# Section 1: Quick Start

## What is docker? The three innovations

### BUILD / SHIP / RUN
The **BUILD/SHIP/RUN** cycle consists of three steps to take previously non containarized software, turn it into a docker image, put it on a registry and deploy it on containers.

Most projects that gradudated from [the cloud native foundation](https://cncf.io) make the assumption that you're using a container workflow of build/ship/run


###  The three innovations
1. The docker **IMAGE**
2. The docker **REGISTRY**
3. The docker **CONTAINER**

#### The cotainer image

* Can be thought of as a universal app packager
* Cross OS/Platform & application/language agnostic
* All images start with a FROM clause, it could start from someone else's image and could be combined
* Each subsequent section (or stanza) is executed in sequence
    * These layer get moved around servers as tarballs
    * Inside those layers are files/directories/permissions/metadata
* Example Dockerfile:
    * FROM python
    * RUN pip install flask
    * WORKDIR /app
    * COPY . .
    * CMD python app.py

#### The docker registry 

* Known as the OCI registry spec, a standard for distributing the images.
* Docker Hub is the default, github and gitlab have their own.
* A built image has a unique SHA hash that will allow or verification between two systems/hosts that the image contains the same files/metadata...
* Usualy done via the command docker push or docker pull
* **This is one of the core values of docker. We can take software that made on one machine with all its dependencies and run it on another machine, seamlessly and regardless if the two machines are running on different distributions of an OS (will run the same on Ubuntu or CentOs)**

#### The docker container 

* Running an image after downloading it into a server.
* A container is known as a **namespace**. This is what makes sure that the app running inside the containers can't see the rest of the operating system.
    * A namespace is basicly a blanch file system with only the files from the image that was built.
    * It would have it's own IP address, NIC (Network Interface Controller) and process list.
* Reruning the docker run command on that image would spin up a new instance of this image that is isolated from the first.
    * If the docker run command if run on another server with a docker engine then it yields a high availability setup.


## Quick Container Run


Using the [Play With Docker Website](https://labs.play-with-docker.com/) we can run a few demo commands before doing any local installs of Docker

* You will need an account with [Docker](https://hub.docker.com/), it's free
* Once logged in to [Play With Docker Website](https://labs.play-with-docker.com/) you will see a green start button and once clicked a timer will be show for the time remaining in the session.
* You will be able to deploy docker images on infrastructure provided by Docker.
* Steps for demo:
    * click on 'add new instances'
    * run "docker version" :
        * Gets details about the client and the engine currently running
    * connecting to from client to server can happen over many ways:
        * Socket
        * TCP/TLS
        * SSH tunnel
    * run "docker run -d -p 8800:80 httpd"
        * -d -> detach, runs in background
        * -p -> port, which ports are opened and published on host IP so that it can be accessed remotely
            * first number is the port on the host on which we're listening
            * second number is the container port on which we're connecting
        * httpd -> apache server image
        * ouput will resemble the below:
            * Unable to find image 'httpd:latest' locally
            * latest: Pulling from library/httpd
            * 1efc276f4ff9: Pull complete 
            * aed046121ed8: Pull complete 
            * 4340e7be3d7f: Pull complete 
            * 80e368ef21fc: Pull complete 
            * 80cb79a80bbe: Pull complete 
            * Digest: sha256:343452ec820a5d59eb3ab9aaa6201d193f91c3354f8c4f29705796d9353d4cc6
            * Status: Downloaded newer image for httpd:latest
            * bbaf9c895f19f301e40c7d2bd743127e372f8932b997ca238b5eaaeb13f6ec88
        * The output can be interpreted as such:
            * the various **layers** of the image are downloaded/pull
            * then it will create the networking, virtual interface, file system, load the file from the image into the file system
            * then it will startup the httpd process in its own namespace.  
    * run a curl command on the local host (machine from which this container is being instanciated) to verify that it's up: curl localhost:8800
        * output is: ```<html><body><h1>It works!</h1></body></html >```
    * run "docker ps" to view running containers:
        * | CONTAINER ID | IMAGE | COMMAND            | CREATED        | STATUS        | PORTS                | NAMES             |
          |--------------|-------|--------------------|----------------|---------------|----------------------|-------------------|
          | bbaf9c895f19 | httpd | "httpd-foreground" | 12 minutes ago | Up 12 minutes | 0.0.0.0:8800->80/tcp | confident_johnson |


## Why Docker? Why Now?


Docker's "raison d'etre" come from frictions that were being faced relating to speed a efficiency of packaging and deploying software.

