nexus-ai/Dockerfile at main · vtex/nexus-ai · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
# syntax = docker/dockerfile:1

ARG PYTHON_VERSION="3.10"
ARG DEBIAN_VERSION="bookworm"
ARG POETRY_VERSION="1.7.0"

ARG BUILD_DEPS="\
  gcc bzip2 git curl libpq-dev gettext \
  libgdal-dev python3-cffi python3-gdal \
  python3-dev default-libmysqlclient-dev build-essential \
  build-essential \
  git cmake \
  autoconf pkg-config libtool automake \
  libmariadb-dev"
# default-libmysqlclient-dev
ARG RUNTIME_DEPS="\
  tzdata \
  postgresql-client \
  netcat-traditional \
  curl \
  gosu"
#libmariadb3 \

FROM python:${PYTHON_VERSION}-slim-${DEBIAN_VERSION} as base

ARG POETRY_VERSION
ARG NODE_VERSION

ENV PYTHONUNBUFFERED=1 \
  PYTHONDONTWRITEBYTECODE=1 \
  DEBIAN_FRONTEND=noninteractive \
  APP_NAME=nexus-ai \
  APP_PATH=/app \
  APP_USER=app_user \
  APP_GROUP=app_group \
  PIP_DISABLE_PIP_VERSION_CHECK=1 \
  PATH="${PATH}:/install/bin"

LABEL app=${VERSION} \
  os="debian" \
  os.version="12" \
  name="Nexus-ai" \
  description="APP image" \
  maintainer="https://github.com/weni-ai" \
  org.opencontainers.image.url="https://github.com/weni-ai/nexus-ai" \
  org.opencontainers.image.documentation="https://github.com/weni-ai/nexus-ai" \
  org.opencontainers.image.source="https://github.com/weni-ai/nexus-ai" \
  org.opencontainers.image.title="Nexus-ai"

RUN addgroup --gid 1999 "${APP_GROUP}" \
  && useradd --system -m -d /app -u 1999 -g 1999 "${APP_USER}"

WORKDIR "${APP_PATH}"

RUN rm -f /etc/apt/apt.conf.d/docker-clean; echo 'Binary::apt::APT::Keep-Downloaded-Packages "true";' > /etc/apt/apt.conf.d/keep-cache

FROM base as build-poetry

ARG POETRY_VERSION

COPY pyproject.toml ./
COPY poetry.lock ./

RUN --mount=type=cache,mode=0755,target=/pip_cache,id=pip pip install --cache-dir /pip_cache -U poetry=="${POETRY_VERSION}" \
  && poetry export --without-hashes --output requirements.txt

FROM base as build

ARG BUILD_DEPS

RUN --mount=type=cache,target=/var/cache/apt,sharing=locked \
  --mount=type=cache,target=/var/lib/apt,sharing=locked \
  apt-get update \
  && apt-get install --no-install-recommends --no-install-suggests -y ${BUILD_DEPS}

COPY --from=build-poetry /app/requirements.txt /tmp/dep/
RUN --mount=type=cache,mode=0755,target=/pip_cache,id=pip pip install --cache-dir /pip_cache --prefix=/install -r /tmp/dep/requirements.txt
FROM base

ARG BUILD_DEPS
ARG RUNTIME_DEPS

RUN --mount=type=cache,target=/var/cache/apt,sharing=locked \
--mount=type=cache,target=/var/lib/apt,sharing=locked \
apt-get update \
&& SUDO_FORCE_REMOVE=yes apt-get remove --purge -y ${BUILD_DEPS} \
&& apt-get autoremove -y \
&& apt-get install -y --no-install-recommends ${RUNTIME_DEPS} \
&& rm -rf /usr/share/man /usr/share/doc

RUN apt update && apt install libglib2.0-0 \
libnss3 libnspr4 libdbus-1-3 libatk1.0-0 \
libatk-bridge2.0-0 libcups2 libdrm2 libxcb1 \
libxkbcommon0 libatspi2.0-0 libx11-6 libxcomposite1 \
libxdamage1 libxext6 libxfixes3 libxrandr2 \
libgbm1 libpango-1.0-0 libcairo2 libasound2 -y

COPY --from=build /install /usr/local
COPY --chown=${APP_USER}:${APP_GROUP} . ${APP_PATH}
RUN pip install html2text==2024.2.26

USER "${APP_USER}:${APP_GROUP}"
EXPOSE 8000
COPY entrypoint.sh /entrypoint.sh
ENTRYPOINT ["bash", "./entrypoint.sh"]
RUN playwright install
CMD ["start"]