME"
EXPOSE 8080
CMD ["catalina.sh", "run"]

docker network create --driver=bridge myNetwork
docker run -it --name myTomcat --net=myNetwork tomcat
docker run -it --net=container:myTomcat busybox

# docker run -p {hostPort}:{containerPort} {image ID or name}
# docker run -expose=7000-8000 {container ID or name}
# docker run -p 7000-8000:7000-8000 {container ID or name}
# TEST by http://localhost:8080
docker run -it --name myTomcat2 --net=myNetwork -p 8080:8080 tomcat

# docker will map a random port on the host to Tomcat's exposed port number 8080
docker run -it --name myTomcat3 --net=myNetwork -P tomcat
# http://localhost:32772
docker ps
docker port myTomcat3
docker inspect myTomcat3

Volumns