The first thing we want to do is create a droplet<\/em> on Digital Ocean<\/a>. <\/p>\n\n\n\n As a preface, in my (distant) past<\/a>, I used to do this sort of stuff on AWS. At the time, AWS was still sorta new, and so there were limited components to play with, and thus limited-er ways to screw things up. Since then, the ecosystem has exploded, and so I found it much easier to use a more user-friendly approach, and opted with DigitalOcean<\/a>.<\/p>\n\n\n\n A droplet<\/a> is a scalable virtual machine that runs on DigitalOcean\u2019s infrastructure. It provides the computational resources needed to run your application, including CPU, memory, and storage. When you create a droplet, you choose the operating system (e.g., Ubuntu), the size (amount of CPU and memory), and additional features like SSH keys for secure access.<\/p>\n\n\n\n To create a droplet:<\/p>\n\n\n\n The next step is to SSH into your droplet, and start installing and deploying stuff. Connecting is a critical step, so it gets its own heading here. If you F’d up your SSH key, this won’t work. Grab the IP address from your new droplet, and let’s say for example it’s aa.bb.cc.dd<\/em>, then run the following from a terminal (or command prompt) window:<\/p>\n\n\n Assuming you got onto the machine, you can now start installing all the pre-reqs.<\/p>\n\n\n\n To set up Docker<\/a> on an Ubuntu system, you need to run several commands. Here\u2019s a detailed explanation of each command:<\/p>\n\n\n\n This command updates the list of available packages and their versions. It does not install or upgrade any packages but fetches the most recent information about the available packages from the repositories specified in This command creates a directory ( This command changes the permissions of the Docker GPG key file to make it readable by all users ( The following command adds the Docker repository to your Ubuntu system. This command combines several shell utilities to achieve this:<\/p>\n\n\n Let\u2019s break down this command:<\/p>\n\n\n\n After that, update the package list once more via Lastly, you can then install<\/a>:<\/p>\n\n\n\n If Docker and Docker Compose are installed properly, you should be able to verify by running this command:<\/p>\n\n\n As a next step, you need to generate an SSH key and add it to your GitHub account, which tells your GitHub it’s ok for your VPS to pull down code.<\/p>\n\n\n That generates your key, but then you need to add it to GitHub. Head here<\/a>, and then click New SSH Key and paste the details you just printed.<\/p>\n\n\n\n And finally (sorta), pull down your code to the droplet from GitHub:<\/p>\n\n\n When deploying a Django web application using Docker, several key files are essential for setting up the environment. These include the Dockerfile, Docker Compose file, Django settings, and Nginx configuration. You can check this blog post<\/a> for a bit of intro detail on the Docker stuff, which gets expanded here for the production components. Here’s a brief interlude on each.<\/p>\n\n\n\n The Dockerfile is a script that contains a series of instructions on how to build a Docker image for your Django application. Here is a sample that works for me:<\/p>\n\n\n You can create a separate docker-compose file for each environment, and then ‘inherit’ the configuration when running the actual commands. For sake of simplify, the following is a complete (no inheritance) example of a production file:<\/p>\n\n\n I don’t want to tell you how long it took me to get this right, but suffice to say, figuring out the static file part was not easy – lots of trial and error and googling and ChatGPT to figure out what worked. Let me break this thing down.