If someone wants to pick up where we left off, feel free to fork. Since CircleCI 2.0 allowed docker containers, we migrated our build to it (and recommend it). Our production has since moved to convox.
A simplified pattern to execute rails applications within Docker (with a CI build emphasis).
Uses version: '2' of docker-compose
syntax
Note: The only item that is rails-specific is the db_check
, otherwise this can be useful for other CI situations as well. Perhaps we should have chosen a different name?
- DRY declarative
docker-rails.yml
allowing multiple environments to be defined with an inherited dockercompose
configuration - Provides individual convenience functions
up | bash | stop | extract | cleanup
to easily work with target environment (even in a concurrent situation) - Full workflow for CI usage with automated container, volume, and image cleanup.
- Interpolates variables
docker-compose.yml
making CI builds much easier - DB check CLI function provided for docker-compose
command
to check if db is ready - Configurable exit_code for
ci
- determine which container's exit code will be the result of the process (useful for CI tests)
CI, the reason this is built. Do it all, do it consistently, do it concurrently, do it easily, and always cleanup after yourself.
docker-rails ci test
ci
executes:
before_command
- run anything on the host prior to building the docker image e.g.rm -Rf target
compose
- create the resolveddocker-compose.yml
build
-docker-compose build
the configurationup
-docker-compose up
the configurationcleanup
stop
- stop all containers for this configuration (including one-off sessions)extract
- extract any defined files from any containerrm_volumes
-docker-compose rm -v --force
to cleanup any container volumes (excluding the gems volume)rm_compose
- cleanup the generated compose.yml file for thebuild
rm_dangling
- cleanup any dangling images
NOTE: If using bundle exec
, you'll need to do a bundle
on both the host and container. These examples avoid bundle exec
on the host to avoid the time taken to bundle (it should happen inside your container).
In your environment, ensure that docker-rails
is present:
gem install --no-ri --no-rdoc docker-rails
Then run it:
docker-rails ci --build=222 test
or with the environment variable option
DOCKER_RAILS_BUILD=222 docker-rails ci test
or for local testing (uses 1
for build)
docker-rails ci test
Almost all of the commands below are in support of the ci
command, so why not give access directly to them? Helpful additions include bash_connect
to connect to a running container and exec
the equivalent of docker-compose run
(but thor complained and we can't use reserverd word run
)
Commands:
docker-rails bash_connect <target> <service_name> # Open a bash shell to a running container (with automatic cleanup) e.g. docker-rails bash --build=222 development db
docker-rails build <target> # Build for the given build/target e.g. docker-rails build --build=222 development
docker-rails ci <target> # Execute the works, everything with cleanup included e.g. docker-rails ci --build=222 test
docker-rails cleanup <target> # Runs container cleanup functions stop, rm_volumes, rm_compose, rm_dangling, ps_all e.g. docker-rails cleanup --build=222 development
docker-rails compose <target> # Writes a resolved docker-compose.yml file e.g. docker-rails compose --build=222 test
docker-rails db_check <db> # Runs db_check e.g. bundle exec docker-rails db_check mysql
docker-rails exec <target> <service_name> <command> # Run an arbitrary command on a given service container e.g. docker-rails exec --build=222 development db bash
docker-rails help [COMMAND] # Describe available commands or one specific command
docker-rails ps <target> # List containers for the target compose configuration e.g. docker-rails ps --build=222 development
docker-rails ps_all # List all remaining containers regardless of state e.g. docker-rails ps_all
docker-rails rm_dangling # Remove danging images e.g. docker-rails rm_dangling
docker-rails rm_exited # Remove exited containers e.g. docker-rails rm_exited
docker-rails rm_volumes <target> # Stop all running containers and remove corresponding volumes for the given build/target e.g. docker-rails rm_volumes --build=222 development
docker-rails stop <target> # Stop all running containers for the given build/target e.g. docker-rails stop --build=222 development
docker-rails up <target> # Up the docker-compose configuration for the given build/target. Use -d for detached mode. e.g. docker-rails up -d --build=222 test
Options:
-b, [--build=BUILD] # Build name e.g. 123. Can also be specified as environment variable DOCKER_RAILS_BUILD
# Default: 1
Add this line to your application's Gemfile:
gem 'docker-rails'
And then execute:
$ bundle
Or install it yourself as:
$ gem install docker-rails
This is a real world example (not a minimal example) of a rails engine called acme
with a dummy
application used for testing. Other notable items:
