⚠️ This repository is used to build images for Sauce Connect Proxy version 4 only. Sauce Connect Proxy 5 release includes Docker images.
Sauce Connect Docker App lets you easily run Sauce Connect Proxy within the confines of a Docker container on any system that supports Docker.
-
Pull the image from Docker Hub:
- The
latesttag (recommended)
$ docker pull saucelabs/sauce-connect
- You can always specify a specific tag (see supported tags), for example,
4.8.3
$ docker pull saucelabs/sauce-connect:4.8.3
- The
-
To run the container, execute:
$ export SAUCE_USERNAME="my-user" SAUCE_ACCESS_KEY="my-access-key"
$ docker run \
-e SAUCE_USERNAME=${SAUCE_USERNAME} \
-e SAUCE_ACCESS_KEY=${SAUCE_ACCESS_KEY} \
--network="host" \
-it saucelabs/sauce-connect
⚠️ The example above uses '--network="host"' docker option to allow Sauce Connect within the Docker container to access your local services in the host machine. This is not going to work on Mac OS and Windows. See Connect from a container to a service on the macOS host.
Additional arguments may be specified as you would normally do with Sauce Connect Proxy.
High Availability Sauce Connect Proxy Setup enables you to run tests using multiple Sauce Connect tunnels and run multiple tunnels grouped together as a tunnel pool, which will be treated as single tunnel. Pools are ideal for running 100 or more parallel tests (high concurrency) because tunnel capacity is limited by a single TCP Connection.
To leverage tunnel pools add --tunnel-pool option to your command and start multiple containers with the same tunnel name.
# tunnel #1
$ docker run \
--detach \
-e SAUCE_USERNAME=${SAUCE_USERNAME} \
-e SAUCE_ACCESS_KEY=${SAUCE_ACCESS_KEY} \
-it saucelabs/sauce-connect \
--tunnel-pool \
--tunnel-name sc-tunnel-pool
# tunnel #2
docker run \
--detach \
-e SAUCE_USERNAME=${SAUCE_USERNAME} \
-e SAUCE_ACCESS_KEY=${SAUCE_ACCESS_KEY} \
-it saucelabs/sauce-connect \
--tunnel-pool \
--tunnel-name sc-tunnel-poolFor more information on high availability Sauce Connect Proxy setup, please see Sauce Connect documentation.
Sauce Connect Proxy allows to define YAML config file that will contain your configuration. YAML config file may contain username, access key, etc... See Sauce Connect documentation for all available options. This Docker image comes with config file but it could be replaced with a custom one.
Follow the following steps to use your config file with the docker container.
- Create a config file with all the required options, for example
$ cat /path/to/sc.yaml
---
region: "eu-central"
api-key: xxx-xxx-xxx
user: xxx
no-remove-colliding-tunnels: true
logfile: "-"
tunnel-identifier: "my-tunnel"- Start the container with docker
-voption (mount the config file into a container) and Sauce Connect Proxy--config-fileoption
docker run \
--detach \
-v /path/to/sc.yaml:/tmp/sc.yaml \
-t saucelabs/sauce-connect \
--config-file /tmp/sc.yamlSauce Connect Proxy may be configured via environment variables.
Sauce Connect Proxy Docker app is convenient to configure via environment variables when it is used as Gitlab service or GitHub Action.
Example of configuring Sauce Connect Proxy using environment variables (the example uses 4.8.x-specific options that may not work with the previous versions).
$ cat /tmp/sc.env
SAUCE_REGION=eu-central
SAUCE_API_KEY=<YOUR API KEY>
SAUCE_USERNAME=<YOUR USERNAME>
SAUCE_OUTPUT_FORMAT=text
SAUCE_TUNNEL_POOL=true
SAUCE_LOGFILE=-
SAUCE_TUNNEL_NAME=my-docker-tunnel
SAUCE_READYFILE=/tmp/sc.ready
$ docker run \
--detach \
--env-file /tmp/sc.env \
-v /tmp:/tmp \
-t saucelabs/sauce-connect:4.8.3Sauce Connect Proxy supports PAC to allow fine-tuning of the proxy behavior. See the Sauce Connect documentation for more information.
Example of configuring Sauce Connect Proxy using environment variables and the PAC file.
- Store your PAC file in some directory
$ cat ~/pac/sc.pac function FindProxyForURL (url, host) { if (shExpMatch(host, '*httpbin.org')) { return 'PROXY localhost:8081'; } return 'DIRECT'; }
- Start the container with docker
-voption (mount the PAC file directory into a container) and Sauce Connect Proxy --pac flag$ docker run \ --detach \ --env-file ~/sauce-connect/sc.env \ -v ~/pac:/pac \ -t saucelabs/sauce-connect:4.8.3 --pac file:///pac/sc.pac
If you want to run this Docker image as part of your CI/CD pipeline, you would need a way to determine that Sauce Connect Proxy is ready to proxy the requests. You can achieve that by:
- Starting with v4.8.0, the
/readinessendpoint is available. - By using Docker's volumes feature and --readyfile.
⚠️ Only available starting with Sauce Connect Proxy version 4.8.0.
Starting with 4.8.0, Sauce Connect Proxy Docker image allows configuring liveness and readiness HTTP probes. See the kubernetes documentation for more info.
Docker container exposes Sauce Connect Proxy HTTP status server on port 8032. The following endpoints are available:
/readinessreturns 200 response code when Sauce Connect Proxy is ready, 503 otherwise/livenessreturns 200 response code when Sauce Connect Proxy is running
You can leverage the "readiness" endpoint in our CI/CD pipeline by running the following:
- Create a simple bash script
wait-for-sc.shthat will ensure the pipeline only continues after Sauce Connect Proxy is fully connected and ready.until [ "$(curl -s -o /dev/null -w ''%{http_code}'' localhost:8032/readiness)" == "200" ] do sleep 2 done echo "SC ready"
- Run Sauce Connect Docker container using the script below.
