Hawiyat

Example

Tutorial

In this comprehensive tutorial, we will create a scalable web application using Docker Compose and configure it with Hawiyat's infrastructure. You'll learn how to:

  • Set up a containerized Next.js application
  • Configure Traefik reverse proxy for routing
  • Enable automatic SSL certificate generation
  • Implement proper networking between services
  • Deploy the application with high availability

Prerequisites

  • A Hawiyat account with admin access
  • Basic understanding of Docker and Docker Compose
  • A domain name that you can configure
  • Git installed on your local machine
  • Basic familiarity with YAML syntax

Steps

  1. Create a new project.
  2. Create a new service Compose and select the Compose Type Docker Compose.
  3. Fork this repository: Repo.
  4. Select Provider type: GitHub or Git.
  5. Select the repository: hawiyat/docker-compose-test.
  6. Select the branch: main.
  7. Set the Compose Path to ./docker-compose.yml and save. Docker compose configuration

Understanding the Configuration Requirements

Before updating your Docker Compose configuration, it's important to understand the key components that make your application work with Hawiyat:

  1. Network Configuration

    • The hawiyat-network is a managed network that enables communication between your services
    • All containers must be connected to this network to ensure proper service discovery
    • The network is created and managed by Hawiyat automatically

  2. Traefik Integration

    • Traefik serves as the edge router for all incoming traffic
    • Labels are used to configure routing rules and SSL certificates
    • Each service requires specific Traefik labels for proper routing

Updating Your docker-compose.yml

To integrate your application with Hawiyat's infrastructure, you need to make the following modifications to your docker-compose.yml file:

  1. Add the hawiyat-network to each service to enable proper communication
  2. Configure Traefik labels for:
    • Enabling Traefik routing
    • Setting up domain rules
    • Configuring SSL endpoints
    • Defining service ports
  3. Remove any conflicting network configurations
  4. Adjust port mappings to avoid conflicts

Example:

Let's modify the following compose file to make it work with hawiyat:

version: "3"
 
services:
  next-app:
    build:
      context: ./next-app
      dockerfile: prod.Dockerfile
      args:
        ENV_VARIABLE: ${ENV_VARIABLE}
        NEXT_PUBLIC_ENV_VARIABLE: ${NEXT_PUBLIC_ENV_VARIABLE}
    restart: always
    ports:
      - 3000:3000
    networks:
      - my_network
networks:
  my_network:
    external: true

Updated version with hawiyat-network and Traefik labels:

Don't set container_name property to the each service, it will cause issues with logs, metrics and other features

version: "3"
 
services:
  next-app:
    build:
      context: ./next-app
      dockerfile: prod.Dockerfile
      args:
        ENV_VARIABLE: ${ENV_VARIABLE}
        NEXT_PUBLIC_ENV_VARIABLE: ${NEXT_PUBLIC_ENV_VARIABLE}
    restart: always
    ports:
      - 3000
    networks:
      - hawiyat-network
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.<unique-name>.rule=Host(`your-domain.com`)"
      - "traefik.http.routers.<unique-name>.entrypoints=websecure"
      - "traefik.http.routers.<unique-name>.tls.certResolver=letsencrypt"
      - "traefik.http.services.<unique-name>.loadbalancer.server.port=3000"
networks:
  hawiyat-network:
    external: true

Make sure to point the A record to the domain you want to use for your service.

home og image

Deploy the application by clicking on "deploy" and wait for the deployment to complete. Then give Traefik about 10 seconds to generate the certificates. You can then access the application through the domain you have set.

home og image

Important Configuration Details

Naming Conventions and Best Practices

  1. Router Naming

    • Set unique names for each router: traefik.http.routers.<unique-name>
    • Use descriptive names that reflect the service purpose
    • Example: myapp-web, myapp-api, myapp-frontend

  2. Service Naming

    • Set unique names for each service: traefik.http.services.<unique-name>
    • Keep service names consistent with router names
    • Avoid generic names like "web" or "app"

  3. Network Configuration

    • Always ensure services are linked to hawiyat-network
    • Remove any custom network definitions
    • Don't create additional overlay networks unless necessary

  4. SSL and Security

    • Use websecure entrypoint for HTTPS traffic
    • Configure letsencrypt as the certificate resolver
    • SSL certificates are automatically generated and renewed
    • Ensure your domain's DNS is properly configured

  5. Performance Optimization

    • Use the restart: always policy for production services
    • Configure appropriate healthcheck parameters
    • Set reasonable resource limits
    • Use proper logging configurations

Troubleshooting Common Issues

  1. Certificate Generation

    • Allow up to 1 minute for initial certificate generation
    • Verify DNS records are properly configured
    • Check Traefik logs if certificates aren't generating

  2. Network Connectivity

    • Ensure all services are on hawiyat-network
    • Verify port configurations
    • Check for port conflicts

  3. Service Discovery

    • Use proper service names in your configurations
    • Verify Traefik labels are correctly formatted
    • Check for typos in domain names

Previous

Domains

Next

Templates

On this page

TutorialPrerequisitesStepsUnderstanding the Configuration RequirementsUpdating Your docker-compose.ymlImportant Configuration DetailsNaming Conventions and Best PracticesTroubleshooting Common Issues