backend.md

myst
html_meta description property=og:description property=og:title keywords Using plone/plone-backend image Using plone/plone-backend image Plone Backend image Plone 6, install, installation, docker, containers, backend, plone/plone-backend

plone/plone-backend

This chapter covers Plone backend Docker images using Python 3 and pip.

Using this image

Simple usage

docker run -p 8080:8080 plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION} start

Then point your browser at http://localhost:8080. You should see the default Plone site creation page.

Persisting data

There are several ways to store data used by applications that run in Docker containers.

We encourage users of the Plone images to familiarize themselves with the options available.

The Docker documentation is a good starting point for understanding the different storage options and variations.

Configuration Variables

Main variables

Environment variable	Zope option	Default value
DEBUG_MODE	debug-mode	off
SECURITY_POLICY_IMPLEMENTATION	security-policy-implementation	C
VERBOSE_SECURITY	verbose-security	false
DEFAULT_ZPUBLISHER_ENCODING	default-zpublisher-encoding	utf-8
LISTEN_PORT	(no equivalent)	8080

Listen port

By default, the Zope process inside the container will listen on TCP port 8080. In certain circumstances — Kubernetes or Podman pods — there may be a need to run more than one Zope process within the network namespace, which would result in listen port clashes as two different processes within the same namespace attempt to listen to the same TCP port.

In these cases, the variable LISTEN_PORT can be set to any particular port above 1024 to ensure that the container will listen on the desired port.

Plone 6 example:

# Makes Zope listen to port 8081 instead of the default 8080.
docker run -p 8081:8081 -e LISTEN_PORT=8081 plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION}

Startup performance variables

Environment variable	Description	Default value
SKIP_FIND_AND_CHOWN	Skips the recursive permission check on /data during startup.	(unset)

Skip find and chown

By default, the container checks permissions on /data to ensure the plone user can write to it. On large datasets, this find command can take a long time. If you are confident that permissions are correct, set SKIP_FIND_AND_CHOWN to any value to skip this step and speed up startup.

Site creation variables

Environment variable	Description
SITE	Id of the site to be created, for example, Plone
TYPE	Type of the site, either classic or volto. Default: volto
PROFILES	Initialize site with additional profiles, for example, eea.api.layout:default
DELETE_EXISTING	Force site to be recreated if it already exists, for example, true

It is possible to initialize your database with a Plone Site instance on its first run. To do so, pass the SITE environment variable with the name of the Plone Site instance, for example, SITE=Plone. This will add a Volto-ready Plone site. If you want a Plone Classic UI instance, pass the environment variable and value TYPE=classic. To initialize it with additional profiles, pass them as space separated values via the PROFILES environment variable, for example, PROFILES=eea.api.layout:default. To recreate the Plone site when restarting the container, you can pass the DELETE_EXISTING environment variable.

Plone 6 example:

docker run -p 8080:8080 -e ADDONS="eea.api.layout" -e SITE="Plone" -e PROFILES="eea.api.layout:default" plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION}

Plone 6 Classic example:

docker run -p 8080:8080 -e ADDONS="eea.facetednavigation" -e SITE="Plone" -e TYPE="classic" -e PROFILES="eea.facetednavigation:default" plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION}

We advise against using this feature on production environments.

ZOPE variables

Environment variable	Description	Default value
ZODB_CACHE_SIZE	database cache size	50000

ZEO variables

Environment variable	Description	ZEO option	Default value
ZEO_ADDRESS	URL of the ZEO interface, host:port
ZEO_SHARED_BLOB_DIR	ZEO option	name	off
ZEO_READ_ONLY	ZEO option	read-only	false
ZEO_CLIENT_READ_ONLY_FALLBACK	ZEO option	read-only-fallback	false
ZEO_STORAGE	ZEO option	storage	1
ZEO_CLIENT_CACHE_SIZE	ZEO option	cache-size	128MB
ZEO_DROP_CACHE_RATHER_VERIFY	ZEO option	drop-cache-rather-verify	false

