added new version of Dockerfile and convenience script #2
Conversation
|
Hi @mnapoli, I'm sure you have a lot on your plate already and I'm grateful for the work you do, but could you please consider looking into this PR? It's not a blocker for me since I already use it from my branch, but I think others might find it useful if it was merged. Thank you again |
…ainer The `HOST_AWS_CONF_DIR` ENV variable is set in brefphp/dev-environment#2
|
Hi, thank you for the PR! I did view that at the time and thought "oh that's a complete rewrite, I need to take time to review this properly" and never got that time. Merging a rewrite in a pull request is the hardest thing to be honest. I can't just hit merge and commit to maintain your code just like that. I need to understand why each line was changed. I'm sure there are good reasons for each of them, but I can't "guess" why you changed it. Here are ways to get out of this situation:
Another problem we need to solve here is the installation of the dev-env script. On master, users don't have to install anything. With your changes, they have to install that script. Don't get me wrong, that script is awesome. I'm just looking at "how" we can simplify the installation. One solution for that could be to move it in Bref (e.g. |
|
Hi, thank you for your time and proposals! I get why you're so reluctant to merge that (I'd be too). So unless I change my mind for some reason, I think I'll go with option 1 (commenting each line) because it seems the most logical for me and actually the least of work. I'll get to that in a couple day's time. Regarding the script. Thank you again and have a nice time. |
Oh yeah that's a good point!
Yep, good idea. E.g.
👍 awesome thank you |
Dockerfile
Outdated
| ENV PATH="/root/.serverless/bin:/root/.local/bin:${PATH}" | ||
|
|
||
| WORKDIR '/var/task' | ||
| FROM composer:1.10.4 |
There was a problem hiding this comment.
From the start I chose to use Alpine-based image for the following reasons:
- it is smaller
- it already is official Composer image, so I don't need to worry about downloading Composer (and its dependencies) manually later
There was a problem hiding this comment.
| FROM composer:1.10.4 | |
| # This image is based on Linux Alpine, a lighter image than debian/ubuntu | |
| FROM composer:1.10.4 |
By the way, why not use the latest version?
There was a problem hiding this comment.
Is the comment really necessary? I mean yes, it's smaller than something else, but we could pick many other facts. Should we state them too? And how would we know which ones?
And for the latest. You really shouldn't use it when you need to do something that depends on the system version. For example we know that Alpine 3.11 has docker=19.03.5-r0 in repository, but what will the latest a month from now have?
There was a problem hiding this comment.
Is the comment really necessary? I mean yes, it's smaller than something else, but we could pick many other facts. Should we state them too? And how would we know which ones?
This comment is to make my life, as maintainer, easier. In 1 year, I will stumble on that code and not remember why we chose that image over a classic linux distribution.
And for the latest. You really shouldn't use it when you need to do something that depends on the system version. For example we know that Alpine 3.11 has docker=19.03.5-r0 in repository, but what will the latest a month from now have?
Good point.
So does that mean that I will have to regularly update the version here, and then update the Docker version below too? How can I find the Docker version for the Alpine version that is referenced here?
There was a problem hiding this comment.
I thought the latest through again and I think we can use it in this situation eventually. The only things we might require specific versions of are only serverless and awscli, and maybe even those not. So if we leave out specifying package versions we can have the base system as latest.
I'll push the changes.
BTW, you can find the available packages per Alpine release at https://pkgs.alpinelinux.org/packages?name=docker&branch=v3.11&arch=x86_64
| fi | ||
|
|
||
| docker run --rm --interactive --tty \ | ||
| --user "$(id -u)":"$(id -g)" \ |
There was a problem hiding this comment.
necessary so all files created in container are actually owned by the user running this container
There was a problem hiding this comment.
| --user "$(id -u)":"$(id -g)" \ | |
| # So that all files created in container are actually owned by the user running this container | |
| --user "$(id -u)":"$(id -g)" \ |
There was a problem hiding this comment.
The comment breaks the multiline command, so I'd put the explanation under Explanations in README.md instead.
There was a problem hiding this comment.
