57 lines
1.8 KiB
Docker
57 lines
1.8 KiB
Docker
# An example using multi-stage image builds to create a final image without uv.
|
|
|
|
# First, build the application in the `/app` directory.
|
|
# See `Dockerfile` for details.
|
|
FROM ghcr.io/astral-sh/uv:python3.13-bookworm-slim AS builder
|
|
ENV UV_COMPILE_BYTECODE=1 \
|
|
UV_LINK_MODE=copy
|
|
|
|
# Disable Python downloads, because we want to use the system interpreter
|
|
# across both images. If using a managed Python version, it needs to be
|
|
# copied from the build image into the final image; see `standalone.Dockerfile`
|
|
# for an example.
|
|
ENV UV_PYTHON_DOWNLOADS=0
|
|
|
|
WORKDIR /app
|
|
RUN --mount=type=cache,target=/root/.cache/uv \
|
|
--mount=type=bind,source=uv.lock,target=uv.lock \
|
|
--mount=type=bind,source=pyproject.toml,target=pyproject.toml \
|
|
uv sync --locked --no-install-project --no-dev
|
|
|
|
|
|
COPY uv.lock pyproject.toml README.md /app/
|
|
COPY src /app
|
|
COPY migrations ./migrations
|
|
COPY entrypoint.sh alembic.ini /app/
|
|
RUN chmod +x /app/entrypoint.sh
|
|
RUN --mount=type=cache,target=/root/.cache/uv \
|
|
uv sync --locked --no-dev --no-editable
|
|
|
|
|
|
FROM python:3.13-slim-bookworm
|
|
|
|
# Setup a non-root user
|
|
RUN groupadd -g 1000 appuser && \
|
|
useradd -u 1000 -g appuser -m -d /app -s /sbin/nologin appuser
|
|
|
|
RUN apt-get update && apt-get install -y \
|
|
gosu \
|
|
curl \
|
|
&& rm -rf /var/lib/apt/lists/*
|
|
|
|
# Copy the application from the builder
|
|
COPY --from=builder --chown=appuser:appuser /app /app
|
|
|
|
# Place executables in the environment at the front of the path
|
|
ENV PATH="/app/.venv/bin:$PATH"
|
|
|
|
HEALTHCHECK --interval=10s --timeout=3s --retries=5 \
|
|
CMD curl -f http://localhost:8000/healthcheck || exit 1
|
|
|
|
# Use `/app` as the working directory
|
|
WORKDIR /app
|
|
|
|
ENTRYPOINT [ "/app/entrypoint.sh" ]
|
|
|
|
# Run the web application
|
|
CMD ["litestar", "--app-dir", "chitai", "run", "--host", "0.0.0.0", "--port", "8000"] |