Example

version: "3"
services:

  backend:
    image: plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION}
    restart: always
    environment:
      ZEO_ADDRESS: zeo:8100
    ports:
    - "8080:8080"
    depends_on:
      - zeo

  zeo:
    image: plone/plone-zeo:latest
    restart: always
    volumes:
      - data:/data
    ports:
    - "8100:8100"

volumes:
  data: {}

Relational Database variables

Environment variable	Description	RelStorage option	Default value
RELSTORAGE_DSN	{ref}containers-images-backend-postgresql-dsn-label for the database interface
RELSTORAGE_NAME	RelStorage option	name	storage
RELSTORAGE_READ_ONLY	RelStorage option	read-only	off
RELSTORAGE_KEEP_HISTORY	RelStorage option	keep-history	true
RELSTORAGE_COMMIT_LOCK_TIMEOUT	RelStorage option	commit-lock-timeout	30
RELSTORAGE_CREATE_SCHEMA	RelStorage option	create-schema	true
RELSTORAGE_SHARED_BLOB_DIR	RelStorage option	shared-blob-dir	false
RELSTORAGE_BLOB_CACHE_SIZE	RelStorage option	blob-cache-size	100mb
RELSTORAGE_BLOB_CACHE_SIZE_CHECK	RelStorage option	blob-cache-size-check	10
RELSTORAGE_BLOB_CACHE_SIZE_CHECK_EXTERNAL	RelStorage option	blob-cache-size-check-external	false
RELSTORAGE_BLOB_CHUNK_SIZE	RelStorage option	blob-chunk-size	1048576
RELSTORAGE_CACHE_LOCAL_MB	RelStorage option	cache-local-mb	10
RELSTORAGE_CACHE_LOCAL_OBJECT_MAX	RelStorage option	cache-local-object-max	16384
RELSTORAGE_CACHE_LOCAL_COMPRESSION	RelStorage option	cache-local-compression	none
RELSTORAGE_CACHE_DELTA_SIZE_LIMIT	RelStorage option	cache-delta-size-limit	100000

Currently this image supports only the configuration of a PostgreSQL backend via configuration variables.
If you need to use MySQL or Oracle, we recommend that you extend this image and overwrite the `/app/etc/relstorage.conf` file.

(containers-images-backend-postgresql-dsn-label)=

PostgreSQL DSN

A valid PostgreSQL DSN is a list of parameters separated with whitespace. A typical DSN looks like the following:

dbname='zodb' user='username' host='localhost' password='pass'

Example

version: "3"
services:

  backend:
    image: plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION}
    environment:
      RELSTORAGE_DSN: "dbname='plone' user='plone' host='db' password='plone'"
    ports:
    - "8080:8080"
    depends_on:
      - db

  db:
    image: postgres
    environment:
      POSTGRES_USER: plone
      POSTGRES_PASSWORD: plone
      POSTGRES_DB: plone
    ports:
    - "5432:5432"

CORS variables

Environment variable	Description	Default value
CORS_ALLOW_ORIGIN	Origins that are allowed access to the resource. Either a comma separated list of origins, for example http://example.net,http://mydomain.com or *	http://localhost:3000,http://127.0.0.1:3000
CORS_ALLOW_METHODS	A comma separated list of HTTP method names that are allowed by this CORS policy, for example DELETE,GET,OPTIONS,PATCH,POST,PUT	DELETE,GET,OPTIONS,PATCH,POST,PUT
CORS_ALLOW_CREDENTIALS	Indicates whether the resource supports user credentials in the request	true
CORS_EXPOSE_HEADERS	A comma separated list of response headers clients can access, for example Content-Length,X-My-Header	Content-Length,X-My-Header
CORS_ALLOW_HEADERS	A comma separated list of request headers allowed to be sent by the client, for example X-My-Header	Accept,Authorization,Content-Type,X-Custom-Header
CORS_MAX_AGE	Indicates how long the results of a preflight request can be cached	3600

These variables are used to configure CORS.

(containers-images-backend-add-ons-label)=

Add-ons

It is possible to include add-ons during startup time in a container created using this image.

We advise against using this feature on production environments — the recommended method is to
extend the official container images to include your desired add-ons in your own container.
This has several advantages, among which is the certainty that your container will always
run the exact add-on code you built into it.

To do so, pass the ADDONS environment variable with a space separated list of requirements to be added to the image (see below for documentation of the supported variables):

docker run -p 8080:8080 -e ADDONS="pas.plugins.authomatic" plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION} start

After Plone has started, you can add your Plone site (if none exists yet) and install the added add-ons to your site.

