Introduction
The goal of this article is to walk through developing a Dockerfile which can be used for building a Docker image that can be deployed to a variety of tools such as Kubernetes, Azure App Service, Google Cloud App Engine and Amazon ECS.
Deploying Machine Learning algorithms into production is rarely a straightforward task. Usually there are multiple variables to be weighted like what type of algorithm, what library was used for the model, how large is the model, how it’s predictions are going to be consumed (batch or online inference), what are the business goals, just to name a few. While there is no right or wrong way of doing it some solutions can get quite complex with many steps in the pipeline and different technologies involved, which is one of the reasons for many companies hiring Machine Learning Engineers and Data Scientists, while the first takes care of the deployment and the tech stack and the later of making models. In this post I will present a simple way of deploying models using Docker and Python which works with any library and most platforms, whether you are using AWS, GCP, Azure, bare metal or your local machine.
One of the main advantages of having a simple deploy script is that it’s a lot easier to debug since there are fewer components involved and it also takes less time to setup and get going. On the other hand the disadvantage is the lack of automation and scalability. But don’t get me wrong here, you will still be able to use this deployment methodology for a number of cases
Architecture
Below is a diagram showing how the architecture will be like once deployed.
Here the API and Model are in the same container to make things simpler but for future improvements it should be relatively straight forward to separate the API from the Model and keep each in it’s own container. The API handles all the communication with the outside world while interfacing with the model to get the results from it. Using Docker makes so that deployment can be made in virtually any platform, as long as you are able to run it on the host there shouldn’t be any problems. It also works great for making an isolated environment so if it works locally on testing it should behave similarly once deployed somewhere else.
Model
For this example the model being deployed is a Logistic Regression. The problem being solved is a Sentiment Analysis on a balanced sample of 10K tweets I made out of the sentiment140 dataset. The dataset can be found here. The client will send a tweet or a set of tweets inside a JSON on the request body and the server will respond with the corresponding sentiment of each tweet (positive or negative) based on the text.
Before reaching the model, each tweet goes through two steps:
Preprocessing following the traditional NLP pipeline which includes: removal of URLs, removal of punctuation, tokenization, removal of stop words, stemming and case-folding.
Two features are created based on word frequencies, that is, for each word that appear in the preprocessed tweet, they are summed based on how many times it appeared on both positive and negative tweets.
After processed two features are created, which are the total counts of word frequencies for positive and negative words in the document.
The model outputs a probability between 0 and 1 based on the input features generated for each tweet, which is then filtered to become the forecast labels.
This is a very simple approach towards modeling Sentiment and it usually lags behind other simple approaches like Naive Bayes. Also there are other more complete solutions using Google word2vec which are capable of capturing semantic representations and achieve much better performance.
Since the objective of this blog post is to show how to deploy an algorithm rather than develop and improve it, I kept things as simple as possible. If you are working on a similar problem it should be easy to change the Logistic Regression being used for a Neural Network or Vector Spaces and still keep the same project structure for deployment, except of course that a few more steps might be needed depending on the strategy being used.
For referencing, check this Notebook to see how the model was developed.
Setting up the environment
The first deployment step is to setup an environment where both the model and the API will run, ideally it should be isolated from the server OS so that reproducibility becomes guaranteed. For the rescue comes Docker which does exactly that. Docker is great since its build with the Infrastructure-as-Code paradigm in mind, so the file used to define the environment also becomes documentation and a way to rebuild the environment whenever necessary. Here we will keep things as simple as possible so that building the environment inside the container becomes a solution, not a problem.
I will leave here a tip for working with Docker: If some particular set of scripts doesn’t seen to be working no matter what, you are probably trying to do something in a way that Docker wasn’t designed for, try searching for similar solutions to the problem. Things should be very streamlined when using Docker to build an environment.
Below is the Dockerfile that will be used to build the environment.
FROM ubuntu:xenial
# update environment packages
RUN apt-get update && apt-get upgrade -y
RUN apt-get install software-properties-common -y
# install pip
RUN apt-get install -y python3-pip
RUN pip3 install --upgrade pip
# copy python packages list to container and install
COPY ./requirements.txt .
RUN pip install -r requirements.txt
# create folder where project folder will be attached to during RUN
RUN mkdir external_lib
Nothing out of the extraordinary here, just updating the libraries, installing pip and all the Python libraries will be used from requirements.txt, so make sure to map your environment packages inside it. One thing worth noting here is the COPY command, which basically takes the file from the local directory where the Dockerfile being executed is located and copies it to the container.
To build the container call the following command on a terminal where Docker is acessible from. This will go through the container definition and build it as model_api.
docker build -t model_api:latest .
API
For the API, the framework used is Flask which is great for building production ready, but yet simple APIs in Python. Since The one being built here is relatively simple, configuration won’t take long plus the source code will be easy to understand.
