This is seriously cool. I just fell is love with Docker a few months ago and I love to see how ideas and tooling improve around it! I also just happened to install Discourse btw
I’ve also blogged about using Docker to deploy a simple Django app - but your article is much more complex.

Yeah, I agree with you. Even with Passenger, deployment is still not easy enough. The thing is that Passenger doesn’t do enough – right now it only takes care of the web processes. I find myself putting off deployment of certain apps because of this. PHP is a little bit better but it’s still not as easy as I want it to be.

While Docker solves some problems, it introduces other problems. Building a Docker container is a complete pain.

We (Phusion) are working on two projects to solve this. With Dockerizer we hope to make Docker container building a breeze. On the Phusion Passenger side, we’re introducing daemon management support by supporting Procfile.

@ochronus

Thanks! Your article looks pretty good as well. How did your Discourse install go? Did you feel the pain, it does get quite involved.

It’s amazing how fast Docker is moving, I wonder how long before this blog post I just made goes out-of-date.

@honglilai

I totally agree that Docker files are a complicated trap. The one I created ended up having a single RUN command cause I really wanted a flat image. As I was building it I added stuff to the end and eventually folded it in once I was sure it worked. Luckily, latest docker allows for multiline RUN commands.

I had a look at your work at GitHub - phusion/passenger-docker: Docker base images for Ruby, Python, Node.js and Meteor web apps btw this Docker file can be flattened some eg:

RUN /build/enable_repos.sh && /build/prepare.sh &&\
    /build/system_services.sh && /build/utilities.sh &&\ 
    /build/ruby.sh && /build/python.sh && /build/nodejs.sh &&\
    /build/passenger.sh && /build/finalize.sh

I discussed this problem with our our expert sys admin and I think we are going to pull our entire docker bootstrap image into a shell script. I suspect that once the tight AUFS dependency is dropped some sanity can return to Dockerfiles. That said I feel they are a bit limiting and am not sure if the DSL is the right one for bootstrapping, I much prefer pups.

I did want to push our image to speed up deployment but really wanted to slim it down a lot before throwing a 1.5 gig image in the Docker repo.

I totally love what you have done with Passenger to simplify deployment and am very excited about proc file support.

For my image here I chose unicorn mainly cause oobgc is available out-of-the-box something that I think only kicks in with passenger enterprise.

I feel one huge advantage of Docker is that it opens up much more sophisticated setups to the general public to consume. I can build a stack heavily tuned with tcmalloc and appropriate GC tuning env vars, without having to worry that people will get it wrong.

Keep up the awesome work, and let me know how you go. Very excited to here about your work, making Rails easy to deploy is a huge pain in our community.

We’re looking at ways to slim down passenger-docker. We’ve already split the base system to a separate project: GitHub - phusion/baseimage-docker: A minimal Ubuntu base image modified for Docker-friendliness. Passenger-docker can probably be made smaller by making Node.js, Python, Qt4 (for capybara-webkit) and other stuff optional.

I’m thinking about releasing the image in two variants: minimal and full. Minimal contains almost nothing, and you have to opt-in for stuff. Choose this if you value size over convenience. Full contains everything: you don’t have to worry about the stack at all, you just have to wait for the download to finish.

Having said that, I don’t think the size is anything you have to worry about. Docker doesn’t redownload the base image if it’s already installed. During redeploys you only download what you’ve changed on top of passenger-docker.

As for oobgc: it’s not in Enterprise, it’s in the open source version. Passenger open source’s OOBGC improves on Unicorn’s OOBGC in a major way: it only allows one process to run OOBGC at a time, thereby avoiding situations in which all processes are busy garbage collecting and blocking your clients.

Very interesting point, I may try it out then while testing oobgc I think I am really wanting for the hack Github added that allows you to ask the GC for the total free slots, without this getting it to act sanely is just too hard. Hope we get the free slot count into 2.1.

Thanks for an excellent and thorough post on Docker. I’ve been using Docker quite a bit but learned some new things here.

Regarding the problems you mention with Dockerfiles, I’m quite impressed with this approach: http://zef.me/6049/nix-docker It might not be for everyone but looks like a powerful alternative.

@sam Thanks for the kind words
The install went fine, but only because I have some practice in deploying Rails apps - it’s quite cumbersome otherwise - and also the install howto also missed a few steps.

I’m getting an error trying to get discourse up and running in a docker container.

The problem comes from the redis.conf line:

logfile stdout

I’m getting the error:

*** FATAL CONFIG FILE ERROR ***
Reading the configuration file, at line 74
>>> 'logfile stdout'
Can't open the log file: Permission denied

If I change the line to logfile "" everything starts up fine.

I fixed this yesterday and a host of other bugs, can you re-bootstrap (also no need to build the base images anymore I published samsaffron/docker)

That worked great!

How are you keeping the discourse version on your docker server up to date? Are you building new images, or just using ssh and doing it the old fashioned way?

