Learn Harness' Key Concepts

Quickstarts

Supported Platforms and Technologies

Harness Products and Editions

How to Use Harness Docs

Harness FirstGen vs Harness NextGen

Harness Self-Managed Enterprise Edition Overview

CI Pipeline Quickstart

Build and Push an Artifact

Build and Push to GCR

Upload Artifacts to JFrog

Modify and Override Build Settings Before a Build

Define a Kubernetes Cluster Build Infrastructure

Configure a Kubernetes Build Farm to use Self-Signed Certificates

Define an AWS VM Build Infrastructure

Define a MacOS Build Infrastructure in AWS

Create and Configure a Codebase

Run a Drone Plugin in CI

Run a GitHub Action in CI

Share CI Data Across Steps and Stages

Save and Restore Cache from S3

Save and Restore Cache from GCS

Run a Script in a CI Stage

Run Docker-in-Docker in a CI Stage

Clone and Process Multiple Codebases in the Same Pipeline

View Tests

Set up Test Intelligence

CI Build Stage Settings

Configure Service Dependency Step Settings

CI Run Step Settings

Plugin Step Settings

Build and Push to GCR Step Settings

Build and Push an Image to Docker Registry Step Settings

Build and Push to ECR Step Settings

Upload Artifacts to S3 Step Settings

Upload Artifacts to GCS Step Settings

Upload Artifacts to JFrog Artifactory Step Settings

Save Cache to GCS Step Settings

Save Cache to S3 Step Settings

Restore Cache from GCS Settings

Restore Cache from S3 Step Settings

Harness CI Images List

CI Build Image Updates

Built-in CI Codebase Variables Reference

CI Cluster Requirements

Run Tests Step Settings

CI Pipeline Basics

Harness CI Concepts

Drone and Harness

Test Intelligence

Optimizing CI Build Times

Troubleshooting Continuous Integration (CI)

Kubernetes CD Quickstart

Helm Chart CD Quickstart

Kustomize Quickstart

Azure ACR to AKS CD Quickstart

Native Helm Quickstart

Harness Argo CD GitOps Quickstart

Harness CD Community Edition Quickstart

Serverless Lambda CD Quickstart

CD Pipeline Basics

Kubernetes Services

Kubernetes Infrastructure

Provision Target Deployment Infra Dynamically with Terraform

Provision Target Deployment Infra Dynamically with CloudFormation

Create a Kubernetes Rolling Deployment

Create a Kubernetes Canary Deployment

Create a Kubernetes Blue Green Deployment

Deploy Manifests Separately using Apply Step

Scale Kubernetes Pods

Delete Kubernetes Resources

Run Kubernetes Jobs

Verify Deployments with the Verify Step

Verify Deployments with AppDynamics

Verify Deployment with Prometheus

Verify Deployments with Dynatrace

Verify Deployments with Splunk

Verify Deployments with Custom Health Source

Verify Deployments with Google Cloud Operations

Verify Deployments with New Relic

Verify Deployments with Datadog

Harness GitOps Basics

Harness CD GitOps Quickstart

Install a Harness GitOps Agent

Add a Harness GitOps Repository

Add Harness GitOps Repository Credentials Template

Add Kubernetes Manifests

Add Container Images as Artifacts for Kubernetes Deployments

Add and Override Values YAML Files

Pull an Image from a Private Registry for Kubernetes

Ignore a Manifest File During Deployment

Add a Kubernetes Sidecar Container

Deployment Concepts and Strategies

Kubernetes Deployments Overview

Harness CD Community Edition Overview

Prune Kubernetes Resources

Deploy Helm Charts

Use Kustomize for Kubernetes Deployments

Terraform Provisioning with Harness

Terraform How-tos

Plan Terraform Provisioning with the Terraform Plan Step

Provision with the Terraform Apply Step

Remove Provisioned Infra with the Terraform Destroy Step

Rollback Provisioned Infra with the Terraform Rollback Step

CloudFormation Provisioning with Harness

CloudFormation How-tos

Provision with the CloudFormation Create Stack Step

Remove Provisioned Infra with the CloudFormation Delete Step

Rollback Provisioned Infra with the CloudFormation Rollback Step

Using Manual Harness Approval Steps in CD Stages

Create Jira Issues in CD Stages

Update Jira Issues in CD Stages

Create ServiceNow Tickets in CD Stages

Update ServiceNow Tickets in CD Stages

Propagate and Override CD Services

Using Shell Scripts in CD Stages

Using HTTP Requests in CD Pipelines

Add a Pipeline Notification Strategy

Synchronize Deployments using Barriers

Monitor Deployments and Services in CD Dashboards

View Deployments Dashboard (Current Generation)

View Services Dashboard (Current Generation)

Example Kubernetes Manifests using Go Templating

Kubernetes Releases and Versioning

Kubernetes Rollout Step

Canary Deployment Step

Canary Delete Step

What Can I Deploy in Kubernetes?

