Edit

Share via

Containerize a .NET app with dotnet publish

  • Article

Containers have many features and benefits, such as being an immutable infrastructure, providing a portable architecture, and enabling scalability. The image can be used to create containers for your local development environment, private cloud, or public cloud. In this tutorial, you learn how to containerize a .NET application using the dotnet publish command without the use of a Dockerfile. Additionally, you explore how to configure the container image and execution, and how to clean up resources.

Tip

If you're interested in using a Dockerfile to containerize your .NET app, see Tutorial: Containerize a .NET app.

Prerequisites

Install the following prerequisites:

  • .NET 8+ SDK
    If you have .NET installed, use the dotnet --info command to determine which SDK you're using.

If you plan on running the container locally, you need an Open Container Initiative (OCI)-compatible container runtime, such as:

  • Docker Desktop: Most common container runtime.
  • Podman: An open-source daemonless alternative to Docker.

Important

The .NET SDK creates container images without Docker. Docker or Podman are only needed if you want to run the image locally. By default, when you publish your .NET app as a container image it's pushed to a local container runtime. Alternatively, you can save the image as a tarball or push it directly to a container registry without using any container runtime at all.

In addition to these prerequisites, it's recommended that you're familiar with Worker Services in .NET as the sample project is a worker.

Create .NET app

You need a .NET app to containerize, so start by creating a new app from a template. Open your terminal, create a working folder (sample-directory) if you haven't already, and change directories so that you're in it. In the working folder, run the following command to create a new project in a subdirectory named Worker:

.NET CLI 
dotnet new worker -o Worker -n DotNet.ContainerImage

Your folder tree looks similar to the following directory:

Directory 
πŸ“ sample-directory
    β””β”€β”€πŸ“‚ Worker
        β”œβ”€β”€appsettings.Development.json
        β”œβ”€β”€appsettings.json
        β”œβ”€β”€DotNet.ContainerImage.csproj
        β”œβ”€β”€Program.cs
        β”œβ”€β”€Worker.cs
        β”œβ”€β”€πŸ“‚ Properties
        β”‚   └─── launchSettings.json
        β””β”€β”€πŸ“‚ obj
            β”œβ”€β”€ DotNet.ContainerImage.csproj.nuget.dgspec.json
            β”œβ”€β”€ DotNet.ContainerImage.csproj.nuget.g.props
            β”œβ”€β”€ DotNet.ContainerImage.csproj.nuget.g.targets
            β”œβ”€β”€ project.assets.json
            └── project.nuget.cache

The dotnet new command creates a new folder named Worker and generates a worker service that, when run, logs a message every second. From your terminal session, change directories and navigate into the Worker folder. Use the dotnet run command to start the app.

.NET CLI 
dotnet run
Using launch settings from ./Worker/Properties/launchSettings.json...
Building...
info: DotNet.ContainerImage.Worker[0]
      Worker running at: 01/06/2025 13:37:28 -06:00
info: Microsoft.Hosting.Lifetime[0]
      Application started. Press Ctrl+C to shut down.
info: Microsoft.Hosting.Lifetime[0]
      Hosting environment: Development
info: Microsoft.Hosting.Lifetime[0]
      Content root path: .\Worker
info: DotNet.ContainerImage.Worker[0]
      Worker running at: 01/06/2025 13:37:29 -06:00
info: DotNet.ContainerImage.Worker[0]
      Worker running at: 01/06/2025 13:37:30 -06:00
info: Microsoft.Hosting.Lifetime[0]
      Application is shutting down...

The worker template loops indefinitely. Use the cancel command Ctrl+C to stop it.

