Using Docker Images
2 minute read
Drycc supports deploying applications using existing [Docker Images][]. This approach integrates well with Docker-based CI/CD pipelines.
Prepare an Application
Clone this example application to get started:
$ git clone https://github.com/drycc/example-dockerfile-http.git
$ cd example-dockerfile-http
Build the image and push it to DockerHub using your local Docker client:
$ docker build -t <username>/example-dockerfile-http .
$ docker push <username>/example-dockerfile-http
Docker Image Requirements
Container images must meet these requirements for successful deployment:
- Use the
EXPOSEdirective to expose exactly one port for HTTP traffic. - Ensure your application listens for HTTP connections on that port.
- Define the default process using the
CMDdirective. - Include bash in the container image.
Note
For private registries (such as GCR), set a$PORT environment variable that matches your EXPOSEd port. For example: drycc config set PORT=5000. See Configuring Registry for details.
Create an Application
Create an application on the controller:
$ mkdir -p /tmp/example-dockerfile-http && cd /tmp/example-dockerfile-http
$ drycc create example-dockerfile-http --no-remote
Creating application... done, created example-dockerfile-http
Note
For commands other thandrycc create, the client uses the current directory name as the app name if not specified with --app.
Deploy the Application
Deploy from DockerHub or a public registry using drycc pull:
$ drycc pull <username>/example-dockerfile-http:latest
Creating build... done, v2
$ curl -s http://example-dockerfile-http.local3.dryccapp.com
Powered by Drycc
Drycc automatically detects container images and scales the web process type to 1 on first deployment.
Scale your application by adjusting the number of containers. For example, use drycc scale web=3 to run 3 web containers.
Private Registry
Deploy images from private registries by attaching credentials using drycc registry. Use the same credentials as docker login.
Follow these steps for private Docker images:
- Obtain registry credentials (such as Quay.io Robot Account or GCR.io Long Lived Token)
- Run
drycc registry set <username> <password> -a <application-name> - Use
drycc pullnormally against private registry images
For GCR.io Long Lived Token, compact the JSON blob using jq and use _json_key as the username:
drycc registry set _json_key "$(cat google_cloud_cred.json | jq -c .)"
When using private registries, Kubernetes manages image pulls directly. This improves security and speed, but requires setting the application port manually with drycc config set PORT=80 before configuring registry credentials.
Note
[GCR.io][] and [ECR][] with short-lived authentication tokens are not currently supported.Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.