-
Notifications
You must be signed in to change notification settings - Fork 3
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Update values files and githuba action env vars
- Loading branch information
Showing
6 changed files
with
338 additions
and
140 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,34 +1,102 @@ | ||
FROM python:3.7-slim | ||
|
||
RUN apt update && \ | ||
apt install -y git | ||
|
||
ENV workdir /usr/src/app | ||
|
||
RUN git clone https://github.com/OpenHistoricalMap/tasking-manager.git $workdir | ||
# Commits on 27 April, 2022 | ||
RUN cd $workdir && git checkout -f f0df07174f4014365220af09187b5f941f9770b0 | ||
WORKDIR $workdir | ||
|
||
# Setup backend dependencies | ||
RUN apt update && apt install -y \ | ||
gcc \ | ||
g++ \ | ||
make \ | ||
libffi-dev \ | ||
python3-dev \ | ||
libpq-dev \ | ||
proj-bin && \ | ||
apt clean && \ | ||
rm -rf /var/lib/apt/lists/* | ||
|
||
RUN pip install --upgrade pip | ||
RUN pip install -r requirements.txt | ||
RUN pip install apscheduler==3.7.0 | ||
RUN pip install --upgrade markdown | ||
|
||
## INITIALIZATION | ||
EXPOSE 5000 | ||
CMD ["gunicorn", "-b", "0.0.0.0:5000", "--worker-class", "gevent", "--workers", "3", \ | ||
"--threads", "3", "--timeout", "179", "manage:application", "&"] | ||
|
||
ARG DEBIAN_IMG_TAG=slim-bookworm | ||
ARG PYTHON_IMG_TAG=3.10 | ||
|
||
FROM docker.io/python:${PYTHON_IMG_TAG}-${DEBIAN_IMG_TAG} as base | ||
ARG APP_VERSION=0.1.0 | ||
ARG DOCKERFILE_VERSION=0.5.0 | ||
ARG ALPINE_IMG_TAG | ||
ARG PYTHON_IMG_TAG | ||
ARG [email protected] | ||
LABEL org.hotosm.tasks.app-version="${APP_VERSION}" \ | ||
org.hotosm.tasks.debian-img-tag="${DEBIAN_IMG_TAG}" \ | ||
org.hotosm.tasks.python-img-tag="${PYTHON_IMG_TAG}" \ | ||
org.hotosm.tasks.dockerfile-version="${DOCKERFILE_VERSION}" \ | ||
org.hotosm.tasks.maintainer="${MAINTAINER}" \ | ||
org.hotosm.tasks.api-port="5000" | ||
# Fix timezone (do not change - see issue #3638) | ||
ENV TZ UTC | ||
# Add non-root user, permissions, init log dir | ||
RUN useradd --uid 9000 --create-home --home /home/appuser --shell /bin/false appuser | ||
|
||
FROM base as extract-deps | ||
RUN pip install --no-cache-dir --upgrade pip | ||
WORKDIR /opt/python | ||
COPY pyproject.toml pdm.lock README.md /opt/python/ | ||
RUN pip install --no-cache-dir pdm==2.7.4 | ||
RUN pdm export --prod --without-hashes > requirements.txt | ||
|
||
|
||
|
||
FROM base as build | ||
RUN pip install --no-cache-dir --upgrade pip | ||
WORKDIR /opt/python | ||
# Setup backend build-time dependencies | ||
RUN apt-get update | ||
RUN apt-get install --no-install-recommends -y build-essential | ||
RUN apt-get install --no-install-recommends -y \ | ||
postgresql-server-dev-15 \ | ||
python3-dev \ | ||
libffi-dev \ | ||
libgeos-dev | ||
# Setup backend Python dependencies | ||
COPY --from=extract-deps \ | ||
/opt/python/requirements.txt /opt/python/ | ||
USER appuser:appuser | ||
RUN pip install --user --no-warn-script-location \ | ||
--no-cache-dir -r /opt/python/requirements.txt | ||
|
||
|
||
|
||
FROM base as runtime | ||
ARG PYTHON_IMG_TAG | ||
WORKDIR /usr/src/app | ||
ENV PYTHONDONTWRITEBYTECODE=1 \ | ||
PYTHONUNBUFFERED=1 \ | ||
PYTHONFAULTHANDLER=1 \ | ||
PATH="/home/appuser/.local/bin:$PATH" \ | ||
PYTHON_LIB="/home/appuser/.local/lib/python$PYTHON_IMG_TAG/site-packages" \ | ||
SSL_CERT_FILE=/etc/ssl/certs/ca-certificates.crt \ | ||
REQUESTS_CA_BUNDLE=/etc/ssl/certs/ca-certificates.crt | ||
# Setup backend runtime dependencies | ||
RUN apt-get update && \ | ||
apt-get install --no-install-recommends -y \ | ||
postgresql-client git libgeos3.11.1 proj-bin && \ | ||
apt-get clean && rm -rf /var/lib/apt/lists/* | ||
COPY --from=build \ | ||
/home/appuser/.local \ | ||
/home/appuser/.local | ||
USER appuser:appuser | ||
|
||
# Clone the repository as root to avoid permission issues | ||
USER root | ||
RUN git clone https://github.com/OpenHistoricalMap/tasking-manager.git /usr/src/app && \ | ||
chown -R appuser:appuser /usr/src/app | ||
|
||
# Switch back to non-root user | ||
USER appuser:appuser | ||
|
||
RUN cd /usr/src/app && git checkout -f 321a9c19e07576a3c3c2eff3df14ba48c7325837 | ||
|
||
FROM runtime as debug | ||
RUN pip install --user --no-warn-script-location \ | ||
--no-cache-dir debugpy==1.6.7 | ||
EXPOSE 5678/tcp | ||
CMD ["python", "-m", "debugpy", "--wait-for-client", "--listen", "0.0.0.0:5678", \ | ||
"-m", "gunicorn", "-c", "python:backend.gunicorn", "manage:application", \ | ||
"--reload", "--log-level", "error"] | ||
|
||
|
||
|
||
FROM runtime as prod | ||
USER root | ||
RUN apt-get update && \ | ||
apt-get install -y curl && \ | ||
apt-get clean && \ | ||
rm -rf /var/lib/apt/lists/* | ||
# Pre-compile packages to .pyc (init speed gains) | ||
RUN python -c "import compileall; compileall.compile_path(maxlevels=10, quiet=1)" | ||
RUN python -m compileall . | ||
EXPOSE 5000/tcp | ||
USER appuser:appuser | ||
CMD ["gunicorn", "-c", "python:backend.gunicorn", "manage:application", \ | ||
"--workers", "1", "--log-level", "error"] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,4 +1,4 @@ | ||
dependencies: | ||
- name: osm-seed | ||
version: '0.1.0-n797.h36f9725' | ||
version: '0.1.0-n798.h6499ceb' | ||
repository: https://devseed.com/osm-seed-chart/ |
Oops, something went wrong.