Docker
Unless otherwise noted, commands run on Ubuntu 22.
Setup
# Add the current user to the docker group so docker can be run without sudo.
sudo usermod -aG docker ${USER}
su - ${USER}
exit
Basics
# Get installed version.
docker -v
# Verify Docker is setup / run the Hello World image.
sudo docker run hello-world
# Check whether Docker is running.
sudo systemctl status docker
# Search Docker Hub for all images matching a search term (<term>).
docker search <term>
# Show all downloaded images.
docker images
# Remove an image.
docker rmi <image-id>
Containers
# List running containers.
docker ps
# List all containers.
docker ps -a
# Start a container with <container-id> or <container-name>.
docker start <container-id>
docker start <container-name>
# Stop a container.
docker stop <container>
# Restart a container.
docker restart <container>
# Remove/delete a container.
docker rm <container>
# View container's logs.
docker logs <container>
Working with Running Containers
docker cp path/to/file <container>:./destination/path/
# Run bash on the container, if installed.
docker exec -it <container> bash
System
# Show disk usage.
docker system df
docker system df --verbose
# Show active container stats.
docker stats
# View and prune images.
docker image ls --filter dangling=true
docker image prune
Compose
# Stop based upon docker-compose.yml in directory.
docker compose stop
# Start services based upon docker-compose.yml.
docker compose up -d
Install on Ubuntu
On Ubuntu, from https://docs.docker.com/engine/install/ubuntu/:
sudo apt-get update
sudo apt-get install ca-certificates curl gnupg
sudo install -m 0755 -d /etc/apt/keyrings
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg
sudo chmod a+r /etc/apt/keyrings/docker.gpg
echo \
"deb [arch="$(dpkg --print-architecture)" signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu \
"$(. /etc/os-release && echo "$VERSION_CODENAME")" stable" | \
sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
sudo apt-get update
sudo apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
# Test.
sudo docker run hello-world
docker pull ubuntu docker run -it ubuntu apt update apt install nodejs node -v exit docker commit -m "What you did to the image" -a "Author Name" container_id repository/new_image_name docker commit -m "added Node.js" -a "sammy" d9b100f2f636 sammy/ubuntu-nodejs docker images
docker login gitea.example.com Images must follow this naming convention:
{registry}/{owner}/{image}
For example, these are all valid image names for the owner testuser:
gitea.example.com/testuser/myimage
gitea.example.com/testuser/my-image
gitea.example.com/testuser/my/image
docker push gitea.example.com/{owner}/{image}:{tag}
Parameter Description
owner The owner of the image.
image The name of the image.
tag The tag of the image.
For example:
docker push gitea.example.com/testuser/myimage:latest
docker pull gitea.example.com/{owner}/{image}:{tag}
sudo adduser --system --shell /bin/bash --gecos 'Git Version Control' --group --disabled-password --home /home/git git note UID (User ID) and GID (Group ID) numbers UID 117 GID 122 mkdir gitea && cd gitea nano docker-compose.yml
version: "3"
networks:
gitea:
external: false
services:
server:
image: gitea/gitea:latest
container_name: gitea
environment:
- USER_UID=[uid]
- USER_GID=[gid]
restart: always
networks:
- gitea
volumes:
- ./gitea:/data
- /home/git/.ssh/:/data/git/.ssh
- /etc/timezone:/etc/timezone:ro
- /etc/localtime:/etc/localtime:ro
ports:
- "127.0.0.1:3000:3000"
- "127.0.0.1:2222:22"
- from gitea, docker-compose.yml
version: "3"
networks:
gitea:
external: false
services:
server:
image: gitea/gitea:1.20.1
container_name: gitea
environment:
- USER_UID=117
- USER_GID=122
restart: always
networks:
- gitea
volumes:
- ./gitea:/data
- /etc/timezone:/etc/timezone:ro
- /etc/localtime:/etc/localtime:ro
ports:
- "8070:3000"
- "2227:22"
docker compose up -d docker compose ps docker compose logs
have not run, but should to see what happens docker compose down
drone install:
https://docs.drone.io/server/provider/gitea/
openssl rand -hex 16- 3f700dc23718a9e032b0baa2edc5a8f2
- Create OAuth app in Gitea
- http://192.168.0.60:8070/admin/applications
- drone
- http://192.168.0.60:8071/login
- Confidential Client
- client id: e9af28ea-34d8-469c-887d-fcb7b8b80da4
- client secret: gto_3mcdg6fv5ylza6i4oi7fgjpjustvxkdzfohkxognfvotqnzyzuia
- Allow access to Gitea port via ufw:
sudo ufw allow 8070(otherwise Drone will timeout during authorization)- Also allow
8071and8075.
- Also allow
- Install docker (from
~)docker pull drone/drone:2
docker run \
--volume=/var/lib/drone:/data \
--env=DRONE_GITEA_SERVER=http://192.168.0.60:8070 \
--env=DRONE_GITEA_CLIENT_ID=e9af28ea-34d8-469c-887d-fcb7b8b80da4 \
--env=DRONE_GITEA_CLIENT_SECRET=gto_3mcdg6fv5ylza6i4oi7fgjpjustvxkdzfohkxognfvotqnzyzuia \
--env=DRONE_RPC_SECRET=3f700dc23718a9e032b0baa2edc5a8f2 \
--env=DRONE_SERVER_HOST=192.168.0.60:8071 \
--env=DRONE_SERVER_PROTO=http \
--publish=8071:80 \
--publish=8072:443 \
--restart=always \
--detach=true \
--name=drone \
drone/drone:2
Fixed by ufw setting: Post "http://192.168.0.60:8070/login/oauth/access_token": dial tcp 192.168.0.60:8070: connect: connection timed out
docker pull drone/drone-runner-docker:1
docker run --detach \
--volume=/var/run/docker.sock:/var/run/docker.sock \
--env=DRONE_RPC_PROTO=http \
--env=DRONE_RPC_HOST=192.168.0.60:8071 \
--env=DRONE_RPC_SECRET=3f700dc23718a9e032b0baa2edc5a8f2 \
--env=DRONE_UI_USERNAME=root \
--env=DRONE_UI_PASSWORD=root \
--env=DRONE_RUNNER_CAPACITY=2 \
--env=DRONE_RUNNER_NAME=my-first-runner \
--publish=8075:3000 \
--restart=always \
--name=runner \
drone/drone-runner-docker:1
docker logs runner to verify it's running
sudo vim docker/gitea/gitea/gitea/conf/app.ini
repository>ENABLE_PUSH_CREATE_USER = truerepository>ENABLE_PUSH_CREATE_ORG = truewebhook>ALLOWED_HOST_LIST = private- the default is
externalwhich doesn't allow local ipsdocker restart gitea(might not be the best way)
- the default is
ssh [email protected] ssh [email protected] Grade region h4d kill.
james Asdf1234.
https://192.168.0.61:9090/
http://192.168.0.60:8070/ http://192.168.0.60:8071/ http://192.168.0.60:8075/