The code below instantiates a Flask app on api.py and adds it to the context of the module where it is located. Notice that we set Debug Mode to False since we want to use it in a production server.
# setup flask app
app = flask.Flask(__name__)
app.config["DEBUG"] = False
Method below is the main API component - It’s the method called when it receives a POST request from the client, here the route will be /api/v1/7Aja2ByCyQ4rMBqA/predict.
@app.route('/api/v1/7Aja2ByCyQ4rMBqA/predict', methods=['POST'])
def predict_tweet():
# Called when API receives a POST request. It expects a json with input data, then it calls the model module to generate predictions and returns it
# Parameters:
# json (dict): request dict, should contain input data
# Returns:
# dict (json): model predictions
try:
# get json from request
json = request.get_json()
# check if request sent an empty payload
if json != {}:
# get each key and values from request
keys = []
values = []
for key, value in json.items():
keys.append(key)
values.append(value)
# call model predict
result = run(values)
# generate response json for empty and non-empty results
if result == []:
result = empty_response(keys)
else:
result = prepare_response(keys, result)
else:
raise Exception('')
return jsonify(result)
except Exception as e:
app.logger.info('Application Error while processing request')
abort(400)
The long string in the middle is used so that the URL becomes dynamic, since there will be no authentication behind the API, this section can be used as a token. For that reason, if you want to deploy this in production I recommend one of the following:
- Implement a proper authentication mechanism using the libraries Flask already has; or
- Deploy it on a server that is inside a private network, like a VPC for example, so that only the IPs you own have access to it; or
- Implement a auto refresh of the API URL token, so that every couple of hours or days it changes.
It’s also a good idea to add some extra methods to the API to preprocess the different types of responses and errors that are expected to occur, like I did with empty_response() and prepare_response(). Feel free to refer to the ones I used here.
WSGI
Before moving on, there is one more component that needs to be presented which is gunicorn, a powerful production-ready WSGI in Python. The WSGI will be in charge of handling the actual HTTPS connections received from the client to the API and forwarding it the Python code wrote to process the input data.
The Main benefits of using gunicorn as a WSGI are: 1) It’s scalable with support to multithreading out of the box 2) We can use it to process encrypted HTTPS requests without the need of having a proxy like NGINX or Apache.
Without HTTPS encryption, the data contained in the requests to and from the API would be traveling through the web as raw text, making it very easy to be captured by someone ill-intentioned.
Have said that, in order to use HTTPS we need to have a Certificate so that we can encrypt the data we send, and only the receiver can decrypt it. Assuming a UNIX-based terminal and OpenSSL is installed, the command below will create a server.key and server.crt after following the on-screen instructions.
openssl req -newkey rsa:2048 -nodes -keyout server.key -x509 -days 365 -out server.crt
Since this is only an example it’s perfectly fine to use a self signed certificate (or if it’s running inside a private network). Otherwise, I highly encourage getting one from a trusted authority.
With the certificate and keyfile to encrypt requests at hand, there is one more step that needs to be done to configure gunicorn so that it can be used by Flask.
The way process will be chained to run the entire API is the following: 1) gunicorn starts as a system-wide process 2) gunicorn starts the Flask app to run on the processes encapsulated by it.
For this to work, we need to pass the API context to gunicorn once it starts. The code snippet below defines the app context on wsgi.py that the WSGI needs to work.
from api import app
# this file is used to pass the app context to WSGI Gunicorn
if __name__ == "__main__":
context = ('server.crt', 'server.key')
app.run(host='0.0.0.0', debug=False, ssl_context=context, threaded=True)
The Flask app defined before will be imported and executed with the passed parameters, notice that we are passing the files related to the certificate generated before. Once gunicorn is called on the command-line, it will chain this Flask process inside it’s threads to encapsulate the Flask app.
The only thing missing now is a way to call gunicorn from inside the container once it starts. There many ways of doing that, the below method is my personal preference but feel free to do it any way you prefer.
Once the container is called, it will execute the api-start command inside a Makefile, which itself calls the command that starts gunicorn. The definition of the file can be the following.
api-start:
gunicorn --certfile server.crt --keyfile server.key -b 0.0.0.0:5000 --log-level=debug --workers=2 wsgi:app
Adding Model logic
All the pieces are coming together, now let’s take a look at how to add the code related to the model, like preprocessing data, generating forecast and so on. It’s a good idea to keep the code from the model separate from the API for readability, this will also help if in the future you decide to run both on different Docker containers or servers.