<\/p>\n\n\n\n The Django settings file ( With Django settings, you can create a base settings file, and then extend that by environment, such as production vs development. Simply import the base settings at the top.<\/p>\n\n\n\n The Nginx Dockerfile sets up the Nginx web server with your custom configuration.<\/p>\n\n\n The Nginx configuration file ( The entrypoint script ensures that the database is ready before running Django migrations and starting the application. (Make sure to give execute permission to entrypoint.sh.)<\/p>\n\n\n These configurations work together to deploy your Django application using Docker, Gunicorn, and Nginx. The Dockerfile sets up the application environment, the Docker Compose file defines the services, the Django settings configure the application for production, the Nginx configuration handles web traffic and static file serving, and the entrypoint script ensures the database is ready before starting the application.<\/p>\n\n\n\n The folder and file structure for this should (could) look like the following (at least it works for me this way):<\/p>\n\n\n The entrypoint script here runs Django migrations, but if you’ve gone rogue and using your own, you’ll need to do that yourself. Otherwise, the last step (done once) will be to create a superuser for your new database:<\/p>\n\n\n This commands runs the With these steps, you should have a fully functional Django web application running in production on Digital Ocean using Docker, Gunicorn, and Nginx. This setup ensures your application is scalable and easy to manage. <\/p>\n\n\n\n Personally, getting this right offered an unexpected level of challenge and my repeated asks of ChatGPT left me even more frustrated as I tweaked settings and worked through things. I found this article<\/a> by Michael Herman on testdriven.io<\/a> to be incredibly helpful as a reference. Hopefully someone (or perhaps just my future self) finds this all useful!<\/p>\n","protected":false},"excerpt":{"rendered":" Discover how to efficiently deploy a Django web application using Docker, Gunicorn, and Nginx on DigitalOcean. Follow this comprehensive guide to set up your environment, configure your application, and ensure your web app is scalable and production-ready.<\/p>\n","protected":false},"author":1,"featured_media":1914,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[64,46],"tags":[],"powerkit_post_featured":[],"class_list":{"0":"post-1892","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-application-development","8":"category-projects"},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/www.craigperler.com\/blog\/wp-content\/uploads\/2024\/07\/Django_Deployment_Final_800x457.png?fit=800%2C457&ssl=1","jetpack_shortlink":"https:\/\/wp.me\/p1SwZ6-uw","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/posts\/1892","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/comments?post=1892"}],"version-history":[{"count":5,"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/posts\/1892\/revisions"}],"predecessor-version":[{"id":1918,"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/posts\/1892\/revisions\/1918"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/media\/1914"}],"wp:attachment":[{"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/media?parent=1892"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/categories?post=1892"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/tags?post=1892"},{"taxonomy":"powerkit_post_featured","embeddable":true,"href":"https:\/\/www.craigperler.com\/blog\/wp-json\/wp\/v2\/powerkit_post_featured?post=1892"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}\n
Connect to the Droplet<\/h2>\n\n\n\n
\nssh root@aa.bb.cc.dd\n<\/pre><\/div>\n\n\n
