Closed peerchemist closed 6 years ago
tiangolo
commented
6 years ago Are you changing the name of the user by any chance?
For debugging purposes, try using a "non-privileged" port, like 8080, and see if that works. That would hint that there are issues with onwership of the file, root access, etc.
peerchemist
commented
6 years ago For debugging purposes, try using a "non-privileged" port, like 8080, and see if that works.
Yes, that works.
The container in question runs as a non-root user.
tiangolo
commented
6 years ago I see, are you on a Mac?
If you are on a Mac, try starting the same stack, using port 80, but using sudo to run it as root, in privileged mode. That way the macOS will let the stack bind to the machine port 80.
If you're not, let me know.
peerchemist
commented
6 years ago Not Mac, Ubuntu 18.04.
Ok so I've just made the app container run as root, it starts using port 80 properly. However it does not seem to expose port 5555 I've set it to? So it answers on port 80 still with apache landing page greeting me.
FROM tiangolo/uwsgi-nginx-flask:python3.6-alpine3.7
ENV APP_DIRECTORY=/app
#RUN
#addgroup -S ${USERNAME} \
# && adduser -D -H -S -s /bin/false -u 1000 -G ${USERNAME} ${USERNAME} \
RUN apk --update --no-cache add build-base \
&& apk add postgresql-dev \
&& python3 -m pip install psycopg2 --no-cache-dir \
&& apk --purge del build-base \
&& rm -rf /var/cache/apk/*
WORKDIR ${APP_DIRECTORY}
COPY requirements.txt ${APP_DIRECTORY}/
RUN pip install --no-cache-dir -r requirements.txt
COPY ./app ${APP_DIRECTORY}/
#RUN chown -R ${USERNAME}:${USERNAME} ${APP_DIRECTORY}
#USER ${USERNAME}
ENV APP_ENV=docker
ENV LISTEN_PORT 5555
EXPOSE 5555
ENTRYPOINT ["python3", "main.py"]if __name__ == '__main__':
init_pa()
app.run(host='0.0.0.0', port=80)I see, you can change and improve several things.
APP_DIRECTORY env var, inside a Docker container you can have a deterministic recipe and it will simplify things.root user inside the container only has access to that container, there's is nothing that user can risk, unless you mount a privileged directory or something similar. If you have a specific reason to need a different user, let me know. That's why you were having problems with the port. That specific user you were creating didn't have access to the internal (intra-container) privileged 80 port. Only the intra-container root user.port logic.ENTRYPOINT, you will override all the image specific handling, and you will be serving using the debugging Flask server instead of Nginx with uWSGI. Remove that so that the image can "do its thing".To summarize:
create an external container with Postres in your Docker Compose.
Use this Dockerfile:
FROM tiangolo/uwsgi-nginx-flask:python3.6-alpine3.7
RUN apk --update --no-cache add build-base \
&& python3 -m pip install psycopg2 --no-cache-dir \
&& apk --purge del build-base \
&& rm -rf /var/cache/apk/*
COPY requirements.txt /app
RUN pip install --no-cache-dir -r requirements.txt
COPY ./app /appAlso, read the QuickStart, it's like 2 paragraphs: https://github.com/tiangolo/uwsgi-nginx-flask-docker#quickstart
And also, if you want to see a full project configured to use PosgreSQL with everything set up (and several more features), check: https://github.com/tiangolo/full-stack
peerchemist
commented
6 years ago Okay but how to get the container properly listen at port other than 80? This will be running behind host nginx and I do not wish to map it to host:80 as main nginx.
tiangolo
commented
6 years ago Read the Docker getting started guide: https://docs.docker.com/get-started/part2/#define-a-container-with-dockerfile
It should help clarify several things.
If you listen on port 80 inside the container doesn't mean that it will be listening on port 80 outside. For it to listen outside you have to map the ports with something like "5555:80", that would make your host listen on port 5555 and send the communication to the port 80 inside the container.
@tiangolo any ideas on what could be causing this error:
Flask should always be listening on the port 80, right?