I'll add it above the docker run command instead.
| --volume "${DOCKER_SOCK_PATH}:/var/run/docker.sock" \ | ||
| --volume "${AWS_CONF_DIR}:/home/app/.aws" \ | ||
| --volume "${PWD}:/app" \ | ||
| "bref/dev-env" "$@" |
There was a problem hiding this comment.
and final one - to pass all commands to the container
There was a problem hiding this comment.
| "bref/dev-env" "$@" | |
| # "$@" forwards all the arguments to the container | |
| "bref/dev-env" "$@" |
There was a problem hiding this comment.
The $@ is pretty basic Bash knowledge, but if you really want to have it described it'd have to be put somewhere else (above, below, in README.md) than in the middle of multiline command.
Dockerfile
Outdated
| ENV PATH="/root/.serverless/bin:/root/.local/bin:${PATH}" | ||
|
|
||
| WORKDIR '/var/task' | ||
| FROM composer:1.10.4 |
There was a problem hiding this comment.
| FROM composer:1.10.4 | |
| # This image is based on Linux Alpine, a lighter image than debian/ubuntu | |
| FROM composer:1.10.4 |
By the way, why not use the latest version?
Dockerfile
Outdated
| && composer global require hirak/prestissimo \ | ||
| && apk add --no-cache \ | ||
| docker=19.03.5-r0 \ | ||
| yarn=1.19.2-r0 \ |
There was a problem hiding this comment.
All Bref docs mention npm, could we install it? (we can also have yarn, why not)
Dockerfile
Outdated
| && pip3 install \ | ||
| --progress-bar off \ | ||
| --no-cache-dir \ | ||
| --disable-pip-version-check \ | ||
| awscli==1.18.39 |
There was a problem hiding this comment.
👍 thanks
Could you add this information into a comment?
| awscli==1.18.39 | ||
|
|
||
| USER app | ||
| ENV PATH=$PATH:/tmp/vendor/bin \ |
There was a problem hiding this comment.
I'm not sure which packages you have in mind?
Do you have an example of a use case?
| COMPOSER_HOME=/app/.composer | ||
| VOLUME /app | ||
| VOLUME /home/app/.aws | ||
| VOLUME /var/run/docker.sock |
There was a problem hiding this comment.
| VOLUME /var/run/docker.sock | |
| # Change the docker socket file location for successfully running Docker in Docker. | |
| VOLUME /var/run/docker.sock |
| fi | ||
|
|
||
| docker run --rm --interactive --tty \ | ||
| --user "$(id -u)":"$(id -g)" \ |
There was a problem hiding this comment.
| --user "$(id -u)":"$(id -g)" \ | |
| # So that all files created in container are actually owned by the user running this container | |
| --user "$(id -u)":"$(id -g)" \ |
| --user "$(id -u)":"$(id -g)" \ | ||
| --group-add "${DOCKER_GROUP_ID}" \ | ||
| --env HOST_AWS_CONF_DIR="${AWS_CONF_DIR}" \ | ||
| --volume "${DOCKER_SOCK_PATH}:/var/run/docker.sock" \ |
There was a problem hiding this comment.
| --volume "${DOCKER_SOCK_PATH}:/var/run/docker.sock" \ | |
| # Necessary for Docker in Docker | |
| --volume "${DOCKER_SOCK_PATH}:/var/run/docker.sock" \ |
There was a problem hiding this comment.
The comment breaks the multiline command. In addition the explanation is already mentioned under Explanations in README.md.
| --volume "${DOCKER_SOCK_PATH}:/var/run/docker.sock" \ | ||
| --volume "${AWS_CONF_DIR}:/home/app/.aws" \ | ||
| --volume "${PWD}:/app" \ | ||
| "bref/dev-env" "$@" |
There was a problem hiding this comment.
| "bref/dev-env" "$@" | |
| # "$@" forwards all the arguments to the container | |
| "bref/dev-env" "$@" |
Co-authored-by: Matthieu Napoli <[email protected]>
Dockerfile
Outdated
| ENV PATH="/root/.serverless/bin:/root/.local/bin:${PATH}" | ||
|
|
||
| WORKDIR '/var/task' | ||
| FROM composer:1.10.4 |
There was a problem hiding this comment.