Install Docker and Docker Compose<\/h2>\n\n\n\n
Update the Package List<\/h3>\n\n\n\n
\/etc\/apt\/sources.list<\/code>. This ensures that you can install the latest versions of the packages.<\/p>\n\n\n\nsudo apt-get update\n<\/pre><\/div>\n\n\n
Install Required Packages<\/h3>\n\n\n
\nsudo apt-get install ca-certificates curl gnupg\n<\/pre><\/div>\n\n\n
Create the Directory for the Docker Keyring<\/h3>\n\n\n\n
\/etc\/apt\/keyrings<\/code>) where the Docker GPG key will be stored. The install<\/code> command is used with the -m 0755<\/code> option, which sets the permissions of the directory to 0755<\/code> (read and execute permissions for everyone, and write permission for the owner). The -d<\/code> option indicates that a directory is being created.<\/p>\n\n\n\nsudo install -m 0755 -d \/etc\/apt\/keyrings\n<\/pre><\/div>\n\n\n
Download and Add the Docker GPG Key<\/h3>\n\n\n
\ncurl -fsSL https:\/\/download.docker.com\/linux\/ubuntu\/gpg | sudo gpg --dearmor -o \/etc\/apt\/keyrings\/docker.gpg\n<\/pre><\/div>\n\n\n
Set the Correct Permissions on the Docker GPG Key<\/h3>\n\n\n\n
a+r<\/code>). This is necessary because the apt<\/code> command needs to be able to read this key to verify the authenticity of the Docker packages during installation.<\/p>\n\n\n\nsudo chmod a+r \/etc\/apt\/keyrings\/docker.gpg\n<\/pre><\/div>\n\n\n
Add the Docker Repository<\/strong><\/h3>\n\n\n\n
\necho "deb [arch=$(dpkg --print-architecture) signed-by=\/etc\/apt\/keyrings\/docker.gpg] https:\/\/download.docker.com\/linux\/ubuntu $(lsb_release -cs) stable" | sudo tee \/etc\/apt\/sources.list.d\/docker.list > \/dev\/null\n<\/pre><\/div>\n\n\n
\n
echo<\/code>: This command outputs the string to the terminal.<\/li>\n\n\n\ndeb<\/code>: This keyword indicates that the repository is a Debian archive.<\/li>\n\n\n\n[arch=$(dpkg --print-architecture)]<\/code>: This specifies the architecture of your system (e.g., amd64). The $(dpkg –print-architecture) command dynamically inserts your system\u2019s architecture.<\/li>\n\n\n\nsigned-by=\/etc\/apt\/keyrings\/docker.gpg<\/code>: This option specifies the location of the GPG key used to verify the packages from this repository.<\/li>\n\n\n\nhttps:\/\/download.docker.com\/linux\/ubuntu<\/code>: This is the URL of the Docker repository.<\/li>\n\n\n\n$(lsb_release -cs)<\/code>: This command inserts the codename of your Ubuntu release (e.g., focal for Ubuntu 20.04). This ensures you get the appropriate packages for your version of Ubuntu.<\/li>\n\n\n\nstable<\/code>: This indicates that you want to use the stable version of Docker packages.<\/li>\n\n\n\n|<\/code>: This is a pipe, which passes the output of one command as input to another.<\/li>\n\n\n\nsudo<\/code>: This runs the command with superuser privileges, which is necessary to write to system directories.<\/li>\n\n\n\ntee \/etc\/apt\/sources.list.d\/docker.list<\/code>: This writes the output to a file named docker.list in the \/etc\/apt\/sources.list.d directory.<\/li>\n\n\n\n> \/dev\/null<\/code>: This discards the standard output, effectively silencing the tee command.<\/li>\n<\/ul>\n\n\n\nsudo apt-get update<\/code> to refresh the list of available packages and their versions from all configured repositories, including the newly added Docker repository. This ensures that you can install the latest Docker packages from the Docker repository.<\/p>\n\n\n\n\n
\nsudo apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin\n<\/pre><\/div>\n\n\n
Verify Docker<\/h2>\n\n\n\n
\nsudo docker run hello-world\n<\/pre><\/div>\n\n\n
![\"\"](\"https:\/\/i0.wp.com\/www.craigperler.com\/blog\/wp-content\/uploads\/2024\/07\/Screenshot-2024-07-02-at-10.41.43%E2%80%AFPM.png?resize=1118%2C374&ssl=1\")
