dia-gov commited on
Commit
dbdd795
·
verified ·
1 Parent(s): cef0019

Create prod.Dockerfile

Browse files
Files changed (1) hide show
  1. prod.Dockerfile +170 -0
prod.Dockerfile ADDED
@@ -0,0 +1,170 @@
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
1
+ FROM node:19-alpine AS base
2
+
3
+ # Step 1. Rebuild the source code only when needed
4
+ FROM base AS builder
5
+
6
+ RUN apk update && apk add --no-cache openssl
7
+
8
+ WORKDIR /app
9
+
10
+ # Install dependencies based on the preferred package manager
11
+ COPY package.json yarn.lock* package-lock.json* pnpm-lock.yaml* ./
12
+
13
+
14
+ # Prevent Husky errors by disabling the `prepare` script
15
+ RUN npm pkg set scripts.prepare="exit 0"
16
+
17
+ # set npm registry
18
+ RUN npm config set registry 'https://registry.npmmirror.com/'
19
+
20
+ # Omit --production flag for TypeScript devDependencies
21
+ RUN \
22
+ if [ -f yarn.lock ]; then yarn --frozen-lockfile; \
23
+ elif [ -f package-lock.json ]; then npm ci; \
24
+ elif [ -f pnpm-lock.yaml ]; then yarn global add pnpm && pnpm i; \
25
+ # Allow install without lockfile, so example works even without Node.js installed locally
26
+ else echo "Warning: Lockfile not found. It is recommended to commit lockfiles to version control." && yarn install; \
27
+ fi
28
+
29
+ # Copy the rest of the application code
30
+ COPY . .
31
+
32
+ # Ensure the app module is copied to the correct location
33
+ COPY app.py /app/app.py
34
+
35
+ # Environment variables must be present at build time
36
+ # https://github.com/vercel/next.js/discussions/14030
37
+
38
+ ARG NEXTAUTH_SECRET
39
+ ENV NEXTAUTH_SECRET=${NEXTAUTH_SECRET:-"$(openssl rand -base64 32)"}
40
+
41
+
42
+ ARG DATABASE_URL
43
+ ENV DATABASE_URL=$DATABASE_URL
44
+
45
+
46
+ ARG NEXTAUTH_URL
47
+ ENV NEXTAUTH_URL=$NEXTAUTH_URL
48
+
49
+ ARG OPENAI_API_KEY
50
+ ENV OPENAI_API_KEY=$OPENAI_API_KEY
51
+
52
+ ARG NEXT_PUBLIC_WEB_SEARCH_ENABLED
53
+ ENV NEXT_PUBLIC_WEB_SEARCH_ENABLED=$NEXT_PUBLIC_WEB_SEARCH_ENABLED
54
+
55
+ ARG SERP_API_KEY
56
+ ENV SERP_API_KEY=$SERP_API_KEY
57
+
58
+ ARG NEXT_PUBLIC_GUEST_KEY
59
+ ENV NEXT_PUBLIC_GUEST_KEY=$NEXT_PUBLIC_GUEST_KEY
60
+
61
+ ARG NEXT_PUBLIC_FF_AUTH_ENABLED
62
+ ENV NEXT_PUBLIC_FF_AUTH_ENABLED=$NEXT_PUBLIC_FF_AUTH_ENABLED
63
+
64
+ ARG GOOGLE_CLIENT_ID
65
+ ENV GOOGLE_CLIENT_ID=$GOOGLE_CLIENT_ID
66
+
67
+ ARG GOOGLE_CLIENT_SECRET
68
+ ENV GOOGLE_CLIENT_SECRET=$GOOGLE_CLIENT_SECRET
69
+
70
+ ARG GITHUB_CLIENT_ID
71
+ ENV GITHUB_CLIENT_ID=$GITHUB_CLIENT_ID
72
+
73
+ ARG GITHUB_CLIENT_SECRET
74
+ ENV GITHUB_CLIENT_SECRET=$GITHUB_CLIENT_SECRET
75
+
76
+ ARG DISCORD_CLIENT_ID
77
+ ENV DISCORD_CLIENT_ID=$DISCORD_CLIENT_ID
78
+
79
