Docker & Kubernetes CI/CD Tutorial

Introduction to Docker & Kubernetes CI/CD

In modern software development, Continuous Integration (CI) and Continuous Deployment/Delivery (CD) are essential practices. They enable teams to deliver code changes more frequently and reliably. Docker, with its containerization capabilities, and Kubernetes, the leading container orchestration platform, have become cornerstones of effective CI/CD pipelines. This tutorial will guide you through setting up and optimizing your CI/CD workflows using these powerful tools.

Why CI/CD?

Faster release cycles
Improved code quality
Reduced deployment risks
Enhanced collaboration
Automated testing and validation

The Role of Docker

Docker standardizes the way applications are packaged and run. A Docker image bundles an application with all its dependencies, ensuring it runs consistently across different environments. This consistency is crucial for CI/CD, as it eliminates the "it works on my machine" problem.

Key Docker concepts for CI/CD:

Dockerfile: Defines how to build a Docker image.
Docker Image: A read-only template for creating containers.
Docker Container: A runnable instance of a Docker image.
Container Registry: Stores and manages Docker images (e.g., Docker Hub, AWS ECR, Google GCR).

The Role of Kubernetes

Kubernetes automates the deployment, scaling, and management of containerized applications. It provides a robust platform for running your Docker containers in production, ensuring high availability and resilience.

Key Kubernetes concepts for CI/CD:

Pods: The smallest deployable units, representing one or more containers.
Deployments: Manages stateless applications, allowing for declarative updates.
Services: Abstracts access to a set of Pods, providing stable network endpoints.
Ingress: Manages external access to services in a cluster.

Setting Up Your CI/CD Pipeline

1. Source Code Management

Start with a version control system like Git. Tools like GitHub, GitLab, or Bitbucket are excellent choices. Your CI/CD pipeline will trigger on code commits or pull requests.

2. Continuous Integration (CI) Server

Choose a CI server to automate the build and test process. Popular options include:

Jenkins
GitLab CI/CD
GitHub Actions
CircleCI
Travis CI

Your CI server will be responsible for:

Cloning the repository
Running linters and static analysis
Compiling code
Running unit and integration tests
Building a Docker image
Pushing the Docker image to a container registry

Example: Building a Docker Image in CI

A typical step in your CI pipeline might look like this:


# In your CI script (e.g., .gitlab-ci.yml or GitHub Actions workflow)

build_docker_image:
  stage: build
  image: docker:latest
  services:
    - docker:dind
  script:
    - docker login -u $CI_REGISTRY_USER -p $CI_REGISTRY_PASSWORD $CI_REGISTRY
    - docker build -t $CI_REGISTRY/$CI_PROJECT_PATH:$CI_COMMIT_SHA .
    - docker push $CI_REGISTRY/$CI_PROJECT_PATH:$CI_COMMIT_SHA
  only:
    - main

3. Container Registry

A container registry is essential for storing your Docker images. When your CI server builds an image, it pushes it here. Your CD process will then pull images from this registry.

Popular choices:

Docker Hub
Amazon Elastic Container Registry (ECR)
Google Container Registry (GCR) / Artifact Registry
Azure Container Registry (ACR)
GitHub Container Registry

4. Continuous Deployment (CD) / Delivery (CD)

This phase involves automating the deployment of your application to your target environment, typically Kubernetes.

CD can be divided into:

Continuous Delivery: The application is always in a deployable state, and deployment to production is manual.
Continuous Deployment: Every change that passes all stages of production is released to customers automatically.

Deploying to Kubernetes

Kubernetes deployment is usually managed using YAML manifest files. These files define the desired state of your application.

A simple Kubernetes Deployment manifest:


apiVersion: apps/v1
kind: Deployment
metadata:
  name: my-web-app
  labels:
    app: web
spec:
  replicas: 3
  selector:
    matchLabels:
      app: web
  template:
    metadata:
      labels:
        app: web
    spec:
      containers:
      - name: web-container
        image: registry.example.com/my-web-app:latest # This will be updated by your CD process
        ports:
        - containerPort: 80

Your CD process will typically use tools like kubectl or specialized CI/CD operators (e.g., Argo CD, Flux) to apply these manifest files to your Kubernetes cluster. The CD process will:

Pull the latest Docker image from the registry.
Update the Kubernetes Deployment manifest with the new image tag.
Apply the updated manifest to the Kubernetes cluster.
Monitor the rollout for success or failure.

Example: Kubernetes Deployment Update in CD

Using a GitOps approach with tools like Argo CD or Flux, changes to your Kubernetes manifests stored in Git trigger deployments.

Alternatively, a script might look like:


# In your CD script

# Define the image to deploy
NEW_IMAGE="registry.example.com/my-web-app:$CI_COMMIT_SHA"

# Update the Kubernetes deployment manifest (example: using sed)
sed -i "s|image: .*|$NEW_IMAGE|" k8s/deployment.yaml

# Apply the changes to Kubernetes
kubectl apply -f k8s/deployment.yaml

# Optional: Trigger a rollout restart if image tag didn't change but other aspects did
# kubectl rollout restart deployment/my-web-app

Best Practices for Docker & Kubernetes CI/CD

Image Tagging Strategy: Use immutable tags, such as commit SHAs or semantic versioning, to ensure traceability. Avoid using latest in production deployments.
Multi-Stage Builds: Optimize Docker image size and build times by using multi-stage Docker builds.
Security Scanning: Integrate security scanning for Docker images and Kubernetes configurations into your pipeline.
Automated Testing: Implement comprehensive automated tests at various levels (unit, integration, end-to-end).
Rollback Strategy: Plan for automatic rollbacks in case of deployment failures.
Configuration Management: Use tools like Helm or Kustomize for managing complex Kubernetes configurations and secrets.
Monitoring and Logging: Ensure robust monitoring and logging are in place for your deployed applications.

Key Takeaway:

A well-defined CI/CD pipeline powered by Docker and Kubernetes allows for faster, more reliable, and more frequent software releases, significantly boosting developer productivity and application stability.