The three main reason are:
* Isolation:
    * During the move from mainframe to servers (early 2000s), it was very rare that an app would fully utilise the capacity of the servers on which they would run. You ended up with mutliple apps colocating on the same servers, this increased complexity in managing them and made them prone to outages (e.g: one change for an app would cause an effect on other apps).
    * This lead to the emergence of VMs (Virtual Machines), fewer apps on multiple VMs all riding on the same hosts. This would lead to an exploding number of VMs which were each spun up with their own OS. Isolation was sort of solved but complexity outweighed the benefits.
    * Then Docker comes along and removes the need for all the different operating systems on each VM. Each application has its own namespace that is isolated and managing them comes easily through the docker/kubernetes cli. You can now run multiple version of the same app on the same host without any conflict.
* Environment
    * With VMs also came the deployement of a large number of types of environments. The running joke being "Works on my machine".
    * The container image has become a sort of contract between what the app runs and where its running. Just like actual shipping containers where those who ship something don't care what the ship that was carrying the container looked like and the people transporting the container didn't care what was inside it.
        * This is done through a consistent standard (the OCI format) which has two specs, an image and a runtime spec.
        * this ensures that the container will always be run with the same consistent way and same dependencies it was built with.
* Speed
    * Not the speed of CPU and processors but the speed of business, the ability to test and execute on ideas in a timely manner

# Section 2: Course Intro

## Getting Course Ressources

### Github repo
https://github.com/bretfisher/udemy-docker-mastery

### Docker commands, cheatsheets & slides
Downloaded in the "course_ressources folder"

# Section 3: The best way to setup Docker for your OS

## Installing Docker

Get the [Docker Desktop](https://www.docker.com/products/docker-desktop/) and install it on your machine.

There are 3 major ways to run containers:
* Locally (Docker Desktop, Remote Desktop)
* Servers (Docker Engine, K8s)
* PaaS (Cloud Run, Fargate)



# Section 4: Creating and usig containers like a boss

## Check the Docker Install and Config

### Check out the current version of Docker

Returns the version of the **client** as well the server, a.k.a **the engine**

In [1]:
%%bash
docker version

Client:
 Cloud integration: v1.0.28
 Version:           20.10.17
 API version:       1.41
 Go version:        go1.17.11
 Git commit:        100c701
 Built:             Mon Jun  6 23:04:45 2022
 OS/Arch:           darwin/amd64
 Context:           default
 Experimental:      true

Server: Docker Desktop 4.11.1 (84025)
 Engine:
  Version:          20.10.17
  API version:      1.41 (minimum version 1.12)
  Go version:       go1.17.11
  Git commit:       a89b842
  Built:            Mon Jun  6 23:01:23 2022
  OS/Arch:          linux/amd64
  Experimental:     false
 containerd:
  Version:          1.6.6
  GitCommit:        10c12954828e7c7c9b6e0ea9b0c02b01407d3ae1
 runc:
  Version:          1.1.2
  GitCommit:        v1.1.2-0-ga916309
 docker-init:
  Version:          0.19.0
  GitCommit:        de40ad0


### Get additional information on Docker

In [2]:
%%bash
docker info

Client:
 Context:    default
 Debug Mode: false
 Plugins:
  buildx: Docker Buildx (Docker Inc., v0.8.2)
  compose: Docker Compose (Docker Inc., v2.7.0)
  extension: Manages Docker extensions (Docker Inc., v0.2.8)
  sbom: View the packaged-based Software Bill Of Materials (SBOM) for an image (Anchore Inc., 0.6.0)
  scan: Docker Scan (Docker Inc., v0.17.0)

Server:
 Containers: 0
  Running: 0
  Paused: 0
  Stopped: 0
 Images: 0
 Server Version: 20.10.17
 Storage Driver: overlay2
  Backing Filesystem: extfs
  Supports d_type: true
  Native Overlay Diff: true
  userxattr: false
 Logging Driver: json-file
 Cgroup Driver: cgroupfs
 Cgroup Version: 2
 Plugins:
  Volume: local
  Network: bridge host ipvlan macvlan null overlay
  Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog
 Swarm: inactive
 Runtimes: runc io.containerd.runc.v2 io.containerd.runtime.v1.linux
 Default Runtime: runc
 Init Binary: docker-init
 containerd version: 10c12954828e7c7c9b6e0ea9b0c02

### Getting the full list of commands in Docker

This is not a full list of the commands. You will notice below the sub modules that are accessible via docker manage  
commands, under **Management Commands:**
  
Management Commands:
* builder     Manage builds
* buildx*     Docker Buildx (Docker Inc., v0.8.2)
.  
.  
.  


In [4]:
%%bash 
docker


Usage:  docker [OPTIONS] COMMAND

A self-sufficient runtime for containers

Options:
      --config string      Location of client config files (default
                           "/Users/karimitani/.docker")
  -c, --context string     Name of the context to use to connect to the
                           daemon (overrides DOCKER_HOST env var and
                           default context set with "docker context use")
  -D, --debug              Enable debug mode
  -H, --host list          Daemon socket(s) to connect to
  -l, --log-level string   Set the logging level
                           ("debug"|"info"|"warn"|"error"|"fatal")
                           (default "info")
      --tls                Use TLS; implied by --tlsverify
      --tlscacert string   Trust certs signed only by this CA (default
                           "/Users/karimitani/.docker/ca.pem")
      --tlscert string     Path to TLS certificate file (default
                           "/Users/karimitani/.docker/

## Starting a Nginx web server

In this section we will:
* contract images to containers
* run/stop/remote containers
* check container logs and process


### Images vs. Containers

**Images** are the binaries/libraries/source code that will make up our application. A **container** is a running instance of that image. You can have mutliple containers running from the same image. 

Images are obtained from registries, [**Docker Hub**](https://hub.docker.com/) being the default registry. (sort of what github is to source code, registries are to images)