# Containers

In recent years, containers have revolutionized the way we develop, deploy, and manage applications. Their popularity is no accident; they offer a level of efficiency and consistency that traditional virtual machines (VMs) and other deployment methods haven’t been able to compare to. In this chapter, we will go through the essentials of using containers effectively. We’ll also dive into an alternative to Docker: Podman.

## What Are Containers

You can think of containers as little packages of software that are shared and deployed. Containers are a lightweight form of virtualization that package an application and its dependencies into a single, portable unit. Unlike VMs, which include an entire operating system, containers share the host OS's kernel but maintain isolated user spaces. This means they are more efficient and faster to start up, making them way more scalable and accessible. They can also be started both locally, and in the cloud.

## Why Use Containers?
Why do we use containers? Well, have you ever had code run on your computer that doesn’t run on someone else’s? Or have you ever been caught in dependency hell, where you’re trying to upgrade and downgrade your packages, just so you can just run your code? Software is constantly being worked on, and the time when you download it or what version you decide to download has a lot to do with the functionality and features of that software. And someone else who might have downloaded that package may have a different level of functionality, or they may not have that package at all! So, to keep everything consistent for everyone using it, we use containers.


![containers vs vms](../../images/src/cont.png)

Img src: https://www.altexsoft.com/blog/docker-pros-and-cons/

 
1. Consistency Across Environments: Containers ensure that your application behaves the same way regardless of where it's deployed. This eliminates the “works on my machine” problem by providing a consistent environment throughout the development process

2. Isolation and Security: Containers run in isolated environments, which means different containers can run different applications or versions of an application without conflicts. This isolation also enhances security by limiting the scope of potential breaches.

3. Resource Efficiency: Containers are lightweight compared to VMs because they share the host OS's resources. This efficiency allows you to run more containers on the same hardware, making them super resource efficient!

4. Portability: Containers can run on any system that supports container technology, making it easy to move applications between different environments, whether it's from a developer’s laptop to a staging environment or from on-premises hardware to the cloud.

## Exercise: Getting Started with Containers

To get started with containers, you'll need to familiarize yourself with some key tools and concepts. The most widely used container technology is Docker, though there are other options like Podman. Here's a basic guide to using Docker and Podman.



## Using Docker

### Installing Docker

Download and install Docker from [Docker's website](https://www.docker.com/get-started). This link can help you get setup for based on your operating system, like Windows, macOS, and Linux.

Understanding Docker Components

The first component we’ll cover is a docker image. You can think of docker images like a blueprint for the container. They are read-only templates that contain instructions for creating a container. The second component we can go over is the container itself, in formal terms they are docker images running as isolated processes. But you can think of them as literal containers filled with software that you can enter. Docker hub is a public registry where you can find and share Docker images, almost like Github, like being a public registry where you can find code. But there are lots of other places where you can find docker images, like Amazon ECR or Red Hat’s Quay.

Let’s try running our first container!

 Once Docker is installed, you can run your first container. Open your terminal run the following command to run a simple container using the official `hello-world` image:

   ```docker run hello-world```

   This command pulls the `hello-world` image from Docker Hub (if it's not already downloaded) and runs it in a container. You will see a message confirming that Docker is installed and working correctly.

Let’s create a docker image.

To build your own Docker images, you'll use a Dockerfile—a text file with instructions on how to build an image. Here’s a simple example:

First make a folder called flask-app
Flask is a popular package for developing websites
Inside flask app create a file called app.py
In app.py, include this code, for our flask web-app:

```
from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello_world():
    return 'Congrats, you built a container!'

if __name__ == '__main__':
    app.run(host='0.0.0.0', port=8000)
```

Then create a file called Dockerfile in the same folder, the comments contain instructions explaining Dockerfile commands

```
#from gives us a base image to work with, it helps identify some of the underlying architecture we want to create our container with
#you don't have to use from, but it's often easier for beginners to use a base image that exists
#we also tend to use slimmed images for space efficiency, as you can see here
FROM python:3.11-slim

#user sets who we run as, here we will run as root
USER root

#env sets our environment variables
#here we are usig it to run pip as root
#so it doesn't give us any error messages
ENV PIP_ROOT_USER_ACTION=ignore

