Spaces:
Runtime error
Runtime error
Create prod.Dockerfile
Browse files- prod.Dockerfile +170 -0
prod.Dockerfile
ADDED
@@ -0,0 +1,170 @@
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
1 |
+
FROM node:19-alpine AS base
|
2 |
+
|
3 |
+
# Step 1. Rebuild the source code only when needed
|
4 |
+
FROM base AS builder
|
5 |
+
|
6 |
+
RUN apk update && apk add --no-cache openssl
|
7 |
+
|
8 |
+
WORKDIR /app
|
9 |
+
|
10 |
+
# Install dependencies based on the preferred package manager
|
11 |
+
COPY package.json yarn.lock* package-lock.json* pnpm-lock.yaml* ./
|
12 |
+
|
13 |
+
|
14 |
+
# Prevent Husky errors by disabling the `prepare` script
|
15 |
+
RUN npm pkg set scripts.prepare="exit 0"
|
16 |
+
|
17 |
+
# set npm registry
|
18 |
+
RUN npm config set registry 'https://registry.npmmirror.com/'
|
19 |
+
|
20 |
+
# Omit --production flag for TypeScript devDependencies
|
21 |
+
RUN \
|
22 |
+
if [ -f yarn.lock ]; then yarn --frozen-lockfile; \
|
23 |
+
elif [ -f package-lock.json ]; then npm ci; \
|
24 |
+
elif [ -f pnpm-lock.yaml ]; then yarn global add pnpm && pnpm i; \
|
25 |
+
# Allow install without lockfile, so example works even without Node.js installed locally
|
26 |
+
else echo "Warning: Lockfile not found. It is recommended to commit lockfiles to version control." && yarn install; \
|
27 |
+
fi
|
28 |
+
|
29 |
+
# Copy the rest of the application code
|
30 |
+
COPY . .
|
31 |
+
|
32 |
+
# Ensure the app module is copied to the correct location
|
33 |
+
COPY app.py /app/app.py
|
34 |
+
|
35 |
+
# Environment variables must be present at build time
|
36 |
+
# https://github.com/vercel/next.js/discussions/14030
|
37 |
+
|
38 |
+
ARG NEXTAUTH_SECRET
|
39 |
+
ENV NEXTAUTH_SECRET=${NEXTAUTH_SECRET:-"$(openssl rand -base64 32)"}
|
40 |
+
|
41 |
+
|
42 |
+
ARG DATABASE_URL
|
43 |
+
ENV DATABASE_URL=$DATABASE_URL
|
44 |
+
|
45 |
+
|
46 |
+
ARG NEXTAUTH_URL
|
47 |
+
ENV NEXTAUTH_URL=$NEXTAUTH_URL
|
48 |
+
|
49 |
+
ARG OPENAI_API_KEY
|
50 |
+
ENV OPENAI_API_KEY=$OPENAI_API_KEY
|
51 |
+
|
52 |
+
ARG NEXT_PUBLIC_WEB_SEARCH_ENABLED
|
53 |
+
ENV NEXT_PUBLIC_WEB_SEARCH_ENABLED=$NEXT_PUBLIC_WEB_SEARCH_ENABLED
|
54 |
+
|
55 |
+
ARG SERP_API_KEY
|
56 |
+
ENV SERP_API_KEY=$SERP_API_KEY
|
57 |
+
|
58 |
+
ARG NEXT_PUBLIC_GUEST_KEY
|
59 |
+
ENV NEXT_PUBLIC_GUEST_KEY=$NEXT_PUBLIC_GUEST_KEY
|
60 |
+
|
61 |
+
ARG NEXT_PUBLIC_FF_AUTH_ENABLED
|
62 |
+
ENV NEXT_PUBLIC_FF_AUTH_ENABLED=$NEXT_PUBLIC_FF_AUTH_ENABLED
|
63 |
+
|
64 |
+
ARG GOOGLE_CLIENT_ID
|
65 |
+
ENV GOOGLE_CLIENT_ID=$GOOGLE_CLIENT_ID
|
66 |
+
|
67 |
+
ARG GOOGLE_CLIENT_SECRET
|
68 |
+
ENV GOOGLE_CLIENT_SECRET=$GOOGLE_CLIENT_SECRET
|
69 |
+
|
70 |
+
ARG GITHUB_CLIENT_ID
|
71 |
+
ENV GITHUB_CLIENT_ID=$GITHUB_CLIENT_ID
|
72 |
+
|
73 |
+
ARG GITHUB_CLIENT_SECRET
|
74 |
+
ENV GITHUB_CLIENT_SECRET=$GITHUB_CLIENT_SECRET
|
75 |
+
|
76 |
+
ARG DISCORD_CLIENT_ID
|
77 |
+
ENV DISCORD_CLIENT_ID=$DISCORD_CLIENT_ID
|
78 |
+
|
79 |
+
# Next.js collects completely anonymous telemetry data about general usage. Learn more here: https://nextjs.org/telemetry
|
80 |
+
# Uncomment the following line to disable telemetry at build time
|