Kubernetes Rollback

Kubernetes Annotations and Labels

Using OpenShift with Harness Kubernetes

Kubernetes Apply Step

JSON and XML Functors

HTTP Step Reference

Group Steps using Step Groups

Shell Script Step Reference

Getting Started with Feature Flags

Java Quickstart

Create a Feature Flag

Enable or Disable a Feature Flag

Edit and Delete a Feature Flag

Add Targets

Manage Target Groups

Manage Variations of the Feature Flag

Add Flag Prerequisites

Targeting Users with Flags

Add and Manage Access Control

View Activities of a Feature Flag

View Metrics

Manage Feature Flags using Git Experience

Build a Feature Flag Pipeline

Deploy Relay Proxy

Relay Proxy

Harness Policy Engine Overview for Feature Flags

JavaScript SDK Reference

iOS SDK Reference

Android SDK Reference

Flutter SDK Reference

React Native SDK Reference

Xamarin SDK Reference

Java SDK Reference

Go SDK Reference

Node.js SDK Reference

.NET SDK Reference

Python SDK Reference

Ruby SDK Reference

Communication Strategy Between SDKs and Harness Feature Flags

GDPR Compliance

Feature Flags Overview

Client-Side and Server-Side SDKs

SDK Version Policy

Anonymous Users and Monthly Active Users Count

Set Up Cloud Cost Management for Kubernetes

Set Up Cloud Cost Management for AWS

Set Up Cloud Cost Management for GCP

Set Up Cloud Cost Management for Azure

Create an AWS Connector for AutoStopping Rules

Create an Azure Connector for AutoStopping Rules

Create a GCP Connector for AutoStopping Rules

Create a Kubernetes Connector for AutoStopping Rules

Review AutoStopping Rules Requirements

Create AutoStopping Rules for AWS

Create AutoStopping Rules for Amazon ECS

Create AutoStopping Rules for RDS

Create AutoStopping Rules for Azure

Create AutoStopping Rules for GCP

Create AutoStopping Rules for a Kubernetes Cluster

Create AutoStopping Rules with Terraform

Use AutoStopping Rules Dashboard

Create an Application Load Balancer for AWS

Create an Application Gateway for Azure

Create a Custom Load Balancer for GCP

Configure ECG for AutoStopping Rules

Create Cost Perspectives

Share Your Cost Perspective Report

Create a Budget for Your Perspective

Analyze Cost for AWS Using Perspectives

Analyze Cost for Azure Using Perspectives

Analyze Cost for GCP Using Perspectives

Analyze Cost for Kubernetes Using Perspectives

Perform Root Cost Analysis

Optimize Kubernetes Costs with Workload Recommendations

Optimize Kubernetes Costs with Node Pool Recommendations

Create a Budget

Detect Cloud Cost Anomalies with CCM

View AWS Cost Dashboard

View AWS Reservation Efficiency Dashboard

View Azure Cost Dashboard

View Cluster Cost Dashboard

View GCP Cost Dashboard

View Multi-cloud Cost Overview Dashboard

View AWS Resource Breakdown Dashboard

Orphaned EBS Volumes and Snapshots Dashboard

View AWS EC2 Instance Metrics Dashboard

View AWS EC2 Inventory Cost Dashboard

Use Multiple Tags in AWS Dashboards

Manage Access Control for CCM Dashboards

Cloud Cost Management Overview

AutoStopping Rules Overview

Key Cloud Cost Concepts

Datadog Integration with Cloud Cost Management

SLO Management Quickstart

Change Impact Analysis Quickstart

SLO-Driven Governance

Install an Error Tracking Agent

Error Tracking in SRM

SRM Notifications

Service Reliability Management Basics

Security Testing Orchestration Quickstart (Public Preview)

Security Step Settings Reference (Public Preview)

Security Testing Orchestration Basics (Public Preview)

Harness Chaos Engineering Quickstart (Public Preview)

Harness Chaos Engineering Basics (Public Preview)

Harness YAML Quickstart

Harness Policy Engine Quickstart

Harness Git Experience Quickstart (Deprecated)

