Docker / IaaS Node
Full lifecycle control of Docker containers, images, volumes, networks, and the Docker daemon — directly from BizFirst workflows.
Key Capabilities
- Connect to local or remote Docker daemons via Unix socket, plain TCP, or mutual TLS
- Full container lifecycle: create, start, stop, restart, remove, inspect, exec, logs, and stats
- Image management: pull from any registry, list, inspect, tag, and remove images
- Volume management: create named volumes with custom drivers and labels, inspect, list, remove
- Network management: create bridge/overlay/host networks, connect and disconnect containers, inspect and remove
- Daemon-level system queries: info, version, and connectivity ping
- Configurable timeout for long-running operations such as image pulls and container starts
- Dual output ports on every operation: success and error
Use Cases
CI/CD Pipeline Automation
Integrate Docker operations directly into your build and deployment pipelines. Pull the latest image from a registry, create a container with environment variables injected from workflow context, start it, run post-deploy smoke tests via container/exec, and clean up — all in a single automated workflow without a separate CI server.
Container Lifecycle Management
Schedule routine maintenance workflows that inspect running containers for health, restart any container whose stats indicate excessive memory usage, remove stopped containers older than a threshold, and prune dangling images. Replace shell cron scripts with auditable, observable BizFirst workflows.
Microservice Orchestration
Create isolated Docker networks, spin up multiple service containers on demand, connect them to the network with DNS aliases, and verify connectivity via system/ping before routing traffic. Tear down the stack and remove the network in a single workflow step after an ephemeral test run.
Database Migration Execution
After deploying a new container version, use container/exec to run database migration scripts inside the running container. Capture stdout/stderr output and exit code in workflow variables for conditional error handling — route to an alert node on non-zero exit.
Ephemeral Test Environment Provisioning
Provision a complete test environment on demand: pull the required images, create a dedicated network, start database and application containers, execute integration tests, capture results, and destroy the entire environment — leaving no orphaned resources behind.
All Operations (6 Resources, 31 Operations)
| Resource | Operation | Description |
|---|---|---|
| container | container/list | List all containers (or only running). Returns array of container summaries. |
| container | container/inspect | Retrieve full inspect object for a specific container by ID. |
| container | container/create | Create a new container from an image with optional name, command, env vars, port bindings, and volume mounts. |
| container | container/start | Start a stopped container by ID. |
| container | container/stop | Stop a running container, with optional SIGKILL timeout. |
| container | container/restart | Restart a container, with optional graceful stop timeout. |
| container | container/remove | Remove a container. Optionally force-remove running containers and prune associated volumes. |
| container | container/logs | Retrieve stdout and stderr log output. Supports tail line count and timestamp prefix. |
| container | container/exec | Execute a command inside a running container. Returns exit code, stdout, and stderr. |
| container | container/stats | Retrieve current CPU, memory, network I/O, and disk I/O statistics for a container. |
| image | image/list | List local images. Optionally include intermediate (dangling) images. |
| image | image/inspect | Retrieve full image details including layer digests, config, and metadata. |
| image | image/pull | Pull an image from a registry in repo:tag format. Defaults to tag latest. |
| image | image/remove | Remove a local image by ID. Options: force removal and prune child images. |
| image | image/tag | Apply a new repository and tag to an existing image. |
| volume | volume/list | List Docker volumes. Supports JSON filter string for scoped results. |
| volume | volume/create | Create a named volume with optional driver and JSON labels. Name is auto-generated if omitted. |
| volume | volume/inspect | Retrieve full details for a specific volume by ID. |
| volume | volume/remove | Remove a volume by ID. Force flag bypasses in-use protection. |
| network | network/list | List Docker networks. Supports JSON filter string. |
| network | network/create | Create a network with specified driver (bridge/overlay/host/none), isolation flag, and labels. |
| network | network/inspect | Retrieve full network details including connected containers and IPAM config. |
| network | network/connect | Connect a container to a network with optional DNS aliases. |
| network | network/disconnect | Disconnect a container from a network. Force flag disconnects running containers. |
| network | network/remove | Remove a network by ID. |
| system | system/info | Return Docker daemon info: version, OS type, CPU count, total memory, and storage driver. |
| system | system/version | Return detailed Docker engine version information. |
| system | system/ping | Ping the Docker daemon. Returns "OK" if reachable — use as a connectivity pre-check. |
In This Guide
Configuration
Connection settings, all 6 resources, and complete property reference for all 31 operations with Required / Optional badges.
Input & Output
Output ports, error codes, and detailed output schemas for key operations including exec, logs, stats, pull, and system/info.
Examples
Five complete workflow configurations: image pull and container start, exec migration, maintenance cleanup, network orchestration, and health check loop.
/var/run/docker.sock is equivalent to granting root-level host access. Restrict Docker node usage to trusted, audited workflows and consider using a TLS-secured remote daemon for production environments.