81 |
+
# ENV NEXT_TELEMETRY_DISABLED 1
|
82 |
+
|
83 |
+
|
84 |
+
# Build Next.js based on the preferred package manager
|
85 |
+
RUN \
|
86 |
+
if [ -f yarn.lock ]; then yarn build; \
|
87 |
+
elif [ -f package-lock.json ]; then npm run build; \
|
88 |
+
elif [ -f pnpm-lock.yaml ]; then pnpm build; \
|
89 |
+
else yarn build; \
|
90 |
+
fi
|
91 |
+
|
92 |
+
# Note: It is not necessary to add an intermediate step that does a full copy of `node_modules` here
|
93 |
+
|
94 |
+
# Step 2. Production image, copy all the files and run next
|
95 |
+
FROM base AS runner
|
96 |
+
|
97 |
+
WORKDIR /app
|
98 |
+
|
99 |
+
# Don't run production as root
|
100 |
+
RUN addgroup --system --gid 1001 nodejs
|
101 |
+
RUN adduser --system --uid 1001 nextjs
|
102 |
+
USER nextjs
|
103 |
+
|
104 |
+
COPY --from=builder /app/public ./public
|
105 |
+
COPY --from=builder /app/entrypoint.sh ./
|
106 |
+
COPY --from=builder --chown=nextjs:nodejs /app/prisma ./prisma
|
107 |
+
|
108 |
+
|
109 |
+
|
110 |
+
# Automatically leverage output traces to reduce image size
|
111 |
+
# https://nextjs.org/docs/advanced-features/output-file-tracing
|
112 |
+
COPY --from=builder --chown=nextjs:nodejs /app/.next/standalone ./
|
113 |
+
COPY --from=builder --chown=nextjs:nodejs /app/.next/static ./.next/static
|
114 |
+
|
115 |
+
# Ensure the app module is in the Python path
|
116 |
+
ENV PYTHONPATH="/app:${PYTHONPATH}"
|
117 |
+
|
118 |
+
# Environment variables must be redefined at run time
|
119 |
+
|
120 |
+
ARG NEXTAUTH_SECRET
|
121 |
+
ENV NEXTAUTH_SECRET=${NEXTAUTH_SECRET:-"$(openssl rand -base64 32)"}
|
122 |
+
|
123 |
+
|
124 |
+
|
125 |
+
ARG DATABASE_URL
|
126 |
+
ENV DATABASE_URL=$DATABASE_URL
|
127 |
+
|
128 |
+
|
129 |
+
ARG NEXTAUTH_URL
|
130 |
+
ENV NEXTAUTH_URL=$NEXTAUTH_URL
|
131 |
+
|
132 |
+
|
133 |
+
ARG OPENAI_API_KEY
|
134 |
+
ENV OPENAI_API_KEY=$OPENAI_API_KEY
|
135 |
+
|
136 |
+
ARG NEXT_PUBLIC_WEB_SEARCH_ENABLED
|
137 |
+
ENV NEXT_PUBLIC_WEB_SEARCH_ENABLED=$NEXT_PUBLIC_WEB_SEARCH_ENABLED
|
138 |
+
|
139 |
+
ARG SERP_API_KEY
|
140 |
+
ENV SERP_API_KEY=$SERP_API_KEY
|
141 |
+
|
142 |
+
ARG NEXT_PUBLIC_GUEST_KEY
|
143 |
+
ENV NEXT_PUBLIC_GUEST_KEY=$NEXT_PUBLIC_GUEST_KEY
|
144 |
+
|
145 |
+
ARG NEXT_PUBLIC_FF_AUTH_ENABLED
|
146 |
+
ENV NEXT_PUBLIC_FF_AUTH_ENABLED=$NEXT_PUBLIC_FF_AUTH_ENABLED
|
147 |
+
|
148 |
+
ARG GOOGLE_CLIENT_ID
|
149 |
+
ENV GOOGLE_CLIENT_ID=$GOOGLE_CLIENT_ID
|
150 |
+
|
151 |
+
ARG GOOGLE_CLIENT_SECRET
|
152 |
+
ENV GOOGLE_CLIENT_SECRET=$GOOGLE_CLIENT_SECRET
|
153 |
+
|
154 |
+
ARG GITHUB_CLIENT_ID
|
155 |
+
ENV GITHUB_CLIENT_ID=$GITHUB_CLIENT_ID
|
156 |
+
|
157 |
+
ARG GITHUB_CLIENT_SECRET
|
158 |
+
ENV GITHUB_CLIENT_SECRET=$GITHUB_CLIENT_SECRET
|
159 |
+
|
160 |
+
ARG DISCORD_CLIENT_ID
|
161 |
+
ENV DISCORD_CLIENT_ID=$DISCORD_CLIENT_ID
|
162 |
+
|
163 |
+
# Uncomment the following line to disable telemetry at run time
|
164 |
+
# ENV NEXT_TELEMETRY_DISABLED 1
|
165 |
+
|
166 |
+
# Note: Don't expose ports here, Compose will handle that for us
|
167 |
+
|
168 |
+
ENTRYPOINT ["sh", "entrypoint.sh"]
|
169 |
+
|
170 |
+
CMD ["node", "server.js"]
|