Run docker service in Docker container
-
Hello,
I try to package code-server (VSCode) for Cloudron and I would like to combine all needfull things to develop a cloudron package into webbrowser.At the moment I develop all my packages on Windows with WSL (Ubuntu) into VSCode, but my wish is to develop into my web environment.
I have read that a docker container must run in privileged mode. How does this work with Cloudron?
this my supervisor.conf excerpt for docker
; docker [program:docker] command=/usr/bin/docker --config /app/data/docker priority=5 autostart=true autorestart=true stdout_logfile=/dev/stdout stdout_logfile_maxbytes=0 stderr_logfile=/dev/stderr stderr_logfile_maxbytes=0 -
@girish yes and no. My aim is not to run really a docker container into a docker container, but to test, verify and complete a cloudron package you need to run the dockerfile and this is only possible with installed docker or?
The process to develop a Cloudron package is actually developing a dockerfile, some manifests and so on. After that you build the docker container and when it works, that you push it to hub.docker.com. I think this is the way of developing.
I know I have ambitious ideas
-
@roru2k20 you could have a look how its done in the builder app. its source code is available at https://git.cloudron.io/cloudron/cloudron-build-service
This uses the docker capability of exposing the local docker socket to the container. then you only need the Docker binaries in the app itself, but everything is executed on the host. This however also has the downside that you can practically take over the whole host of someone gets access to your app, which has unrestricted access to the socket.