I am actually using the awesome GitHub - discourse/docker_manager: plugin for use with discourse docker image , it allows me to update the container using /admin/docker , if I make a serious config change like updating redis / postgres / ruby / nginx I will re-bootstrap.

I am keeping the base image up to date in the docker repo.

I added myself to the docker group, but it doesn’t make it work without sudo.

discourse@discourse:~/discourse_docker$ sudo usermod -aG docker discourse
discourse@discourse:~/discourse_docker$ ./launcher bootstrap app
2013/12/13 15:57:47 dial unix /var/run/docker.sock: permission denied
2013/12/13 15:57:47 dial unix /var/run/docker.sock: permission denied
Calculated ENV: 
2013/12/13 15:57:47 dial unix /var/run/docker.sock: permission denied
2013/12/13 15:57:47 dial unix /var/run/docker.sock: permission denied
2013/12/13 15:57:47 dial unix /var/run/docker.sock: permission denied
2013/12/13 15:57:47 dial unix /var/run/docker.sock: permission denied

Usage: docker rm [OPTIONS] CONTAINER [CONTAINER...]

Remove one or more containers

  -link=false: Remove the specified link and not the underlying container
  -v=false: Remove the volumes associated to the container
2013/12/13 15:57:52 dial unix /var/run/docker.sock: permission denied
FAILED TO COMMIT

Usage: docker rm [OPTIONS] CONTAINER [CONTAINER...]

Remove one or more containers

  -link=false: Remove the specified link and not the underlying container
  -v=false: Remove the volumes associated to the container
Successfully bootstrappd, to starup use ./launcher start app

With sudo added, I get this:

Unable to find image 'samsaffron/discourse' (tag: latest) locally
Pulling repository samsaffron/discourse

followed by a few newlines at random intervals.

Edit: The problem was that I had forgotten to mkdir -p /var/docker/data. I think.

What version of docker are you running? be sure to be on latest. Also be sure to log out / in after adding yourself to sudo.

Will add smarts into launcher that ensures the mounted volumes exist or raises a proper error.

I installed another instance of discourse/docker on another machine last night. It looks like the Unable to find image step hides most of its output, which makes the blank lines appear at seemingly random times.

I’m on Docker version 0.7.1, build 88df052, by the way. I had to log out/in after adding myself to the docker group, but I was already in sudo (the Ubuntu installer did that for me).

Side note: On the production install, I have it listening on host port 2280 instead of 80, and then I have another instance of nginx (on the host) that proxies, and I commented out the proxy_set_header X-.* lines in location @discourse. That way, I can run multiple things on port 80 on the same server.

expose:
  - "2280:80"
  - "2222:22"

location / {
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_set_header Host $http_host;
    proxy_pass http://127.0.0.1:2280;
}

Any way you can PM me full logs? curious to see what is happening

I don’t have logs, but I figured out the reason it happens.

launcher contains this:

      (exec echo "$input" | docker run $env -e DOCKER_HOST_IP=$docker_ip -cidfile $cidbootstrap -i -a stdin -a stdout -a stderr $volumes $image \
         /bin/bash -c "$run_command") \
         || (docker rm `cat $cidbootstrap` && rm $cidbootstrap)

which (if the image isn’t downloaded yet) eventually gets to code in this file.

Since stdin isn’t a terminal, docker omits progress messages. It does not, however, omit the newlines from the progress messages (for whatever reason).

I think I know what is happening here, you must be using an old samsaffron/discourse image, can you try pulling latest

docker pull samsaffron/discourse

@sam I’m trying to use your launcher / pups framework to set up a different rails project (http://dradisframework.org). I’ve got a couple of questions:

1. Would you be interested in a pull request that removes Discourse-specific stuff from discourse/discourse_docker (e.g. making some variable name changes, console output messages, etc.)

2. The base image you use, is already prefilled with some Discourse-specific stuff (e.g. the git repo under /var/www/discourse etc.). In this blog you reference to your Docker bootstrap image broken link) but that has been since removed from your repo. Do you have/share documentation about how you create the samsaffron/discourse Docker image somewhere?

Update not sure how I could miss the stuff under /image in the main repo. For some reason it wasn’t in my boot2docker setup.

Many thanks!

I would be happy to take PRs that make it more flexible by adding switches, we already support the custom: base_image: that covers the majority of your needs.

However, we can not nuke discourse specific stuff out of launcher, just make it optional default on.

yeah exited containers and leftover images is a major pain. I need to
automate something to keep this clean.

HI Sam
Need some suggestions on discourse local development
using vscode devcontianer for local discourse development

Can we run local development with https, for this we need to install ngnix ?
Can we run local development without any port(4200 is default) ?

For local we use discourse.git
For Production we need to use discourse_docker, if yes, after adding custom plugins, themes, using gitlab actions how we can push code to production

if we change any settings of theme, admin,navigation how we can export those to Production without manully adding again in Production site

if possible could you guide how you are manaing the blog for local and how code deploying to produciton

Probably best ask on meta.discourse.org, our official docker installation support all sort of workflows