<\/figure>\n\n\n\nDeploying your Application<\/h2>\n\n\n\n
\nssh-keygen -t ed25519 -C "your.email@gmail.com"\ncat \/root\/.ssh\/id_ed25519.pub\n<\/pre><\/div>\n\n\n
\ncd \/var\nmkdir www\ncd www\ngit clone git@github.com:yourusername\/yourrepository.git\ncd yourrepository\n<\/pre><\/div>\n\n\n
A Note on Configuration Files<\/h2>\n\n\n\n
Dockerfile<\/h3>\n\n\n\n
\n# Specifies the base image. Using a slim version reduces the image size.\nFROM python:3.11\n\n# Environment Variables: ENV PYTHONDONTWRITEBYTECODE 1 and ENV PYTHONUNBUFFERED 1 ensure Python doesn\u2019t write .pyc files and the output is unbuffered.\nENV PYTHONDONTWRITEBYTECODE 1\nENV PYTHONUNBUFFERED 1\n\n# Sets the working directory inside the container.\nWORKDIR \/app\n\n# Install netcat-openbsd, a networking utility for reading from and writing to network connections using the TCP or UDP protocols. It\u2019s often used for debugging and network diagnostics.\nRUN apt-get update && apt-get install -y netcat-openbsd && rm -rf \/var\/lib\/apt\/lists\/*\n\n# Copy the rest of your Django application\nCOPY . \/app\n\n# Install Python dependencies\nRUN pip install pipenv gunicorn\nRUN pipenv --python \/usr\/local\/bin\/python3.11\nRUN pipenv install --system --deploy\n\n# Run collectstatic command to collect static files, including React build artifacts\n# Note: Django settings should be configured to include \/app\/static in STATICFILES_DIRS or directly as STATIC_ROOT\nRUN python manage.py collectstatic --noinput\n\n# Make port 8001 available to the world outside this container (you can use whatever port you want)\nEXPOSE 8001\n\n# Run Django server\n# Copy the entrypoint script\nCOPY entrypoint.sh \/entrypoint.sh\n\n# Make the entrypoint script executable\nRUN chmod +x \/entrypoint.sh\n\n# Set the entrypoint script to run when the container starts\nENTRYPOINT ["\/entrypoint.sh"]\n<\/pre><\/div>\n\n\n
Docker Compose File<\/strong><\/h3>\n\n\n\n
\nservices:\n db:\n image: postgres\n environment:\n POSTGRES_DB: ${POSTGRES_DB}\n POSTGRES_USER: ${POSTGRES_USER}\n POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}\n ports:\n - "5434:5432"\n volumes:\n - postgres_data:\/var\/lib\/postgresql\/data\n\n web:\n build: .\n command: gunicorn --bind 0.0.0.0:8001 config.wsgi:application\n environment:\n - DJANGO_SETTINGS_MODULE=config.settings.prod\n expose:\n - "8001"\n volumes:\n - .:\/app\n - static_volume:\/app\/staticfiles\n depends_on:\n - db\n env_file:\n - .env\n\n nginx:\n build: .\/nginx\n ports:\n - "80:80"\n depends_on:\n - web\n volumes:\n - static_volume:\/static\n\nvolumes:\n postgres_data:\n static_volume:\n<\/pre><\/div>\n\n\n\n
.env<\/code> file in the same directory that specifies these variables which get templated in here.<\/li>\n\n\n\n.\/nginx<\/code> folder (more below).<\/li>\n\n\n\n\/app\/staticfiles<\/code> to a persistent volume. When you collect static files via Django, they should get dropped into this location. That same volume then gets mapped to the \/static<\/code> folder in the nginx container. When you access static data from the web, you need to have files in this \/static<\/code> folder to serve back, and the volume ensures consistency from the collected files in the web container to nginx. I know thats a mouthful.
While theoretically mapping .<\/code> to \/app<\/code> (in the web container) should include all subdirectories including static data, the practical aspects of Docker\u2019s volume management and container lifecycle necessitate using a named volume for reliable and consistent file sharing between services. This approach ensures that static files collected by the web service are always available to the nginx service, preventing the 404 errors you experienced.<\/li>\n<\/ul>\n\n\n\nDjango Settings<\/strong><\/h3>\n\n\n\n