Is the comment really necessary? I mean yes, it's smaller than something else, but we could pick many other facts. Should we state them too? And how would we know which ones?
And for the latest. You really shouldn't use it when you need to do something that depends on the system version. For example we know that Alpine 3.11 has docker=19.03.5-r0 in repository, but what will the latest a month from now have?
Dockerfile
Outdated
| && composer global require hirak/prestissimo \ | ||
| && apk add --no-cache \ | ||
| docker=19.03.5-r0 \ | ||
| yarn=1.19.2-r0 \ |
There was a problem hiding this comment.
Well, the docs mention it exactly 3 times:
- https://bref.sh/docs/installation.html
npm install -g serverless- already handled in this image
- https://bref.sh/docs/environment/serverless-yml.html
- there is a link to https://serverless.com/framework/docs/providers/aws/guide/plugins/ where they state
npm install --save custom-serverless-pluginwhich can be written asyarn add custom-serverless-plugin
- there is a link to https://serverless.com/framework/docs/providers/aws/guide/plugins/ where they state
- https://bref.sh/docs/frameworks/laravel.html
npm run prodthe same asyarn run prod
But I guess we can have npm too, if you insist. I don't really mind.
Dockerfile
Outdated
| && pip3 install \ | ||
| --progress-bar off \ | ||
| --no-cache-dir \ | ||
| --disable-pip-version-check \ | ||
| awscli==1.18.39 |
There was a problem hiding this comment.
| && pip3 install \ | |
| --progress-bar off \ | |
| --no-cache-dir \ | |
| --disable-pip-version-check \ | |
| awscli==1.18.39 | |
| && pip3 install \ | |
| --progress-bar off \ | |
| --no-cache-dir \ | |
| --disable-pip-version-check \ | |
| awscli==1.18.39 | |
| ## | |
| # pip3 install options explained: | |
| # --no-cache-dir makes resulting image is smaller | |
| # --disable-pip-version-check makes build quicker | |
| # --progress-bar off makes output cleaner | |
| # --upgrade is not necessary since we don't want to deal with its upgrade anyway | |
| # --user is not necessary since we're still root | |
| ## |
However I'm against explaining options since user should be able to read it easily from their names (that's why i don't use short variants, if at all possible) and if not they should read docs of given program where more information and related info could be.
| --disable-pip-version-check \ | ||
| awscli==1.18.39 | ||
|
|
||
| USER app |
There was a problem hiding this comment.
- TODO: try to not create the
appuser
| fi | ||
|
|
||
| docker run --rm --interactive --tty \ | ||
| --user "$(id -u)":"$(id -g)" \ |
There was a problem hiding this comment.
The comment breaks the multiline command, so I'd put the explanation under Explanations in README.md instead.
| --user "$(id -u)":"$(id -g)" \ | ||
| --group-add "${DOCKER_GROUP_ID}" \ | ||
| --env HOST_AWS_CONF_DIR="${AWS_CONF_DIR}" \ | ||
| --volume "${DOCKER_SOCK_PATH}:/var/run/docker.sock" \ |
There was a problem hiding this comment.
The comment breaks the multiline command. In addition the explanation is already mentioned under Explanations in README.md.
| --volume "${DOCKER_SOCK_PATH}:/var/run/docker.sock" \ | ||
| --volume "${AWS_CONF_DIR}:/home/app/.aws" \ | ||
| --volume "${PWD}:/app" \ | ||
| "bref/dev-env" "$@" |
There was a problem hiding this comment.
The $@ is pretty basic Bash knowledge, but if you really want to have it described it'd have to be put somewhere else (above, below, in README.md) than in the middle of multiline command.
- removed unnecessary code - changed project dir from `/app` to `/var/task`
I took a liberty of rewriting the Dockerfile to be more lightweight and added a convenience script.
The image now also includes Docker for
serverless invoke local --docker -f myFunctionto work. This however needs mounted Docker socket and group of user able to access it.To make the work with the image easier I've created script that does all the heavy lifting and updated README accordingly.
I'm open to suggestions.
Thank you