Set the container image name

There are various configuration options available when publishing an app as a container. By default, the container image name is the AssemblyName of the project. If that name is invalid as a container image name, you can override it by specifying a ContainerRepository as shown in the following project file:

XML 
<Project Sdk="Microsoft.NET.Sdk.Worker">

  <PropertyGroup>
    <TargetFramework>net9.0</TargetFramework>
    <Nullable>enable</Nullable>
    <ImplicitUsings>enable</ImplicitUsings>
    <UserSecretsId>dotnet-DotNet.ContainerImage-2e40c179-a00b-4cc9-9785-54266210b7eb</UserSecretsId>
    <ContainerRepository>dotnet-worker-image</ContainerRepository>
  </PropertyGroup>

  <ItemGroup>
    <PackageReference Include="Microsoft.Extensions.Hosting" Version="9.0.3" />
  </ItemGroup>
</Project>

For further reference, see ContainerRepository.

Publish .NET app

To publish the .NET app as a container, use the following dotnet publish command:

.NET CLI 
dotnet publish --os linux --arch x64 /t:PublishContainer

The preceding .NET CLI command publishes the app as a container:

  • Targeting Linux as the OS (--os linux).
  • Specifying an x64 architecture (--arch x64).

Important

To publish the container locally, you must have an active OCI-compliant daemon running. If it isn't running when you attempt to publish the app as a container, you experience an error similar to the following:

Console 
..\build\Microsoft.NET.Build.Containers.targets(66,9): error MSB4018:
   The "CreateNewImage" task failed unexpectedly. [..\Worker\DotNet.ContainerImage.csproj]

The dotnet publish command produces output similar to the example output:

.NET CLI 
Restore complete (0.2s)
  DotNet.ContainerImage succeeded (2.6s) β†’ bin\Release\net9.0\linux-x64\publish\

This command compiles your worker app to the publish folder and pushes the container image to your local Docker daemon by default. If you're using Podman, an alias

Publish .NET app to a tarball

A tarball (or tar file) is a file that contains other files. It usually ends with a *.tar.gz compound file extension to help indicate that it's a compressed archive. These file types are used to distribute software or to create backups. In this case, the tarball created is used to distribute a container image.

To publish a .NET app as a container to a tarball, use the following command:

.NET CLI 
dotnet publish --os linux --arch x64 \
    /t:PublishContainer \
    -p ContainerArchiveOutputPath=./images/container-image.tar.gz

The preceding command publishes the app as a container to a tarball:

  • Targeting Linux as the OS (--os linux).
  • Specifying an x64 architecture (--arch x64).
  • Setting the ContainerArchiveOutputPath property to ./images/container-image.tar.gz.

The command doesn't require a running OCI-compliant daemon. For more information, see ContainerArchiveOutputPath.

Load the tarball

A common use case for exporting to a tarball is for security-focused organizations. They create containers, export them as tarballs, and then run security-scanning tools over the tarballs. This approach simplifies compliance as it avoids the complexities of scanning a live system.

The tarball contains the entire container, which can then be loaded using the appropriate tool:

  • Docker: docker load -i ./images/container-image.tar.gz
  • Podman: podman load -i ./images/container-image.tar.gz

Publish .NET app to container registry

Container registries are services that store and manage container images. They're used to store and distribute container images across multiple environments. You can publish a .NET app as a container to a container registry by using the following command:

.NET CLI 
dotnet publish --os linux --arch x64 \
    /t:PublishContainer \
    -p ContainerRegistry=ghcr.io

The preceding code publishes the app as a container to a container registry:

  • Targeting Linux as the OS (--os linux).
  • Specifying an x64 architecture (--arch x64).
  • Setting the ContainerRegistry property to ghcr.io.

For more information, see ContainerRegistry.

Clean up resources

In this article, you published a .NET worker as a container image. If you want, delete this resource. Use the docker images command to see a list of installed images.

Console 
docker images

Consider the following example output:

Console 
REPOSITORY             TAG       IMAGE ID       CREATED          SIZE
dotnet-worker-image    1.0.0     25aeb97a2e21   12 seconds ago   191MB

Tip

Image files can be large. Typically, you would remove temporary containers you created while testing and developing your app. You usually keep the base images with the runtime installed if you plan on building other images based on that runtime.

To delete the image, copy the image ID and run the docker image rm command:

Console 
docker image rm 25aeb97a2e21

Next steps