Docker in Docker
We have app and which will spin the short term (short span) docker containers. Right now, it runs in Ubunut16.04 server (VM) and we installed docker, and nodejs in same server. We have nodejs app which runs in same server so whenever a request comes in, then the nodejs app will spin up a docker container and execute a user input inside the docker container. Once after the docker finish its job or if it runs out of admin defined resources then the docker container will be forcefully killed (docker kill) and removed (docker rm).
Now my question is, is it best practices to run the Ubunte16.04 docker container and run nodjes app and the short term docker containers inside the Ubunuter16.04 docker container.
In short run a docker inside other docker container.
Docker-in-Docker is generally considered fragile and hard to maintain and using it isn’t a best practice. https://hub.docker.com/_/docker/ has a little discussion on this.
A straightforward (but potentially dangerous) way to rearrange this is to give the server process access to the host’s Docker socket, with docker run -v /var/run/docker.sock:/var/run/docker.sock. Then it could launch its own Docker containers as needed. Note that if you do this, these sub-containers’ docker run -v options refer to the host’s filesystem, not the calling container’s filesystem, so if you’re trying to use the filesystem to transfer data this can get tricky. Also note that being able to run any Docker command this way gives unlimited access to the host, so you need to be extremely careful about how you launch containers.
A larger redesign would be to introduce some sort of message-queueing system; I’ve successfully used RabbitMQ in the past but there are many other options. Instead of the server process launching a subprocess directly, it writes a message to a queue. Instead of the workers being short-lived processes that start and stop frequently, you have a long-lived worker that reads jobs off the queue and does them. This puts you in a much more established Docker space where nothing needs to dynamically start and stop containers, and you can easily test the Node-Rabbit-worker stack in a non-Docker environment.
- Typescript no overload matches this call
- WebTorrent : TypeError: Cannot read properties of undefined (reading 'find')
- NVM: Getting Permission denied with nvm install command
- Problem with PHP Parse Cloud and Stripe when using Testing Credit Cards
- How to export multiple components from an index file in React?
- npm install not working. Says that I need to check permissions?
- Accessing Swagger Documentation in the Browser
- Fastify not working on Docker / Kubernetes
- How to query data from InfluxDB using Node.js
- npm install doesn't work in Windows PowerShell
- Why can't I access req.body with multer?
- Nuxt ignoring latest version
- Convert Uint8Array into hex string equivalent in Node.js
- Why does my API response say "Filtered array only contains 0 items."
- Node.js Redis Connection Pooling
- Using async/await with a forEach loop
- react js not rendering properly after removing item from list
- Where does "res.send" go when fulfilling a post request from within a default form?
- How to get data from INSERT...RETURNING * in node.js sqlite3
- Why is postman showing error message but react app not showing it?
- How do I get the dirname of the calling method when it is in a different file in nodejs?
- How can I render pages in conditional states in ExpressJS?
- opensslErrorStack: [ 'error:03000086:digital envelope routines::initialization error' ]
- How can I impersonate another user with Passport.js in Node?
- Get request headers in azure functions NodeJs Http Trigger
- NodeJS connection header always present
- Upgrading Node.js to the latest version
- Proxy server cannot handle relative redirects
- NodeJS - nodemon not restarting my server
- Fetch function names from a file using tree-sitter-javascript