- installs node
- uses
dockito/vault
viaONVAULT
to executenpm
with private key access without exposing the npm key to the layer - runs
npm build
to transpile thedummy
application UI - allows for use of a private npm registry
FROM convox/ruby
# mysql client, nodejs, clean up APT when done.
# - libelf1 for flow-bin
# - libfontconfig for phantomjs
RUN apt-get update -qq && apt-get install -qy \
vim \
wget \
libelf1 \
libfontconfig \
libmysqlclient-dev \
mysql-client \
git \
curl \
&& curl -L https://raw.githubusercontent.com/dockito/vault/master/ONVAULT > /usr/local/bin/ONVAULT \
&& chmod +x /usr/local/bin/ONVAULT \
&& rm -rf /var/lib/apt/lists/* \
&& apt-get -y autoclean
# Install nodejs - see dockerfile - https://github.com/nodejs/docker-node/blob/master/6.2/Dockerfile
# gpg keys listed at https://github.com/nodejs/node
RUN set -ex \
&& for key in \
9554F04D7259F04124DE6B476D5A82AC7E37093B \
94AE36675C464D64BAFA68DD7434390BDBE9B9C5 \
0034A06D9D9B0064CE8ADF6BF1747F4AD2306D93 \
FD3A5288F042B6850C66B31F09FE44734EB7990E \
71DCFD284A79C3B38668286BC97EC7A07EDE3FC1 \
DD8F2338BAE7501E3DD5AC78C273792F7D83545D \
B9AE9905FFD7803F25714661B63B535A4C206CA9 \
C4F0DFFF4E8C1A8236409D08E73BC641CC11F4C8 \
; do \
gpg --keyserver ha.pool.sks-keyservers.net --recv-keys "$key"; \
done
ENV NPM_CONFIG_LOGLEVEL error
ENV NODE_VERSION 6.8.1
RUN curl -SLO "https://nodejs.org/dist/v$NODE_VERSION/node-v$NODE_VERSION-linux-x64.tar.xz" \
&& curl -SLO "https://nodejs.org/dist/v$NODE_VERSION/SHASUMS256.txt.asc" \
&& gpg --batch --decrypt --output SHASUMS256.txt SHASUMS256.txt.asc \
&& grep " node-v$NODE_VERSION-linux-x64.tar.xz\$" SHASUMS256.txt | sha256sum -c - \
&& tar -xJf "node-v$NODE_VERSION-linux-x64.tar.xz" -C /usr/local --strip-components=1 \
&& rm "node-v$NODE_VERSION-linux-x64.tar.xz" SHASUMS256.txt.asc SHASUMS256.txt
# Set an environment variable to store where the app is installed to inside of the Docker image.
ENV INSTALL_PATH /app
RUN mkdir -p $INSTALL_PATH
WORKDIR $INSTALL_PATH
# Ensure gems are cached they are less likely to change than node modules
COPY acme.gemspec acme.gemspec
COPY Gemfile Gemfile
COPY Gemfile_shared.rb Gemfile_shared.rb
COPY spec/dummy/Gemfile spec/dummy/Gemfile
# This is only here to trigger re-bundle when lock changes, we actually only use the ImageGemfile.lock so that we are
# always doing a fresh bundle anytime the source lock changes. Only keep the dummy lock in the repo, not the engine lock.
