Question posted in 
I’m using Docker for the first time and am running into an issue where I think my main problem is I’m not sure of the source of the issue. I’m running an EC2 instance on AWS, which is properly configured, etc. to host a site.
If I have an update to my git repo, I can manually ssh into the git repo, run
git pull
sudo docker-compose down -v --remove-orphans
sudo docker-compose -f docker-compose.prod.yml up -d --build
and this works like a charm.
However, I’ve been working on a pipeline with GitHub actions, and I’m pretty much containerizing the code that was pushed into a Docker image, pushing this to an ECR private repo, and then sshing into the EC2 instance, pulling the new image I just pushed, decomposing the old one, and (well, herein lies the issue), restarting with the new image.
I’ve debugged a bunch and I am fairly certain that the image pushed to my ECR private repo is correct, and I’m certain that it is on the EC2 instance/I have access to it.
The relevant portion of my Dockerfile is:
- name: Permission for ecr
run: ssh staging 'aws ecr get-login-password --region us-east-1 | sudo docker login --username AWS --password-stdin ${{ secrets.AWS_ECR_REGISTRY }}'
- name: Pull new image
run: ssh staging 'sudo docker pull ${{ secrets.AWS_ECR_REGISTRY }}/my-repo:latest'
- name: Stop running container
run: ssh staging 'cd vms; sudo docker-compose down -v --remove-orphans'
- name: Start new container
run: ssh staging 'cd vms; sudo docker-compose -f docker-compose.prod.yml up -d --build'
I think the issue might actually lie in my Dockerfile itself:
FROM python:3
ENV PYTHONUNBUFFERED=1
WORKDIR /code
COPY requirements.txt /code/
RUN pip install -r requirements.txt
COPY . /code/ #line I'm concerned about
EXPOSE 8000
ENTRYPOINT python manage.py collectstatic --noinput && python manage.py runserver 0.0.0.0:8000
since what this does is copy everything in the current directory to the code volume. I think this might be a problem because, sure maybe I pull and push the docker image correctly to the server, but when I actually run sudo docker-compose -f docker-compose.prod.yml up -d --build my best guess is that everything in the current directory is containerized and started, but I’d like my new image that I pushed to be started up.
Edit: here’s the docker-compose.prod.yml file:
version: "3.8"
services:
web:
build:
context: ..
dockerfile: ./docker/Dockerfile.prod
command: gunicorn vms.wsgi:application --bind 0.0.0.0:8000
volumes:
- ..:/code
expose:
- 8000
nginx:
build: ../nginx
ports:
- 1337:80
depends_on:
- web
How can I do this?
2
Answers
Update for anyone else who has a similar issue, I ended up resolving this by replacing the "ENTRYPOINT" line in my dockerfile with this line:
CMD [ "python", "manage.py", "runserver", "0.0.0.0:8000"]and I also removed:from the docker-compose file + changed to use an image, like the accepted answer mentions. Played around with a lot of things (as is typical in dev ops, I guess) so not sure exactly what was causing the issues but my final docker compose file ended up looking like this:
hope this helps someone in the future!
The problem you have is that you’re trying to build the docker image again. Since you push it to ECR, instead of building it you can simply use the built image and run it out of the box.
Use this
docker-compose.prod.ymlfile instead:Note that I have removed the
buildstep in both your apps and replaced them withimage. You have to fill the proper values in there.And replace the build command using the following:
Hope this helps you. Cheers 🍻!!!