This approach also allows you to test Plone with a specific version of one of its core components

docker run -p 8080:8080 -e ADDONS="plone.volto==3.1.0a3" plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION} start

Add-on variables

Environment variable	Description	Details
ADDONS	A space separated list of python libraries to install	{ref}containers-images-backend-add-ons-label
DEVELOP	A space separated list of python libraries to install in editable mode	{ref}containers-images-backend-developing-packages-label
PIP_PARAMS	Parameters used in pip installation commands	pip install

Adding configuration to zope.conf or additional ZCML

Some Plone add-ons require changes to zope.conf or extra ZCML.

With the standard container, it is not possible to add configuration fragments to zope.conf directly or add extra ZCML, like it is with the buildout deployment method.

However, you can derive your own container image, and drop in configuration fragments. See {ref}backend-extending-from-this-image-label below for instructions.

(containers-images-backend-developing-packages-label)=

Developing packages variable

It is possible to install local packages instead of packages from pip. To do so, pass the DEVELOP environment variable with a space separated list of paths to Python packages to be installed. These packages will be installed with pip install --editable.

We advise against using this feature on production environments — the recommended method is to
extend the official container images to include your desired add-ons in your own container.

docker run -p 8080:8080 -e DEVELOP="/app/src/mysite.policy" plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION} start

This approach also allows you to develop local packages by using a volume.

docker run -p 8080:8080 -e DEVELOP="/app/src/mysite.policy" -v /path/to/mysite.policy:/app/src/mysite.policy plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION} start

(backend-extending-from-this-image-label)=

Extending from this image

In a directory create a Dockerfile file:

FROM plone/plone-backend:{PLONE_BACKEND_MINOR_VERSION}

RUN apt-get update \
    && apt-get install -y --no-install-recommends gcc \
    && rm -rf /var/lib/apt/lists/*

Build your new image.

docker build . -t myproject:latest -f Dockerfile

And start a container.

docker run -p 8080:8080 myproject:latest start

Changing default values of environment variables

All the environment variables documented above are supported in your derived container's Dockerfile. You can override the default values of variables as follows:

# Add environment variables before any CMD or ENTRYPOINT stanzas,
# and after any FROM, RUN and COPY stanzas.
ENV ZODB_CACHE_SIZE="120000"

Of course, you can always override these variables upon container start by using the Docker docker run argument -e VAR=value.

Be aware that some variables are not intended to be used in production. Check the respective variable documentation above to determine whether you should use it, or use a different method to get the desired result in production.

Adding zope.conf configuration fragments

In the directory containing your Dockerfile, create a folder etc/zope.conf.d. Add your zope.conf configuration fragments there.

Now add the following to your Dockerfile, before any CMD or ENTRYPOINT stanzas it may have, and after the FROM and any RUN stanzas:

COPY /etc/zope.conf.d/*.conf /app/etc/zope.conf.d/

This ensures your fragments are deployed in the zope.conf.d folder, which then will be used to amend the zope.conf file prior to starting Plone.

Adding ZCML fragments

In the directory containing your Dockerfile, create a folder etc/package-includes. Add your ZCML configuration fragments (named *-meta.zcml, *-configure.zcml, *-overrides.zcml) as files in that folder.

Now add the following to your Dockerfile, before any CMD or ENTRYPOINT stanzas it may have, and after the FROM and any RUN stanzas:

COPY /etc/package-includes/*.zcml /app/etc/package-includes/

Your ZCML fragments will be copied into the container and automatically included when Plone starts.

Advanced usage

This section describes advanced usage of the Plone backend Docker image.

Arbitrary user and persistent data

You can run Docker as an arbitrary user with the --user option.

To persist backend data between restarts of Docker, use both options of --user and -v.

The following command will run the Plone backend container as an arbitrary user, and persist the backend data in a volume, provided that the owner of the directory /data is the same as the --user option.

docker run --user="$(id -u)" -v $(pwd)/data:/data plone/plone-backend

Some environment variables, such as `ADDONS` and `DEVELOP`, will not work.

```console
$ docker run --user="$(id -u)" -v $(pwd)/data:/data -e ADDONS="eea.facetednavigation" plone/plone-backend
...
error: [Errno 13] Permission denied: '/app/lib/python3.9/site-packages/eea'
```

Multiple containers with ZEO

This image supports ZEO clusters as a simple way to allow horizontal scaling of the backend. Check the example page: {doc}/volto/configuration/environmentvariables.

Versions

For a complete list of tags and versions, visit the plone/plone-backend page on Docker Hub.

Contribute

• Issue Tracker
• Source Code
• Documentation