This repository contains source code for the Microsoft Azure Docker Virtual Machine Extension.
The source code is meant to be used by Microsoft Azure employees publishing the extension and the source code is open sourced under Apache 2.0 License for reference. You can read the User Guide below.
Docker VM extension can:
- Install latest stable version Docker on your VM
- If provided, configures Docker daemon to listen on specified port, with given certs
- If provided, launches the given containers using docker-compose
Schema for the public configuration file for the Docker Extension looks like this:
docker: (optional, JSON object)port: (optional, string) the port Docker listens onoptions: (optional, string array) command line options passed to the Docker engine
compose: (optional, JSON object) the compose.yml file to be used, converted to JSON.
A minimal simple configuration would be an empty json object ({}) or a more
advanced one like this:
{
"docker":{
"port": "2376",
"options": ["-D", "--dns=8.8.8.8"]
},
"compose": {
"cache" : {
"image" : "memcached",
"ports" : ["11211:11211"]
},
"blog": {
"image": "ghost",
"ports": ["80:2368"]
}
}
}NOTE: It is not suggested to specify
"port"unless you are going to specify"certs"configuration (described below) as well. This can open up the Docker engine to public internet without authentication.
Schema for the protected configuration file stores the secrets that are passed to the Docker engine looks like this:
certs: (optional, JSON object)ca: (required, string): base64 encoded CA certificate, passed to the engine as--tlscacertcert: (required, string): base64 encoded TLS certificate, passed to the engine as--tlscertkey: (required, string): base64 encoded TLS key, passed to the engine as--tlskey
login: (optional, JSON object) login credentials to log in to a Docker Registryserver: (string, optional) registry server, if not specified, logs in to Docker Hubusername: (string, required)password: (string, required)email: (string, required)
In order to encode your existing Docker certificates to base64, you can run:
$ cat ~/.docker/ca.pem | base64
An advanced configuration that configures TLS for Docker engine and logs in to Docker Hub account would look like this:
{
"certs": {
"ca": "<<base64 encoded ~/docker/ca.pem>>",
"cert": "<<base64 encoded ~/docker/cert.pem>>",
"key": "<<base64 encoded ~/docker/key.pem>>"
},
"login": {
"username": "myusername",
"password": "mypassword",
"email": "[email protected]"
}
}Using Azure CLI: Once you have a VM created on Azure and
configured your pub.json and prot.json (in section 1.1 and 1.2 above), you
can add the Docker Extension to the virtual machine by running:
$ azure vm extension set 'yourVMname' DockerExtension Microsoft.Azure.Extensions '1.0' \
--public-config-path pub.json \
--private-config-path prot.json
In the command above, you can change version (1.0) with '*' to use latest
version available, or '1.*' to get newest version that does not introduce non-
breaking schema changes. To learn the latest version available, run:
$ azure vm extension list
You can also omit --public-config-parh and/or --private-config-path if you
do not want to configure those settings.
- CoreOS
- Ubuntu 13 and higher
Other Linux distributions are currently not supported and extension is expected to fail on unsupported distributions.
After adding the extension, it can usually take a few minutes for the extension
to make it to the VM, install docker and do other things. You can see the
operation log of the extension at the
/var/log/azure/<<extension version>>/docker-extension.log file.
# 1.0.1506141804 (2015-06-14)
- Privacy Policy link update
# 1.0.1506090235 (2015-06-09)
- Bug fix
# 1.0.1506041832 (2015-06-04)
- Initial release