Below is an example of how the model.py will likely be structured as, probably most of the code in it will be ready from the Jupyter Notebook or whatever environment the model was developed on.
def load_artifacts(item):
# Returns the requested artifact
# Possible artifacts are: serialized model, file with
# model weights.
return artifact
def preprocess_data(data):
# Performs all the preprocessing steps before feeding
# the data to the model for prediction
return preprocessed_data
def predict(data):
# Predicts on preprocessed data passed to the method
return prediction
def process_model_output(prediction):
# Preprocesses the forecast from the model so that
# it can be easily handled by the API before returning
# the response
return preprocessed_prediction
def run(data):
# Main module method, calls all methods above as pipeline
return preprocessed_prediction
The load_artifacts() is for loading the model that was trained, alongside any other objects that might be necessary for reproducibility like sklearn preprocessing models and so on. One possible way of using it is to simply put the artifacts on the same repository that the project is, so that it can be loaded by just referring to the relative path ./artifact.pickle. It’s also possible to store them on a AWS S3 for example, but then extra logic will be necessary to download the files and put them in the same directory that the rest of the files are.
One tip I will give here is to debug all the code from model.py to make sure that the entire pipeline works properly. Once that’s done, all that’s left to do is defining what the input to this module, which is passed by the API will look like (a dict, a list of lists, a Dataframe). Then just add the proper handlers on the model class for the input and follow the model pipeline. By testing things in these modularized way the development becomes a lot easier. So make sure that your model pipeline works after taking the input from the API, then fix how the API takes this output and sends it back to the client inside a JSON.
Building the Container
Once all the steps above are finished the project is ready to be deployed. Since we are using Docker and the Container was already defined, this process becomes very simple.
First make sure that all the necessary files from the project are in the same folder that the Dockerfile is. One possible structure is as follows (and is actually the one I used on the sample project).
├── artifacts
│ ├── artifact1.pickle
│ └── artifact2.pickle
├── api.py
├── model.py
├── wsgi.py
├── Dockerfile
├── Makefile
├── requirements.txt
├── server.crt
└── server.key
This folder structure is necessary since we are building the container by copying all the contents from the current folder where the Dockerfile is, so if you place files in a different hierarchy, make sure to reflect that when importing/reading the files.
Important - Remember to add both server.crt and server.key to gitignore in case you are storing the project on a public Git repository and store it in a safe place where only trusted people have access to it, you certainly don’t want the internet having free access to a certificate file signed with your credentials.
Now everything is ready to build the container and start the application!
Run the command below on a terminal where Docker is acessible from:
docker run -it -v /path/to/model_api/:/external_lib/ -p 5000:5000 model_api sh -c 'cd external_lib && make api-start'
The command will perform the following actions while running the container:
1) Mount a virtual volume inside the container by mapping /path/to/model_api/ which is where the project is located, to /external_lib/ which is a folder inside the container. So basically the server folder becomes available to the container as well. The main advantage of doing it this way is that when the source code changes, there will be no need to rebuild the container, just restart the container and it will use the latest version of the project.
2) Map port 5000 from the server to container port 5000 with -p 5000:5000, so every connection made to this port in the server get’s tunneled the container as well, and is also the port that the API will respond to.
3) Execute a shell command inside the container with sh -c 'cd external_lib && make api-start', which will go into the folder where the project is and call the Makefile to start the API.
Upon running the command you should see gunicorn output from the container, similar to the following:
[2020-08-20 14:09:48 +0000] [7] [INFO] Starting gunicorn 20.0.4
[2020-08-20 14:09:48 +0000] [7] [DEBUG] Arbiter booted
[2020-08-20 14:09:48 +0000] [7] [INFO] Listening at: https://0.0.0.0:5000 (7)
[2020-08-20 14:09:48 +0000] [7] [INFO] Using worker: sync
[2020-08-20 14:09:48 +0000] [10] [INFO] Booting worker with pid: 10
[2020-08-20 14:09:48 +0000] [11] [INFO] Booting worker with pid: 11
[2020-08-20 14:09:48 +0000] [7] [DEBUG] 2 workers
Notice that here there are only 2 workers being spawned by the framework, feel free to change this accordingly to the needs of your application and based on how many cores the server has by updating the Makefile.
Now let’s make a call to the API and test if it works.
curl -i -k -H "Accept: application/json" -H "Content-Type: application/json" -X POST │ https://127.0.0.1:5000/api/v1/7Aja2ByCyQ4rMBqA/predict -d @payload.json
The command above will use curl to send a POST to the API and pass payload.json as the body. This file should contain the input data that will be passed to the model for making a prediction.
If everything works well, the expected response should be a status 200 OK, as shown below. In this case the model behind the API is a Sentiment predictor and the input was a set of 8 Tweets.
HTTP/1.1 200 OK
Server: gunicorn/20.0.4
Date: Thu, 20 Aug 2020 14:33:40 GMT
Connection: close
Content-Type: application/json
Content-Length: 122
{"1":"Negative","2":"Negative","3":"Negative","4":"Negative","5":"Negative","6":"Negative","7":"Positive","8":"Positive"}
If yours doesn’t reply as expected, try debugging to see what could be the cause of the problem.
The full source code can be found here.
Thanks for reading and if you have any trouble implementing this solution or have any feedback in general feel free to leave a comment below or contact me!