COPY spec/dummy/Gemfile.lock spec/dummy/Gemfile.lock
# Bundle acme and the dummy app
RUN \
bundle install --jobs 12 --retry 3 --without development \
&& mv Gemfile.lock ImageGemfile.lock \
&& cd spec/dummy \
&& bundle install --jobs 12 --retry 3 --without development \
&& mv Gemfile.lock ImageGemfile.lock
# Ensure node_modules are cached next, they are less likely to change than source code
WORKDIR $INSTALL_PATH
COPY package.json package.json
COPY spec/dummy/package.json spec/dummy/package.json
# https://docs.npmjs.com/private-modules/docker-and-private-modules
ARG NPM_TOKEN
# npm install with:
# - private keys accessible
# - skip optional dependencies like fsevents
# - production (**turned off because we need eslint etc devDependencies)
# - link dummy's node_modules to acme for a faster install
# - add the authorized host key for github (avoids "Host key verification failed")
RUN \
#echo "Using NPM_TOKEN: ${NPM_TOKEN}" \
echo "//registry.npmjs.org/:_authToken=${NPM_TOKEN}" > .npmrc \
&& ONVAULT npm install --no-optional \
&& rm .npmrc \
&& cd spec/dummy \
&& ln -s $INSTALL_PATH/node_modules node_modules
# add all the test hosts to localhost to skip xip.io
RUN echo "127.0.0.1 localhost dummy.com.127.0.0.1.xip.io" >> /etc/hosts
#--------------
# NOTE: we evidently must include the VOLUME command **after** the npm install so that we can read the installed modules
#--------------
# Bypass the union file system for better performance (this is important for read/write of spec/test files)
# https://docs.docker.com/engine/reference/builder/#volume
# https://docs.docker.com/userguide/dockervolumes/
VOLUME $INSTALL_PATH
# Copy the project files into the container (again, better performance).
# Use `extract` in the docker-rails.yml to obtain files such as test results.
# NOTE: make sure all unwanted files are listed in the .dockerignore! i.e. lock files in the case of an engine!
COPY . .
#
# - Overwrite the source lock files with the image lock files (so we ensure a fresher bundle _and_ that we have the bundled gems in the lock file)
# - Run npm build on dummy
RUN \
mv ImageGemfile.lock Gemfile.lock \
&& cd spec/dummy \
&& mv ImageGemfile.lock Gemfile.lock \
&& npm run build
Environment variables will be interpolated, so feel free to use them.
The rails engine example below shows an example with all of the environments ssh_test | test | parallel_tests | sysbench*
to show reuse of the primary compose
configuration.
verbose: true
before_command: >
bash -c "
rm -Rf target
&& rm -Rf spec/dummy/log
&& mkdir -p target
"
exit_code: web
# ---
# Run a dockito vault container during the build to allow it to access secrets (e.g. github clone)
dockito:
vault:
enabled: true
# ---
# Declare a reusable extract set
extractions: &extractions
web:
extract:
- '/app/target'
- '/app/vcr'
- '/app/spec/dummy/log:spec/dummy'
# local environments need elasticsearch, staging/production connects to existing running instance.
elasticsearch: &elasticsearch
elasticsearch:
image: library/elasticsearch:1.7
ports:
- "9200"
test:
<<: *extractions
compose:
services:
<<: *elasticsearch
web:
links:
- elasticsearch # standard yaml doesn't merge arrays so we have to add this explicitly
environment:
- RAILS_ENV=test
- CI=true
command: >
bash -c "
cd ../.. \
&& gem list aws-sdk \
&& bundle exec rake -T \
&& npm run validate \
&& cd spec/dummy \
&& echo 'Check and wait for database connection' \
&& bundle exec docker-rails db_check mysql \
&& echo 'DB rebuild' \
&& bundle exec rake db:rebuild_test \
&& echo 'Tests' \
&& cd ../.. \
&& bundle exec rake spec SPEC=spec/app/models/plan_spec.rb cucumber FEATURE=features/public_pages.feature
"
parallel_tests:
<<: *extractions
compose:
services:
<<: *elasticsearch
web:
links:
- elasticsearch # standard yaml doesn't merge arrays so we have to add this explicitly
environment:
- RAILS_ENV=test
- CI=true
command: >
bash -c "
cd ../.. \
&& npm run validate \
&& cd spec/dummy \
&& echo 'Check and wait for database connection' \
&& bundle exec docker-rails db_check mysql \
&& echo 'DB rebuild' \
&& bundle exec rake db:rebuild_test[true] \
&& echo 'Tests' \
&& cd ../.. \
&& bundle exec rake parallel:spec parallel:features
"
compose:
version: '2'
services:
web:
build:
context: .
