alessandro trinca tornidor
ci: change python:3.12 image from bookworm to trixie, remove zlib1g package installation
64ae857
| # Include global ARGs at the dockerfile top | |
| ARG ARCH="x86_64" | |
| ARG WORKDIR_ROOT="/var/task" | |
| ARG FASTAPI_STATIC="${WORKDIR_ROOT}/static" | |
| ARG PYTHONPATH="${WORKDIR_ROOT}:${PYTHONPATH}:/usr/local/lib/python3/dist-packages" | |
| ARG POETRY_NO_INTERACTION=1 | |
| ARG POETRY_VIRTUALENVS_IN_PROJECT=1 | |
| ARG POETRY_VIRTUALENVS_CREATE=1 | |
| ARG POETRY_CACHE_DIR=/tmp/poetry_cache | |
| ARG HOME_USER=/home/python | |
| FROM python:3.12-trixie AS builder_global | |
| ARG ARCH | |
| ARG WORKDIR_ROOT | |
| ARG PYTHONPATH | |
| ARG POETRY_NO_INTERACTION | |
| ARG POETRY_VIRTUALENVS_IN_PROJECT | |
| ARG POETRY_VIRTUALENVS_CREATE | |
| ARG POETRY_CACHE_DIR | |
| RUN echo "ARCH: $ARCH ..." | |
| RUN echo "ARG POETRY_CACHE_DIR: ${POETRY_CACHE_DIR} ..." | |
| RUN echo "ARG PYTHONPATH: $PYTHONPATH ..." | |
| RUN echo "arg dep:" | |
| RUN groupadd -g 999 python && useradd -r -u 999 -g python python | |
| # Set working directory to function root directory | |
| RUN mkdir ${WORKDIR_ROOT} && chown python:python ${WORKDIR_ROOT} | |
| WORKDIR ${WORKDIR_ROOT} | |
| COPY --chown=python:python requirements_poetry.txt pyproject.toml poetry.lock README.md ${WORKDIR_ROOT}/ | |
| # avoid segment-geospatial exception caused by missing libGL.so.1 library | |
| RUN apt update && apt install -y libgl1 curl python3-pip libexpat1 && apt clean | |
| # poetry installation path is NOT within ${WORKDIR_ROOT}: not needed for runtime docker image | |
| RUN python -m pip install -r ${WORKDIR_ROOT}/requirements_poetry.txt | |
| RUN which poetry && poetry --version && poetry config --list | |
| RUN poetry config virtualenvs.path ${WORKDIR_ROOT} | |
| RUN echo "# poetry config --list #" && poetry config --list | |
| RUN poetry install --no-cache | |
| FROM python:3.12-slim-trixie AS runtime | |
| ARG ARCH | |
| ARG WORKDIR_ROOT | |
| ARG HOME_USER | |
| ENV VIRTUAL_ENV=${WORKDIR_ROOT}/.venv PATH="${WORKDIR_ROOT}/.venv/bin:$PATH" | |
| # workaround for missing /home folder | |
| RUN mkdir -p /home | |
| RUN groupadd -g 999 python && useradd -r -u 999 -g python python | |
| RUN ls -l /home | |
| RUN ls -ld /home | |
| RUN mkdir -p ${HOME_USER} ${HOME_USER}/.config && chown python:python -R ${HOME_USER} | |
| RUN ls -ld ${HOME_USER} | |
| RUN ls -lA ${HOME_USER} | |
| RUN mkdir ${WORKDIR_ROOT} && chown python:python ${WORKDIR_ROOT} | |
| RUN echo "RUNTIME: check libexpat.so*, libGL.so* before start" && ls -l /usr/lib/${ARCH}-linux-gnu/libexpat.so* /usr/lib/${ARCH}-linux-gnu/libGL.so* || echo "libraries libexpat.so*, libGL.so* not found" | |
| COPY --from=builder_global /usr/lib/${ARCH}-linux-gnu/libGL.so* /usr/lib/${ARCH}-linux-gnu/ | |
| COPY --from=builder_global /lib/${ARCH}-linux-gnu/libexpat.so* /lib/${ARCH}-linux-gnu/ | |
| RUN echo "RUNTIME: check libexpat.so*, libGL.so* after copy" && ls -l /usr/lib/${ARCH}-linux-gnu/libexpat.so* /usr/lib/${ARCH}-linux-gnu/libGL.so* | |
| COPY --from=builder_global ${WORKDIR_ROOT}/.venv ${WORKDIR_ROOT}/.venv | |
| RUN . ${WORKDIR_ROOT}/.venv && which python && pip list | |
| RUN echo "new WORKDIR_ROOT after hidden venv copy => ${WORKDIR_ROOT}" | |
| RUN ls -ld ${WORKDIR_ROOT}/ | |
| RUN ls -lA ${WORKDIR_ROOT}/ | |
| ### conditional section | |
| FROM node:22-slim AS node_fastapi | |
| ENV PNPM_HOME="/pnpm" | |
| ENV PATH="$PNPM_HOME:$PATH" | |
| RUN corepack enable | |
| COPY ./static /appnode | |
| WORKDIR /appnode | |
| FROM node_fastapi AS node_prod_deps | |
| RUN --mount=type=cache,id=pnpm,target=/pnpm/store; pnpm install --prod --frozen-lockfile | |
| # here multiple conditions concatenated to avoid failing on check | |
| RUN if [ ! -d /appnode/node_modules ]; then echo "no node_modules folder" && exit 1; fi | |
| FROM node_fastapi AS node_build | |
| ARG VITE__MAP_DESCRIPTION | |
| ARG VITE__SAMGIS_SPACE | |
| ENV VITE__INDEX_URL="/" | |
| RUN echo "VITE__MAP_DESCRIPTION:" ${VITE__MAP_DESCRIPTION} | |
| RUN echo "VITE__SAMGIS_SPACE:" ${VITE__SAMGIS_SPACE} | |
| RUN echo "VITE__INDEX_URL:" ${VITE__INDEX_URL} | |
| RUN --mount=type=cache,id=pnpm,target=/pnpm/store; pnpm install --frozen-lockfile | |
| RUN --mount=type=cache,id=pnpm,target=/pnpm/store; pnpm build | |
| RUN --mount=type=cache,id=pnpm,target=/pnpm/store; pnpm dlx @tailwindcss/cli -i /appnode/src/input.css -o /appnode/dist/output.css | |
| RUN if [ ! -d /appnode/dist ]; then echo "no dist folder" && exit 1; fi | |
| FROM runtime | |
| ARG FASTAPI_STATIC | |
| RUN mkdir ${FASTAPI_STATIC} && chown python:python ${FASTAPI_STATIC} | |
| COPY --chown=python:python ./sam-quantized ${WORKDIR_ROOT}/sam-quantized | |
| COPY --chown=python:python --from=node_prod_deps /appnode/node_modules* ${FASTAPI_STATIC}/node_modules | |
| COPY --chown=python:python --from=node_build /appnode/dist* ${FASTAPI_STATIC}/dist | |
| COPY --chown=python:python static/list_files.html ${FASTAPI_STATIC}/ | |
| RUN ls -l ${FASTAPI_STATIC}/ | |