#workdir sets our working directory
#it's necessary for a lot of other commands like RUN, CMD, ENTRYPOINT
#we'll learn about those later
WORKDIR /app

#copy takes in a source and destination, in that order
#if you want to copy files from your local filesystem into the container
#similar to the cp command in unix environments! 
#here we copy everything in our folder (.) into the app directory (/app)
COPY . /app

#run runs commands inside your container
#you can use commands you would use in the command line here!
#try to condense run commands using && \
#every new command adds a layer to your container image, so this helps with efficiency
RUN pip install --upgrade pip && \
    pip install Flask==3.0.3

#expose a port to run it on locally, here we are running on port 80
EXPOSE 8000

#there can only be one cmd in a dockerfile
#cmd gives us the command to help run our container
#an example would be CMD["executable", parameter1, parameter2]
CMD ["python", "app.py"]

```


![containers and image](../../images/src/conti.png)

Img src: https://dev.to/paschalogu/how-i-deployed-my-website-as-a-container-3fje


   To build an image from this Dockerfile, navigate to the flask-app directory and run this command:

   ```
   docker build -t flask-app .
   ```

   This command builds an image named `flask-app`. You can run it with:
   You have to build to run an image!

   ```
   docker run -p 4000:8000 flask-app
   ```

   This maps port 8000 inside the container to port 4000 on your host machine. You can click on the link provided in your terminal to 

3. Manage Containers

   Docker provides some commands to help you manage containers, let’s go over some of them:

   - List Containers: `docker ps` shows running containers. Use `docker ps -a` to see all containers, including stopped ones.
   - Stop a Container: `docker stop <container_id>` stops a running container
   - Remove a Container: `docker rm <container_id>` removes a stopped container
   - View Logs: `docker logs <container_id>` displays the logs from a container

## Introducing Podman

Podman is an open-source container management tool that provides a Docker-compatible experience while offering additional features and capabilities. It is often praised for its focus on security and its daemonless architecture. Here’s how Podman compares to Docker and how you can get started with it.

1. Installing Podman

Podman can be installed on various Linux distributions and is available for Windows and macOS. Installation instructions for different platforms can be found on the [Podman installation page](https://podman.io/getting-started/installation).

   For example, on Ubuntu, you can install Podman with:

   ```
   sudo apt update
   sudo apt install podman
   ```

2. Podman vs. Docker

   - Daemonless Architecture: Unlike Docker, which relies on a long-running daemon, Podman runs as a single binary and uses a client-server architecture. This makes it more compatible with systemd and enhances security.
   - Rootless Containers: Podman supports rootless containers, which can run without requiring root privileges, thus improving security and reducing risks.
   - Docker Compatibility: Podman aims to be compatible with Docker CLI commands, which means you can often use Podman as a drop-in replacement for Docker commands. So, `podman run` works similarly to `docker run`.

3. Running Containers with Podman

   Here’s how you can run a container using Podman, starting with the `hello-world` image:

   ```
   podman run hello-world
   ```

   Podman also uses Dockerfiles for building images. To build and run a container, you can use similar commands:

   ```
   podman build -t flask-app .
   podman run -p 4000:8000 flask-app
   ```

4. Managing Containers with Podman

   Podman provides commands that manage containers:

   - List Containers: `podman ps` shows running containers. Use `podman ps -a` to see all containers and their ids
   - Stop a Container: `podman stop <container_id>` stops a running container
   - Remove a Container: `podman rm <container_id>` removes a stopped container
   - View Logs: `podman logs <container_id>` displays the logs from a container

Looks pretty similar, huh?

## Container Tips

1. Use Minimal Base Images: Start with the smallest base image, many docker images are made smaller and stripped so they’re more space efficient
2. Keep Images Up-to-Date: Regularly update your images to include the latest security patches and improvements
3. Limit Container Privileges: Run containers with the least amount of privilege necessary to mitigate security risks
4. Monitor and Log: Implement monitoring and logging solutions to keep track of container performance and troubleshoot issues

## Conclusion

Containers, whether managed with Docker or Podman, have become essential to modern application development, giving engineers unmatched portability, efficiency, and consistency. By understanding the basics of these tools and how to manage containers effectively, you can make the stuff you build more accessible to a wider number of users, and never run into the, “well, it worked on my machine”, again!

Happy Containerizing!
