Skip to content

Sidecar Dind

Note

This example is a replication of an Argo Workflow example in Hera. The upstream example can be found here.

This example showcases how one can run Docker in Docker with a sidecar container with Hera

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
from hera.workflows import Container, Env, UserContainer, Workflow
from hera.workflows.models import SecurityContext

# this assumes you have set a global token and a global host
with Workflow(generate_name="sidecar-dind-", entrypoint="dind-sidecar-example") as w:
    Container(
        name="dind-sidecar-example",
        image="docker:19.03.13",
        command=["sh", "-c"],
        args=["until docker ps; do sleep 3; done; docker run --rm debian:latest cat /etc/os-release"],
        env=[Env(name="DOCKER_HOST", value="127.0.0.1")],
        sidecars=UserContainer(
            name="dind",
            image="docker:19.03.13-dind",
            command=["dockerd-entrypoint.sh"],
            env=[Env(name="DOCKER_TLS_CERTDIR", value="")],
            security_context=SecurityContext(privileged=True),
            mirror_volume_mounts=True,
        ),
    )

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
apiVersion: argoproj.io/v1alpha1
kind: Workflow
metadata:
  generateName: sidecar-dind-
spec:
  entrypoint: dind-sidecar-example
  templates:
  - container:
      args:
      - until docker ps; do sleep 3; done; docker run --rm debian:latest cat /etc/os-release
      command:
      - sh
      - -c
      env:
      - name: DOCKER_HOST
        value: 127.0.0.1
      image: docker:19.03.13
    name: dind-sidecar-example
    sidecars:
    - command:
      - dockerd-entrypoint.sh
      env:
      - name: DOCKER_TLS_CERTDIR
        value: ''
      image: docker:19.03.13-dind
      mirrorVolumeMounts: true
      name: dind
      securityContext:
        privileged: true

Comments