mirror of https://git.sr.ht/~tsileo/microblog.pub
29 lines
927 B
Docker
29 lines
927 B
Docker
|
FROM python:3.10-slim as python-base
|
||
|
ENV PYTHONUNBUFFERED=1 \
|
||
|
PYTHONDONTWRITEBYTECODE=1 \
|
||
|
POETRY_HOME="/opt/poetry" \
|
||
|
POETRY_VIRTUALENVS_IN_PROJECT=true \
|
||
|
POETRY_NO_INTERACTION=1 \
|
||
|
PYSETUP_PATH="/opt/venv" \
|
||
|
VENV_PATH="/opt/venv/.venv"
|
||
|
ENV PATH="$POETRY_HOME/bin:$VENV_PATH/bin:$PATH"
|
||
|
|
||
|
FROM python-base as builder-base
|
||
|
RUN apt-get update
|
||
|
RUN apt-get install -y --no-install-recommends curl build-essential gcc
|
||
|
RUN curl -sSL https://install.python-poetry.org | python3 -
|
||
|
WORKDIR $PYSETUP_PATH
|
||
|
COPY poetry.lock pyproject.toml ./
|
||
|
RUN poetry install --no-dev
|
||
|
|
||
|
FROM python-base as production
|
||
|
RUN groupadd --gid 1000 microblogpub \
|
||
|
&& useradd --uid 1000 --gid microblogpub --shell /bin/bash microblogpub
|
||
|
COPY --from=builder-base $PYSETUP_PATH $PYSETUP_PATH
|
||
|
COPY . /app/
|
||
|
RUN chown -R 1000:1000 /app
|
||
|
USER microblogpub
|
||
|
WORKDIR /app
|
||
|
EXPOSE 8000
|
||
|
CMD ["supervisord", "-n", "-c", "misc/docker-supervisord.conf"]
|