args:
- NPM_TOKEN
working_dir: /app/spec/dummy
ports:
- "3000"
- "4000"
links:
- db
# volumes:
# # make keys and known_hosts available
# - ~/.ssh:/root/.ssh
db:
# https://github.com/docker-library/docs/tree/master/mysql
image: library/mysql:5.7
ports:
- "3306"
volumes:
- ./db/mysql:/etc/mysql/conf.d
# https://github.com/docker-library/docs/tree/master/mysql#environment-variables
environment:
- MYSQL_ALLOW_EMPTY_PASSWORD=true
# --------------------------
# test cases below here
ssh_test:
compose:
services:
web:
command: bash -c "ssh -T [email protected]"
sysbench_all:
compose:
services:
<<: *elasticsearch
web:
command: >
bash -c "
echo 'Benchmarking CPU'
&& sysbench --test=cpu --cpu-max-prime=20000 run
&& echo 'Creating file for IO benchmark'
&& sysbench --test=fileio --file-total-size=2G prepare
&& echo 'Benchmarking IO'
&& sysbench --test=fileio --file-total-size=2G --file-test-mode=rndrw --init-rng=on --max-time=300 --max-requests=0 run
&& echo 'Cleaning up file for IO benchmark'
&& sysbench --test=fileio --file-total-size=2G cleanup
&& echo 'Bundling gems'
&& bundle install --jobs 4 --retry 3
&& echo 'Check and wait for database connection'
&& bundle exec docker-rails db_check mysql
&& echo 'Create test database'
&& mysql -h db -u root -e 'create database test'
&& echo 'Preparing MySQL benchmark'
&& sysbench --test=oltp --oltp-table-size=1000000 --mysql-db=test --mysql-user=root --mysql-host=db prepare
&& echo 'Benchmarking MySQL'
&& sysbench --test=oltp --oltp-table-size=1000000 --mysql-db=test --mysql-user=root --mysql-host=db --max-time=60 --oltp-read-only=on --max-requests=0 --num-threads=8 run
&& echo 'Cleaning up MySQL benchmark'
&& sysbench --test=oltp --mysql-db=test --mysql-user=root --mysql-host=db cleanup
"
sysbench_db:
compose:
services:
<<: *elasticsearch
web:
command: >
bash -c "
echo 'Bundling gems'
&& bundle install --jobs 4 --retry 3
&& echo 'Check and wait for database connection'
&& bundle exec docker-rails db_check mysql
&& echo 'Create test database'
&& mysql -h db -u root -e 'create database test'
&& echo 'Preparing MySQL benchmark'
&& sysbench --test=oltp --oltp-table-size=1000000 --mysql-db=test --mysql-user=root --mysql-host=db prepare
&& echo 'Benchmarking MySQL'
&& sysbench --test=oltp --oltp-table-size=1000000 --mysql-db=test --mysql-user=root --mysql-host=db --max-time=60 --oltp-read-only=on --max-requests=0 --num-threads=8 run
&& echo 'Cleaning up MySQL benchmark'
&& sysbench --test=oltp --mysql-db=test --mysql-user=root --mysql-host=db cleanup
"
sysbench_io:
compose:
services:
<<: *elasticsearch
web:
command: >
bash -c "
echo 'Creating file for IO benchmark'
&& sysbench --test=fileio --file-total-size=2G prepare
&& echo 'Benchmarking IO'
&& sysbench --test=fileio --file-total-size=2G --file-test-mode=rndrw --init-rng=on --max-time=300 --max-requests=0 run
&& echo 'Cleaning up file for IO benchmark'
&& sysbench --test=fileio --file-total-size=2G cleanup
"
sysbench_cpu:
compose:
services:
<<: *elasticsearch
web:
command: >
bash -c "
echo 'Benchmarking CPU'
&& sysbench --test=cpu --cpu-max-prime=20000 run
"
The following shows execution within Atlassian Bamboo using an script task and RVM on the host.
This will run everything, including cleanup.
#!/bin/bash
# force bash, not bin/sh
if [ "$(ps -p "$$" -o comm=)" != "bash" ]; then
# Taken from http://unix-linux.questionfor.info/q_unix-linux-programming_85038.html
bash "$0" "$@"
exit "$?"
fi
source ~/.bash_profile
rvm gemset list
echo "Build: $bamboo_buildNumber"
gem install --no-ri --no-rdoc docker-rails
docker-rails ci --build=$bamboo_buildNumber parallel_tests
In the Final tasks section, add another inline script task just to ensure cleanup. If all is well, this is duplicate work (that takes very little time), but we have seen cases where executing stop
in Bamboo will kill off the process without a chance to cleanup. This will take care of that scenario.
#!/bin/bash
# force bash, not bin/sh
if [ "$(ps -p "$$" -o comm=)" != "bash" ]; then
# Taken from http://unix-linux.questionfor.info/q_unix-linux-programming_85038.html
bash "$0" "$@"
exit "$?"
fi
source ~/.bash_profile
docker-rails cleanup --build=$bamboo_buildNumber parallel_tests
Yes please.
- Fork it ( https://github.com/[my-github-username]/docker-rails/fork )
- Create your feature branch (
git checkout -b my-new-feature
) - Commit your changes (
git commit -am 'Add some feature'
) - Push to the branch (
git push origin my-new-feature
) - Create a new Pull Request
MIT license