Harness Role-Based Access Control Overview

Get Started with RBAC

Add and Manage Users

Add and Manage User Groups

Add and Manage Service Accounts

Add and Manage API Keys

Add and Manage Resource Groups

Add and Manage Roles

Create Organizations and Projects

Delegate How-tos

Install an Immutable Kubernetes Delegate

Install a Legacy Kubernetes Delegate

Install a Docker Delegate

Select Delegates with Tags

Run Initialization Scripts on Delegates

Configure Delegate Proxy Settings

Automate Delegate Installation

Truststore Override for Delegates

Delegate Registration and Verification

Non-Root Delegate Installation

Create a Custom Delegate that Includes Custom Tools

Secure Delegates with Tokens

Delete a Delegate

Add a Kubernetes Cluster Connector

Add an AWS Connector

Add a Microsoft Azure Cloud Connector

Add a Google Cloud Platform (GCP) Connector

Add a GitHub Connector

Connect to a Cloud Provider

Connect to an Artifact Repo

Connect to Harness Container Image Registry Using Docker Connector

Connect to a Git Repo

Connect to Jira

Connect to ServiceNow

Connect to Monitoring and Logging Systems

Connect to IBM Cloud Container Registry

Use a GitHub App in a GitHub Connector

Create a Connector using YAML

Add a Secret Manager

Add a HashiCorp Vault Secret Manager

Add an Azure Key Vault Secret Manager

Add an AWS Secrets Manager

Add an AWS KMS Secret Manager

Add Google KMS as a Harness Secret Manager

Add and Reference Text Secrets

Add and Reference File Secrets

Add SSH Keys

Disable Built-In Secret Manager

Two-Factor Authentication

Single Sign-On (SSO) with SAML

Single Sign-On (SSO) with OAuth

Provision Users with Okta (SCIM)

Provision Users and Groups with OneLogin (SCIM)

Provision Users and Groups using Azure AD (SCIM)

Add a Stage

Add a Custom Stage

Define a Failure Strategy on Stages and Steps

Run Pipelines using Input Sets and Overlays

Run Specific Stages in Pipeline

Searching the Console View

Retry Pipeline Deployments

View and Compare Pipeline Executions

Adding Jira Approval Stages

Using Manual Harness Approval Stages

Adding ServiceNow Approval Stages

Schedule Pipelines using Triggers

Trigger Pipelines on New Helm Chart

Trigger Pipelines on a New Artifact

Trigger Pipelines using Git Events

Trigger Pipelines using Git Event Payload Conditions

Templates Overview

Create a Step Template

Create an HTTP Step Template

Create a Stage Template

Create a Pipeline Template

Use a Template

Harness Git Experience Quickstart

Manage a Harness Pipeline Repo Using Git Experience

Manage Input Sets and Triggers in Git Experience

Create Dashboards

Schedule and Share Dashboards

Create Visualizations and Graphs

Download Dashboard Data

Use Dashboard Actions

Create Conditional Alerts

Add Custom Fields

Extracting Characters from Harness Variable Expressions

Add Account, Org, and Project-level Variables

View Audit Trail

Add SMTP Configuration

Send Notifications Using Slack

Send Notifications to Microsoft Teams

Use Harness Open Policy Agent For Connectors

Enable or Disable a Policy Set

Use Harness Policy Engine for Feature Flags

Add a Policy Engine Step to a Pipeline

Git Experience How-tos

Add Source Code Managers (Deprecated)

Configure Git Sync in Harness (Deprecated)

Manage Pipelines in Git Repos (Deprecated)

Manage Project Resources in Git Repos (Deprecated)

Manage Input Sets and Overlays in Git Repos (Deprecated)

Add Folders to Existing Git Experience Repos (Deprecated)

Diagnose and Fix Git Sync Errors (Deprecated)

Harness Entity Reference

Entity Identifier Reference

Entity Retention Policy

Entity Deletion Reference

Entity Name and Id Rules

Data Retention

Tags Reference

Delegate Requirements and Limitations

Permissions and Ports for Harness Connections

Common Delegate Initialization Scripts

Allowlist Harness Domains and IPs

Step and Stage Failure Strategy References

Stage and Step Conditional Execution Settings

Triggers Reference

YAML Reference: Pipelines

Built-in and Custom Harness Variables Reference

GitLab Connector Settings Reference

Bitbucket Connector Settings Reference

AWS CodeCommit Connector Settings Reference

Git Connector Settings Reference

GitHub Connector Settings Reference

AWS Connector Settings Reference

Kubernetes Cluster Connector Settings Reference

Google Cloud Platform (GCP) Connector Settings Reference

HTTP Helm Repo Connector Settings Reference

Artifactory Connector Settings Reference

Nexus Connector Settings Reference

Docker Connector Settings Reference

Jira Connector Settings Reference

API Permissions Reference

Permissions Reference

Source Code Manager Settings

Authentication Overview

Organizations and Projects Overview

Delegates Overview

Immutable Delegate Overview

Delegate Installation Overview

Harness Secrets Management Overview

Harness Git Experience Overview (Deprecated)

