-
Notifications
You must be signed in to change notification settings - Fork 264
/
Dockerfile
80 lines (55 loc) · 2.11 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
FROM node:20.6.1-bookworm-slim AS assets
LABEL maintainer="Nick Janetakis <[email protected]>"
WORKDIR /app/assets
ARG UID=1000
ARG GID=1000
RUN apt-get update \
&& apt-get install -y --no-install-recommends build-essential \
&& rm -rf /var/lib/apt/lists/* /usr/share/doc /usr/share/man \
&& apt-get clean \
&& groupmod -g "${GID}" node && usermod -u "${UID}" -g "${GID}" node \
&& mkdir -p /node_modules && chown node:node -R /node_modules /app
USER node
COPY --chown=node:node assets/package.json assets/*yarn* ./
RUN yarn install && yarn cache clean
ARG NODE_ENV="production"
ENV NODE_ENV="${NODE_ENV}" \
PATH="${PATH}:/node_modules/.bin" \
USER="node"
COPY --chown=node:node . ..
RUN if [ "${NODE_ENV}" != "development" ]; then \
../run yarn:build:js && ../run yarn:build:css; else mkdir -p /app/public; fi
CMD ["bash"]
###############################################################################
FROM python:3.13.0-slim-bookworm AS app
LABEL maintainer="Nick Janetakis <[email protected]>"
WORKDIR /app
ARG UID=1000
ARG GID=1000
RUN apt-get update \
&& apt-get install -y --no-install-recommends build-essential curl libpq-dev \
&& rm -rf /var/lib/apt/lists/* /usr/share/doc /usr/share/man \
&& apt-get clean \
&& groupadd -g "${GID}" python \
&& useradd --create-home --no-log-init -u "${UID}" -g "${GID}" python \
&& mkdir -p /public_collected public \
&& chown python:python -R /public_collected /app
USER python
COPY --chown=python:python requirements*.txt ./
COPY --chown=python:python bin/ ./bin
RUN chmod 0755 bin/* && bin/pip3-install
ARG DEBUG="false"
ENV DEBUG="${DEBUG}" \
PYTHONUNBUFFERED="true" \
PYTHONPATH="." \
PATH="${PATH}:/home/python/.local/bin" \
USER="python"
COPY --chown=python:python --from=assets /app/public /public
COPY --chown=python:python . .
WORKDIR /app/src
RUN if [ "${DEBUG}" = "false" ]; then \
SECRET_KEY=dummyvalue python3 manage.py collectstatic --no-input; \
else mkdir -p /app/public_collected; fi
ENTRYPOINT ["/app/bin/docker-entrypoint-web"]
EXPOSE 8000
CMD ["gunicorn", "-c", "python:config.gunicorn", "config.wsgi"]