Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add files via upload (docker volume article) #28

Merged
merged 16 commits into from
May 29, 2024
Merged

Add files via upload (docker volume article) #28

Changes from 15 commits
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
dc6d12f
Add files via upload
FireFrozen94 Feb 20, 2024
c6f11cd
Merge branch 'main' into FireFrozen94-patch-1
ctmbl Apr 12, 2024
d53d454
Move article to content folder
ctmbl Apr 12, 2024
9e7f876
Rename to docker_volume_introduction.md
ctmbl Apr 12, 2024
9cc89bb
Update post header
ctmbl Apr 12, 2024
8e8397b
Update core article see commit body
ctmbl Apr 12, 2024
9ff9c64
fix typos
ctmbl Apr 16, 2024
ec9834e
Update article's title and summary
ctmbl May 4, 2024
66970ab
BIND MOUNTS FIX: Replace volumes by bind mounts, place a lot of TODO
ctmbl May 4, 2024
13246e6
Update tags
ctmbl May 4, 2024
1a1c124
Rework the whole article formulation
ctmbl May 4, 2024
f822909
Rework sources
ctmbl May 4, 2024
0f9c7ca
Add myself as co-author
ctmbl May 4, 2024
d1cbe65
Merge branch 'main' into FireFrozen94-patch-1
ctmbl May 22, 2024
5828f00
Fix typo
ctmbl May 28, 2024
20bc9f8
Rename file
ctmbl May 29, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
104 changes: 104 additions & 0 deletions src/content/posts/docker_volume_introduction.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,104 @@
---
title: "Use Docker's bind mounts to build a persistent log system"
summary: "Persist data after container's death and share data with the host or accross containers through Docker's bind mounts feature"
date: 2023-09-19T12:00:00+0200
lastUpdate: 2024-05-03T20:00:00+0200
tags: ["docker", "volume", "bind mounts", "logs"]
author: FireFrozen
draft: false
---

*Co-Authored with [ctmbl](https://iscsc.fr/author/ctmbl/)*

Before reading this article, it's recommended to have a minimum knowledge of `docker`.
See, for example, the previous blog on docker: [Get Started with Docker](https://iscsc.fr/posts/short-docker-introduction/) by `ctmbl`.

Also I **strongly** recommend you to read [the Disclaimer](#a-brief-disclaimer).

## A brief disclaimer

**TLDR**:
Volumes and bind mounts aren't the same thing.
We can **confuse `--volume` and `--mount`** BUT **we can't** confuse the **concepts of volumes and bind mounts**.
Volumes aren't only managed by `--volume`, bind mounts aren't only managed by `--mount`.

This article addresses the concept of bind mounts.

---

In Docker, two ways exist to persist/share data: **volumes** (named and anonymous) and **bind mounts**.

What we're talking about in this blog aren't volumes at all, they are bind mounts.
We'll name them *bind mounts* **but be aware that** often on Internet you'll encounter the word *volume* while the author is actually speaking of a bind mount.
This is certainly due to the fact that **options `--volume` and `--mount` can be used almost interchangeably**.

> Even in [docker's doc the naming is confusing](https://docs.docker.com/storage/volumes/#differences-between--v-and---mount-behavior)

Key differences exist between bind mounts and volumes, for more information see [Manage data in Docker](https://docs.docker.com/storage/).

## What is a Docker's bind mount?

A docker's *bind mount* is the action of **mounting an existing file or directory** of the host (the computer running the container) **into a container**. To rephrase, it enables a container to **share a memory space with the host**. So both the container and the user can access and modify it in real time and because it's not "contained" in the container but only mounted, it'll **persist after the container's death**.

## Why do we need bind mounts?

Docker containerization is very useful on lots of points for development but it's very annoying if your application **needs to produce persistent data**, like logs. Indeed if you **kill** your container (to update it for example) or if it **crashes**, you **lose everything that was inside** and understanding why your application crashed without its logs can be very complicated or even impossible.

So we need to find a way to **keep certain files after the container's death** and that can be **achieved with bind mounts**.

It's also interesting to notice another really good usecase for *bind mounts*: during development you can share source code to execute it within the container while editing it in your IDE in the host

## How to create a bind mount?

To create a bind mount, you need to add a specific argument to the `docker run` command *([similar syntax](https://docs.docker.com/compose/compose-file/compose-file-v3/#volumes) exists for `docker-compose.yml`)*.

There is two different arguments which are really similar in their use. Those are `--mount` and `--volume`, both can be used to create bind mounts (but volumes too, see [Disclaimer](#a-brief-disclaimer) above).
However they slightly differ: if you enter a non existing file to mount, `--volume` will create it when `--mount` will return an error, also `--volume` needs fewer arguments.
For these reason and because we focus on simplicity in this post we'll describe the `--volume` argument.

The exact syntax is:
```bash
docker run <other args> --volume path/in/host:path/in/container:<optional args>
```

> Note that you can use `-v` instead of `--volume`

> Note that you can mount a directory instead of a file with the same method

> A [similar syntax](https://docs.docker.com/compose/compose-file/compose-file-v3/#volumes) exists for `docker-compose.yml`

Optional args must be separated by comas, they are not used very often but lets detail the most useful one quickly :
- `ro` : if used, the mounted file/folder will be in read-only mode inside the container

A concrete example with the [code of our RootMe discord bot](https://github.com/iScsc/RootPythia/blob/2681ca26286ea5063371536e995a5e3cf39734a5/run.sh#L12):
```bash
source ./.env.prod

docker run --rm --interactive --tty \
--detach \
--volume $(realpath -P ${LOG_FOLDER}):/opt/${NAME}/logs \
--env-file .env.prod \
--name ${NAME} \
${NAME}:latest
```
In this example `LOG_FOLDER` is an environment variable defined in the `.env.prod` file.
The code will write transparently to `/opt/${NAME}/logs/<log file>` but because this folder is shared with the host, logs will **be available in the host** and survive potential application crashes or updates.

> **WARNING : Be careful that the bot/application running in the container must have the right permission to modify the file/directory**

## Resources to go further

About *volumes* VS *bind mounts*:
- [Manage data in Docker](https://docs.docker.com/storage/)
- [Choose the right type of mount](https://docs.docker.com/storage/#choose-the-right-type-of-mount)

About *bind mounts* specifically:
- [Start a container with a bind mount](https://docs.docker.com/storage/bind-mounts/#start-a-container-with-a-bind-mount)
- [Bind mounts use cases](https://docs.docker.com/storage/#good-use-cases-for-bind-mounts)

Other sources:
- [Volumes in Docker compose file](https://docs.docker.com/compose/compose-file/compose-file-v3/#volumes)
- https://dev.to/doziestar/a-comprehensive-guide-to-docker-volumes-4d9h
- https://www.baeldung.com/ops/docker-volumes
- [Never mess with `/var/lib/docker` docker forum](https://forums.docker.com/t/write-from-host-to-volume/47274)
- [Volumes use cases](https://docs.docker.com/storage/#good-use-cases-for-volumes)
Loading