Fixed Values, Runtime Inputs, and Expressions

Harness Policy Engine Overview

Input Sets and Overlays

Pipeline Resource Constraints

Harness API Quickstart

Use the Harness REST API

Self-Managed - Kubernetes Cluster: Infrastructure Requirements

Self-Managed - Kubernetes Cluster: Setup Guide

Self-Managed: Support Policy for Kubernetes

Self-Managed - Kubernetes Cluster: Add Ingress Controller Service Annotations

Self-Managed - Virtual Machine: Infrastructure Requirements

Self-Managed - Virtual Machine: Setup Guide

Self-Managed - Virtual Machine: Backup and Recovery

Monitor Self-Managed

Troubleshooting Harness

Harness Security FAQs

Cloud Cost Management (CCM) FAQs

Continuous Delivery (CD) FAQs

Harness Delegate FAQs

Feature Flags (FF) FAQs

Continuous Integration (CI) FAQs

Harness Self-Managed Enterprise Edition Release Notes

Harness SaaS Release Notes

Harness Self-Managed Enterprise Edition Release Notes 2021

Harness SaaS Release Notes 2021

Harness Delegate Docker Image Change Log

All Categories > Continuous Integration > CI How-tos > Run CI Scripts > Run Docker-in-Docker in a CI Stage

Run Docker-in-Docker in a CI Stage

Updated 2 months ago by Doug Bothwell

Before You Begin
Step 1: Set Up the CI Stage
Step 2: Define the Build Farm Infrastructure
Step 3: Add a dind Service Dependency
Step 4: Configure the Run Step
Step 5: Run the Pipeline
Configure As Code: YAML
See Also

You can run Docker-in-Docker (dind) in a CI Stage. This is useful whenever you need to run Docker commands as part of your build process. For example, you can build images from two separate codebases in the same Pipeline: one using a step such as Build and Push an Image to Docker Registry, and another using Docker commands in a Run step.

This topic illustrates a simple build-and-push workflow using Docker-in-Docker.

Docker-in-Docker must run in privileged mode to work properly. You need to be careful because this provides full access to the host environment. See Runtime Privilege and Linux Capabilities in the Docker docs.

Before You Begin

To go through this workflow, you need the following:

A familiarity with basic Harness CI concepts:
- CI Pipeline Quickstart
- Learn Harness' Key Concepts
A familiarity with Build Stage settings:
- CI Build Stage Settings

Step 1: Set Up the CI Stage

In your Harness Pipeline, click Add Stage. Then click Build.

In the Overview tab for the new Build Stage, configure the Stage as follows:

For this example, disable Clone Codebase. You will be cloning a different codebase from the one referenced in the Codebase Object.
Under Shared Paths, add the following:
- /var/run
- /var/lib/docker
Under Advanced, add a Stage Variables for your Docker Hub Personal Access Token and any other fields you want to parameterize. For passwords and Personal Access Tokens, select Secret as the variable type.

Step 2: Define the Build Farm Infrastructure

In the CI stage Infrastructure, define the build farm for the codebase. See Set Up Build Infrastructure.

Step 3: Add a dind Service Dependency

In the Execution tab, click Add Service Dependency and configure the dependency as follows:

Dependency Name: dind_Service.
Container Registry: A Connector to your Docker registry.
Image: The image you want to use, such as docker:dind.
Optional Configuration: Select Privileged. This is required for Docker-in-Docker.

Step 4: Configure the Run Step

In the Execution tab, add a Run Step and configure it as follows:

Container Registry: A Connector to your Docker registry.
Image: The same image you specified for the Service Dependency.
Command: Enter the shell commands you want to run in the dind container.

