-
-
Notifications
You must be signed in to change notification settings - Fork 358
/
Copy pathDockerfile
114 lines (80 loc) · 3.11 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
FROM node:22.14.0-bookworm-slim AS assets
LABEL maintainer="Nick Janetakis <[email protected]>"
WORKDIR /app/assets
ARG UID=1000
ARG GID=1000
RUN apt-get update \
&& apt-get install -y --no-install-recommends build-essential \
&& rm -rf /var/lib/apt/lists/* /usr/share/doc /usr/share/man \
&& apt-get clean \
&& groupmod -g "${GID}" node && usermod -u "${UID}" -g "${GID}" node \
&& mkdir -p /node_modules && chown node:node -R /node_modules /app
USER node
COPY --chown=node:node assets/package.json assets/*yarn* ./
RUN yarn install && yarn cache clean
ARG NODE_ENV="production"
ENV NODE_ENV="${NODE_ENV}" \
PATH="${PATH}:/node_modules/.bin" \
USER="node"
COPY --chown=node:node . ..
RUN if [ "${NODE_ENV}" != "development" ]; then \
../run yarn:build:js && ../run yarn:build:css; else mkdir -p /app/public; fi
CMD ["bash"]
###############################################################################
FROM python:3.13.2-slim-bookworm AS app-build
LABEL maintainer="Nick Janetakis <[email protected]>"
WORKDIR /app
ARG UID=1000
ARG GID=1000
RUN apt-get update \
&& apt-get install -y --no-install-recommends build-essential curl libpq-dev \
&& rm -rf /var/lib/apt/lists/* /usr/share/doc /usr/share/man \
&& apt-get clean \
&& groupadd -g "${GID}" python \
&& useradd --create-home --no-log-init -u "${UID}" -g "${GID}" python \
&& chown python:python -R /app
COPY --from=ghcr.io/astral-sh/uv:0.6.9 /uv /uvx /usr/local/bin/
USER python
COPY --chown=python:python pyproject.toml uv.lock* ./
COPY --chown=python:python bin/ ./bin
ENV PYTHONUNBUFFERED="true" \
PYTHONPATH="." \
UV_COMPILE_BYTECODE=1 \
UV_PROJECT_ENVIRONMENT="/home/python/.local" \
PATH="${PATH}:/home/python/.local/bin" \
USER="python"
RUN chmod 0755 bin/* && bin/uv-install
CMD ["bash"]
###############################################################################
FROM python:3.13.2-slim-bookworm AS app
LABEL maintainer="Nick Janetakis <[email protected]>"
WORKDIR /app
ARG UID=1000
ARG GID=1000
RUN apt-get update \
&& apt-get install -y --no-install-recommends curl libpq-dev \
&& rm -rf /var/lib/apt/lists/* /usr/share/doc /usr/share/man \
&& apt-get clean \
&& groupadd -g "${GID}" python \
&& useradd --create-home --no-log-init -u "${UID}" -g "${GID}" python \
&& mkdir -p /public_collected public \
&& chown python:python -R /public_collected /app
USER python
ARG DEBUG="false"
ENV DEBUG="${DEBUG}" \
PYTHONUNBUFFERED="true" \
PYTHONPATH="." \
UV_PROJECT_ENVIRONMENT="/home/python/.local" \
PATH="${PATH}:/home/python/.local/bin" \
USER="python"
COPY --chown=python:python --from=assets /app/public /public
COPY --chown=python:python --from=app-build /home/python/.local /home/python/.local
COPY --from=app-build /usr/local/bin/uv /usr/local/bin/uvx /usr/local/bin/
COPY --chown=python:python . .
WORKDIR /app/src
RUN if [ "${DEBUG}" = "false" ]; then \
SECRET_KEY=dummyvalue python3 manage.py collectstatic --no-input; \
else mkdir -p /app/public_collected; fi
ENTRYPOINT ["/app/bin/docker-entrypoint-web"]
EXPOSE 8000
CMD ["gunicorn", "-c", "python:config.gunicorn", "config.wsgi"]