Differences

This shows you the differences between two versions of the page.

--- knowledge_base:programming:docker [2024/09/29 15:22] – [Reverse Proxy for Secure Internet Access] Normal User
+++ knowledge_base:programming:docker [2025/03/01 22:42] (current) – [Create Dockerfile] Normal User
@@ Line 25: / Line 25: @@
 Tip: use ''.gitignore'' and ''.dockerignore'' file to exclude files you don't need
+[3/1/2025] - need to modify stock_info.py in the yahoo_fin package to fix data retrieving issue since Feb. 2025. Also need gcc for building Python Wheels
+<code>
+FROM python:3.12-slim
+RUN apt-get update && apt-get install -y libpq-dev gcc
+WORKDIR /app
+COPY . /app
+RUN pip install -U pip && pip install -r requirements.txt
+ADD stock_info.py /usr/local/lib/python3.12/site-packages/yahoo_fin/
+EXPOSE 8050
+CMD ["python", "./indicators.py"]
+</code>
 ===== Build, Test and Push =====
@@ Line 41: / Line 52: @@
 docker image push georgewayne188/sock_dashboard
 </code>
+===== Transfer Image without Pushing to Repository =====
+Reasons not to use a repository, especially public repository is that the code may have sensitive information in plain text. You will need to save the Docker image as a tar file:
+<code>
+docker save -o <path for generated tar file> <image name>
+</code>
+Then copy your image to a new system with regular file transfer tools such as cp, scp, or rsync (preferred for big files). After that you will have to load the image into Docker:
+<code>
+docker load -i <path to image tar file>
+</code>
+You should add filename (not just directory) with -o, your image syntax may need the repository prefix (:latest tag is default). For example,
+<code>
+docker save -o C:\path\to\file.tar repository/imagename
+docker save -o C:\Users\cpan\Tools\Git\repos\stock_dashboard.tar georgewayne188/stock_dashboard:latest
+</code>
+PS: You may need to sudo all commands.
+==== Synology Container Manager ====
+**To import images:**
+Click Action > Import and choose to add from a URL or a file:
+  *         Add from URL: Enter the URL of the Docker Hub image page or repository, such as MySQL or https://hub.docker.com/_/mysql.
+  *         Add from file: Select the image file previously exported to DSM or upload an image file from your computer.
+**To export images:**
+  *     Select the image you want to export.
+  *     Click Action > Export and select where to save the image.
 ===== Reverse Proxy for Secure Internet Access =====
@@ Line 49: / Line 94: @@
+===== Add OIDC Authorization for Dash App =====
+==== Dash App Code ====
+<code>
+from dash_auth import OIDCAuth
+app = Dash(__name__)
+auth = OIDCAuth(app, secret_key=os.environ['SECRET_KEY'])
+auth.register_provider(
+    "stock",
+    token_endpoint_auth_method="client_secret_post",
+    client_id=os.environ['APP_ID'],
+    client_secret=os.environ['APP_SECRET'],
+    server_metadata_url=os.environ['SERVER_URL'],
+)
+</code>
+Note: OIDCAuth requires Authlib python package (import OIDCAuth would fail without it)
+==== Customize OIDCAuth ====
+The following example will be able to get and remember the username who was authorized.
+<code>
+class OIDCAuthCustom(OIDCAuth): # overide OIDCAuth to get logged in user info
+    def __init__(self, *args, **kwargs):
+        self.username = None
+        super().__init__(*args, **kwargs)
+    def callback(self, idp: str):
+        return_value = super().callback(idp)
+        client = self.get_oauth_client(idp)
+        self.username = client.userinfo().get("username")
+        # ...
+        return return_value
+</code>
+==== Setup OIDC Server on Synology ====
+Synology package: SSO Server
+How to debug: Look at SSO Server Log for hints.
+==== Tips for Hosting Docker Image on Synology ====
+=== Import Docker Image Tarball ===
+After building the docker image and save as tarball, it can be imported to Synology docker using GUI or CLI's ''import'' function. To check the docker image is properly imported, use the following command to check
+<code>
+docker image ls
+</code>
+=== Running Image with Docker Compose YML ===
+The method described here does NOT work. Reason being javascript based (Dash, Flask are all javascript based) programs are run on the client side. The SSO server thus must be accessible on the internet.
+The important thing here is ''extra_hosts''. We're running everything locally so we need to take care of several things:
+  * To access the host IP address, we really need to use the sham IP address. Please see explanation [[https://isolo.org/dokuwiki/knowledge_base/home_it/synology/synology_docker?s[]=shim#allowing_hostdocker_access|here]]
+  * SSO will reject authorization request if the well known server URL does not match its valid certificate. So we must use a valid A record such as ''https://www.isolo.org:5008/webman/sso/.well-known/openid-configuration''. However, we don't want to open the port to external world (this will be handled by reverse proxy), and we don't need to due to the fact the the docker container is running locally as well. The solution is to add a local DNS record in the docker OS /etc/hosts file to route www.isolo.org to the local server using ''extra_hosts:'' directive.
+<code>
+version: "3"
+services:
+  server:
+    container_name: stockdash
+    image: georgewayne188/stock_dashboard:latest
+    extra_hosts:
+      - www.isolo.org:192.168.11.23
+    environment:
+      - USER_UID=1000
+      - USER_GID=1000
+    ports:
+      - "8058:8050"
+    restart: unless-stopped
+</code>
+In developing phase while working on a Windows machine, had to add a local DNS entry in my Pihole DNS server for the URL to point to local server IP address. The entire project is [[https://gitea.isolo.org/public/StockChartingDash|here]]
+=== get_data in yahoo_fin.stock_info not working ===
+https://stackoverflow.com/questions/79453269/get-data-in-yahoo-fin-stock-info-not-working