Once the container is started, the software inside the container takes time to initialize and start accepting connections. Give the service adequate time to initialize before trying to connect. You can use a while loop, as shown here:


while ! docker ps ;do 
      echo "Docker not available yet"
done
echo "Docker Service Ready"
docker ps

The following example code clones a Git repo, builds an image, and pushes the image to a Docker registry:

apk add git
git --version
git clone https://github.com/$GITHUB_USERNAME/$GITHUB_REPO
cd $GITHUB_REPO

echo $DOCKERHUB_PAT > my_password.txt
cat my_password.txt | docker login --username $DOCKERHUB_USERNAME --password-stdin

docker build -t $DOCKER_IMAGE_LABEL .
docker tag $DOCKER_IMAGE_LABEL $DOCKERHUB_USERNAME/$DOCKER_IMAGE_LABEL:<+pipeline.sequenceId>
docker push $DOCKERHUB_USERNAME/$DOCKER_IMAGE_LABEL:<+pipeline.sequenceId>

Step 5: Run the Pipeline

Now you can run your Pipeline. You simply need to select the codebase.

Click Save.
Click Run.
If prompted, specify a Git branch, tag, or PR number.
Click Run Pipeline and check the console output to verify that the Pipeline runs as intended.

Configure As Code: YAML

To configure your pipeline as YAML in CI, go to Harness Pipeline Studio, click YAML. Here’s is a working example of the workflow described in this topic. Modify the YAML attributes such as name, identifiers, codebase, connector refs, and variables as needed.

pipeline:
    name: docker-in-docker-test
    identifier: dockerindockertest
    allowStageExecutions: false
    projectIdentifier:   # your Project Id
    orgIdentifier: default           
    description: test of Trigger and Codebase variables
    tags: {}
    properties:
        ci:
            codebase:
                connectorRef:  # Connector to your GitHub account
                repoName: $GITHUB_REPO          
                build: <+input>
    stages:
        - stage:
              name: Build Alpha
              identifier: Build_Test_and_Push
              type: CI
              spec:
                  cloneCodebase: false
                  infrastructure:
                      type: KubernetesDirect
                      spec:
                          connectorRef:    # Connector to you build infrastructure 
                          namespace: harness-delegate-ng
                          automountServiceAccountToken: true
                  execution:
                      steps:
                          - step:
                                type: Run
                                name: build-alpha-service
                                identifier: echotriggervarscustom
                                spec:
                                    connectorRef:   # Connector to your Docker repo 
                                    image: docker:dind
                                    shell: Sh
                                    command: |
                                        while ! docker ps ;do
                                            echo "Docker not available yet"
                                        done
                                        echo "Docker service is up"
                                        docker ps 

                                        apk add git
                                        git --version
                                        git clone https://github.com/$GITHUB_USERNAME/$GITHUB_REPO
                                        cd $GITHUB_REPO

                                        echo $DOCKERHUB_PAT > my_password.txt
                                        cat my_password.txt | docker login --username $DOCKERHUB_USERNAME --password-stdin
                                        docker build -t $DOCKER_IMAGE_LABEL .
                                        docker tag $DOCKER_IMAGE_LABEL $DOCKERHUB_USERNAME/$DOCKER_IMAGE_LABEL:<+pipeline.sequenceId>
                                        docker push $DOCKERHUB_USERNAME/$DOCKER_IMAGE_LABEL:<+pipeline.sequenceId>
                                    privileged: true
                  serviceDependencies:
                      - identifier: dind_service
                        name: dind_service
                        type: Service
                        description: dind service
                        spec:
                            connectorRef:   # Connector to your Docker repo 
                            image: docker:dind
                            privileged: true
                  sharedPaths:
                      - /var/run
                      - /var/lib/docker
              variables:
                  - name: DOCKERHUB_USERNAME
                    type: String
                    value: # username
                  - name: DOCKERHUB_PAT
                    type: Secret
                    value: # Personal Access Token
                  - name: GITHUB_USERNAME
                    type: String
                    value: # username
                  - name: GITHUB_REPO
                    type: String
                    value: # repo
                  - name: DOCKER_IMAGE_LABEL
                    type: String
                    value: # label

Run Docker-in-Docker in a CI Stage

Before You Begin

Step 1: Set Up the CI Stage

Step 2: Define the Build Farm Infrastructure

Step 3: Add a dind Service Dependency

Step 4: Configure the Run Step

Step 5: Run the Pipeline

Configure As Code: YAML

See Also

Please Provide Feedback

People also searched for Continuous Integration (CI) FAQs Configure Service Dependency Step Settings Run a Script in a CI Stage

Feedback

People also searched for

Continuous Integration (CI) FAQs

Configure Service Dependency Step Settings

Run a Script in a CI Stage