base.py<\/code>) needs specific configurations for a production environment.<\/p>\n\n\n\nimport os\n\nDEBUG = False\nALLOWED_HOSTS = ['your_domain.com', 'your_server_ip']\n\nSTATIC_URL = '\/static\/'\nSTATIC_ROOT = os.path.join(BASE_DIR, 'staticfiles')\n<\/pre><\/div>\n\n\n
\n
ALLOWED_HOSTS = os.getenv('ALLOWED_HOSTS').split(',')<\/code><\/li>\n\n\n\nNginx Dockerfile<\/h3>\n\n\n\n
\nFROM nginx:1.25\n\n# Remove default configuration\nRUN rm \/etc\/nginx\/conf.d\/default.conf\n\n# Copy custom configuration\nCOPY default.conf \/etc\/nginx\/conf.d\n<\/pre><\/div>\n\n\n
Nginx Configuration<\/strong><\/h3>\n\n\n\n
default.conf<\/code><\/span>) is used to reverse proxy requests to the Gunicorn server and serve static files.<\/p>\n\n\n\nserver {\n listen 80;\n\n location \/ {\n proxy_pass http:\/\/web:8001;\n proxy_set_header Host $host;\n proxy_set_header X-Real-IP $remote_addr;\n proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;\n proxy_set_header X-Forwarded-Proto $scheme;\n }\n\n location \/static\/ {\n alias \/static\/;\n }\n}\n<\/pre><\/div>\n\n\n\n
listen 80;<\/code> specifies that Nginx listens on port 80.<\/li>\n\n\n\nlocation \/<\/code> block proxies requests to the Gunicorn server running on http:\/\/web:8001<\/code>. (Again, you can specify whatever port you want.)<\/li>\n\n\n\nlocation \/static\/<\/code> block serves static files directly from the \/static\/<\/code> directory.<\/li>\n\n\n\n\n
Entrypoint<\/h3>\n\n\n\n
\n#!\/bin\/sh\n\n# Wait for the database to be ready\necho "Waiting for PostgreSQL to start..."\nwhile ! nc -z db 5432; do\n sleep 0.1\ndone\necho "PostgreSQL started"\n\n# Run Django migrations\necho "Running migrations"\npython manage.py migrate --noinput\n\n# Start the Django app (specified in the Dockerfile)\nexec "$@"\n<\/pre><\/div>\n\n\n
Config Conclusion<\/h3>\n\n\n\n
\nyour_project\/\n\u251c\u2500\u2500 app\/\n\u2502 \u251c\u2500\u2500 Dockerfile\n\u2502 \u251c\u2500\u2500 entrypoint.sh\n\u2502 \u251c\u2500\u2500 Pipfile\n\u2502 \u251c\u2500\u2500 Pipfile.lock\n\u2502 \u251c\u2500\u2500 manage.py\n\u2502 \u251c\u2500\u2500 config\/\n\u2502 \u2502 \u251c\u2500\u2500 __init__.py\n\u2502 \u2502 \u251c\u2500\u2500 settings\/\n\u2502 \u2502 \u2502 \u251c\u2500\u2500 __init__.py\n\u2502 \u2502 \u2502 \u251c\u2500\u2500 base.py\n\u2502 \u2502 \u2502 \u2514\u2500\u2500 prod.py\n\u2502 \u2502 \u251c\u2500\u2500 urls.py\n\u2502 \u2502 \u2514\u2500\u2500 wsgi.py\n\u2502 \u251c\u2500\u2500 myapp\/\n\u2502 \u2502 \u251c\u2500\u2500 __init__.py\n\u2502 \u2502 \u251c\u2500\u2500 admin.py\n\u2502 \u2502 \u251c\u2500\u2500 apps.py\n\u2502 \u2502 \u251c\u2500\u2500 models.py\n\u2502 \u2502 \u2514\u2500\u2500 views.py\n\u2502 \u2514\u2500\u2500 ...\n\u251c\u2500\u2500 nginx\/\n\u2502 \u251c\u2500\u2500 Dockerfile\n\u2502 \u2514\u2500\u2500 default.conf\n\u251c\u2500\u2500 docker-compose.prod.yml\n\u2514\u2500\u2500 .env\n<\/pre><\/div>\n\n\n
Deploy to Digital Ocean<\/strong><\/h2>\n\n\n\n
\n
docker compose<\/code>, referencing your production settings file (if you’re using inheritence\/override with docker, you can stack these -f files), and then spins up a newly built container, in detached mode (in the background).<\/li>\n<\/ul>\n\n\n\nsudo docker compose -f docker-compose.prod.yml up --build -d\n<\/pre><\/div>\n\n\n
Create a Superuser<\/h2>\n\n\n\n
\nsudo docker compose exec web python manage.py createsuperuser\n<\/pre><\/div>\n\n\n
python manage.py createsuperuser<\/code> script within your Docker web container, and will then prompt you for the usual Django stuff to create an admin in your app.<\/p>\n\n\n\nConclusion<\/h2>\n\n\n\n