# Docker
Source: https://www.youtube.com/watch?v=G1qA-Du8Nus&list=PLea0WJq13cnDsF4MrbNaw3b4jI0GT9yKt&index=8

### Definition
- An open platform to build, ship and run distributed application. Meaning we can run application on different machines or on different hosts and make them communicate effectively and efficiently.
- Based on the concept 'build once run everywhere'.
- As on date, runs only on linux servers. 

### Containers as light weight VMs
VMs have their own Guest OS. Whereas containers share the OS of the host machine. The VMs run using a hypervisor on top of the OS of the host machine. The OS of the VM is independent of the host OS. It doesn't do proper resource usage. 

Containers are isolated but share OS kernel and where appropriate binary files and libraries as well. Result is faster deployment, much less overhead, easier migration and faster restart. 

### Installation on Ubuntu 16.04
- `sudo apt-get install docker.io`
- `docker version` to confirm the installation
- Security issue: `docker` group is equivalent to the `root` user. This means that we need to restrict the access else it might pose a security risk. 
    > - Create the `docker` group: `sudo groupadd docker`
    > - Add your user to the `docker` group: `sudo gpasswd -a $USER docker`. `$USER` means the current user.
    
- Restart the daemon: `sudo service docker restart`
- Confirm once again if docker is restarted: `docker version`.

### First docker container

To run a container, we'd like to know the base docker image. The docker image that the docker container we want to run, is based on. 
- `docker run <container_name>`: Docker tries to find the container locally. If it can't find, it tries to pull it from the default docker repositories of docker images called `docker hub` and then runs the container of the image. 
- To look for container names, we can look up in the docker hub.
- `docker run -it ubuntu bash`: `-it` runs the container interactively. Note that with this command we'll be inside the container prompt. Notice the change in the prompt. 
>- Check the number of packages inside ubuntu container: `dpkg -l | wc -l`. Compare the same on the host OS. Notice that the number of packages in the host is high by a factor of almost 15.
- If we install software in a container and then exit it, we will not find the installed packages in the container. The reason is that we get a fresh container when we restart it.
- If we want to save the changes in a container, we will have to save the changes as a new image. 
- `docker ps`: List running containers
- `docker` gives containers a unique ID 
- `docker images`: Gets a list of images

### Running containers in the background

- `docker run <user_id_on_docker_hub/image_name>`: For example, `docker run jpetazzo/clock` prints the time evert second. In this case, teh container runs in the usual mode.
- `docker run -d jpetazzo/clock`  # Runs the continer in the daemon mode.
- `docker logs <container_id>`
- `docker ps -a`: To get a history of container
- `docker ps -a -q`: To get a history of container, only the container ID. 

### Stopping and killing containers

- `docker kill _container_id` or `docker stop` : `kill` is much quicker than `stop`. The latter first sends a terminate signal and then waits for the container to stop. If the container doesn't stop, then it sends the kill signal. 

### Docker image vs container

#### What's an image: 
>- Image is a collection of files + metadata. Technically, these files form the root filesystem of a container.
>- Images are made of layers, conceptually stacked on top of each other. 
>- Each layer can add, change or remove files. 
>- Images can share layers to optimize disk usage, transfer times and memory use. 

#### Difference:
>- Image is a read only filesystem
>- A container is an encapsulated set of processes running in a read-write copy of that filesystem
>- To optimize container boot time, copy-on-write is used instead of regular copy.
>- `docker run` starts a container from a given image
>- Metaphors:
>>- Images are like templates or stencils that you can create containers from
>>- In OOPs paradigm, _Images_ are conceptually similar to classes. _layers_ are analogous to inheritance and _containers_ are conceptually similar to objects/ instances. 

#### If an image is read only, how do we change it?
- We don't change an image
- We create a new container from an image
- Then we make changes to that container
- When we are satisfied with those changes, we transform them into a new layer
- A new image is created by stacking the new layer on top of an old image