$ docker run \
--detach \
-e SAUCE_USERNAME=${SAUCE_USERNAME} \
-e SAUCE_ACCESS_KEY=${SAUCE_ACCESS_KEY} \
-p 8032:8032 \
-t saucelabs/sauce-connect:latest \
-i my-docker-tunnel
$ ./wait-for-sc.sh
⚠️ Make sure to add -p 8032:8032 docker option to expose the port to the host.
You can leverage the Sauce Connect Proxy --readyfile flag that allows to specify a file that will be created (or updated) when the proxy is ready.
-
Just as above, create a simple bash script
wait-for-sc.shthat will ensure the pipeline only continues after Sauce Connect Proxy is fully connected and ready.# wait-for-sc.sh until [ -f /tmp/sc.ready ] do sleep 1 done echo "SC ready" exit
-
Run Sauce Connect Docker container using the script below.
$ docker run \ --detach \ -e SAUCE_USERNAME=${SAUCE_USERNAME} \ -e SAUCE_ACCESS_KEY=${SAUCE_ACCESS_KEY} \ -v /tmp:/tmp \ -t saucelabs/sauce-connect:latest \ -f /tmp/sc.ready \ -i my-docker-tunnel $ ./wait-for-sc.sh
⚠️ Make sure to add -v /tmp:/tmp docker option so thatwait-for-sc.shcan detect that Sauce Connect Proxy is ready.
Have a look into the GitHub Actions pipeline for this repository. If you use GitHub Actions you can just make use of our GitHub Actions Integration.
The examples folder contains Docker Compose configurations for:
- Running a Sauce Connect Proxy Pool
- Running an arbitrary application (Nginx Server in this example) alongside Sauce Connect Proxy container
Starting with 4.8.0, Sauce Connect Proxy Docker image allows configuring liveness and readiness HTTP probes. See the kubernetes documentation for more info.
Docker image exposes Sauce Connect Proxy HTTP status server on port 8032. The following endpoints are available:
-
/readiness returns 200 response code when Sauce Connect Proxy is ready, 503 otherwise
-
/liveness returns 200 response code when Sauce Connect Proxy is running
$ docker run \ --detach \ -e SAUCE_USERNAME=${SAUCE_USERNAME} \ -e SAUCE_ACCESS_KEY=${SAUCE_ACCESS_KEY} \ -p 8032:8032 \ -t saucelabs/sauce-connect:latest \ -i my-docker-tunnel $ curl -s -o /dev/null -w "%{http_code}" http://localhost:8032/readiness 503 $ ./wait-for-sc.sh $ curl -s -o /dev/null -w "%{http_code}" http://localhost:8032/readiness 200 $ curl localhost:8032/liveness OK
⚠️ Make sure to add -p 8032:8032 docker option to expose the port to the host.
The repo contains a reference Helm chart. It can be used to deploy the Sauce Connect Proxy to Kubernetes.
To use this chart
-
Define a required values file, for example:
--- sauceApiRegion: us-west sauceUser: johndoe sauceApiKey: "xxx-xxx-xxx" tunnelName: "my-k8s-tunnel"
-
Install the Helm chart
$ helm install sauce-connect ./chart/sauce-connect --values /path/to/values.yaml --set tunnelName=your-pool-name --set tunnelPoolSize=1 NOTES: 1. Get the application URL by running these commands: export POD_NAME=$(kubectl get pods --namespace default -l "app.kubernetes.io/name=sauce-connect,app.kubernetes.io/instance=sauce-connect" -o jsonpath="{.items[0].metadata.name}") export CONTAINER_PORT=$(kubectl get pod --namespace default $POD_NAME -o jsonpath="{.spec.containers[0].ports[0].containerPort}") echo "Visit http://127.0.0.1:8080/api/v1/status to use your application" kubectl --namespace default port-forward $POD_NAME 8080:$CONTAINER_PORT
-
Use the following commands in order to get the application status
$ POD_NAME=$(kubectl get pods --namespace default -l "app.kubernetes.io/name=sauce-connect,app.kubernetes.io/instance=sauce-connect" -o jsonpath="{.items[0].metadata.name}") $ CONTAINER_PORT=$(kubectl get pod --namespace default $POD_NAME -o jsonpath="{.spec.containers[0].ports[0].containerPort}") $ kubectl --namespace default port-forward $POD_NAME 8080:$CONTAINER_PORT $ curl -s 127.0.0.1:8080/api/v1/status | jq . $ curl -s http://127.0.0.1:8080/api/v1/status | jq . { "firstConnectedTime": 1662098351, "tunnelID": "11111", "tunnelName": "my-k8s-tunnel", "tunnelServer": "tunnel-59569b.tunnels.us-west-1.saucelabs.com", "lastStatusChange": 1662098350, "reconnectCount": 0, "tunnelStatus": "connected" } $ kubectl logs $POD_NAME -f ... 2022-08-02 02:59:11.464 [8] [CLI] [info] Connection state has changed: previous: INIT, actual: CONNECTED. 2022-08-02 02:59:11.464 [8] [CLI] [info] Sauce Connect is up, you may start your tests.
-
Pod restart
The terminationGracePeriodSeconds is set to 600 seconds to allow sufficient time for jobs using the Sauce Connect Proxy to finish.
- Maintained by: the Open Source Program Office at Sauce Labs
- Where to get help: the Sauce Labs Community Hub, the GitHub Issue, or Stack Overflow
- GitHub Repository: saucelabs/sauce-connect-docker