+ # Next.js collects completely anonymous telemetry data about general usage. Learn more here: https://nextjs.org/telemetry
80
+ # Uncomment the following line to disable telemetry at build time
81
+ # ENV NEXT_TELEMETRY_DISABLED 1
82
+
83
+
84
+ # Build Next.js based on the preferred package manager
85
+ RUN \
86
+ if [ -f yarn.lock ]; then yarn build; \
87
+ elif [ -f package-lock.json ]; then npm run build; \
88
+ elif [ -f pnpm-lock.yaml ]; then pnpm build; \
89
+ else yarn build; \
90
+ fi
91
+
92
+ # Note: It is not necessary to add an intermediate step that does a full copy of `node_modules` here
93
+
94
+ # Step 2. Production image, copy all the files and run next
95
+ FROM base AS runner
96
+
97
+ WORKDIR /app
98
+
99
+ # Don't run production as root
100
+ RUN addgroup --system --gid 1001 nodejs
101
+ RUN adduser --system --uid 1001 nextjs
102
+ USER nextjs
103
+
104
+ COPY --from=builder /app/public ./public
105
+ COPY --from=builder /app/entrypoint.sh ./
106
+ COPY --from=builder --chown=nextjs:nodejs /app/prisma ./prisma
107
+
108
+
109
+
110
+ # Automatically leverage output traces to reduce image size
111
+ # https://nextjs.org/docs/advanced-features/output-file-tracing
112
+ COPY --from=builder --chown=nextjs:nodejs /app/.next/standalone ./
113
+ COPY --from=builder --chown=nextjs:nodejs /app/.next/static ./.next/static
114
+
115
+ # Ensure the app module is in the Python path
116
+ ENV PYTHONPATH="/app:${PYTHONPATH}"
117
+
118
+ # Environment variables must be redefined at run time
119
+
120
+ ARG NEXTAUTH_SECRET
121
+ ENV NEXTAUTH_SECRET=${NEXTAUTH_SECRET:-"$(openssl rand -base64 32)"}
122
+
123
+
124
+
125
+ ARG DATABASE_URL
126
+ ENV DATABASE_URL=$DATABASE_URL
127
+
128
+
129
+ ARG NEXTAUTH_URL
130
+ ENV NEXTAUTH_URL=$NEXTAUTH_URL
131
+
132
+
133
+ ARG OPENAI_API_KEY
134
+ ENV OPENAI_API_KEY=$OPENAI_API_KEY
135
+
136
+ ARG NEXT_PUBLIC_WEB_SEARCH_ENABLED
137
+ ENV NEXT_PUBLIC_WEB_SEARCH_ENABLED=$NEXT_PUBLIC_WEB_SEARCH_ENABLED
138
+
139
+ ARG SERP_API_KEY
140
+ ENV SERP_API_KEY=$SERP_API_KEY
141
+
142
+ ARG NEXT_PUBLIC_GUEST_KEY
143
+ ENV NEXT_PUBLIC_GUEST_KEY=$NEXT_PUBLIC_GUEST_KEY
144
+
145
+ ARG NEXT_PUBLIC_FF_AUTH_ENABLED
146
+ ENV NEXT_PUBLIC_FF_AUTH_ENABLED=$NEXT_PUBLIC_FF_AUTH_ENABLED
147
+
148
+ ARG GOOGLE_CLIENT_ID
149
+ ENV GOOGLE_CLIENT_ID=$GOOGLE_CLIENT_ID
150
+
151
+ ARG GOOGLE_CLIENT_SECRET
152
+ ENV GOOGLE_CLIENT_SECRET=$GOOGLE_CLIENT_SECRET
153
+
154
+ ARG GITHUB_CLIENT_ID
155
+ ENV GITHUB_CLIENT_ID=$GITHUB_CLIENT_ID
156
+
157
+ ARG GITHUB_CLIENT_SECRET
158
+ ENV GITHUB_CLIENT_SECRET=$GITHUB_CLIENT_SECRET
159
+
160
+ ARG DISCORD_CLIENT_ID
161
+ ENV DISCORD_CLIENT_ID=$DISCORD_CLIENT_ID
162
+
163
+ # Uncomment the following line to disable telemetry at run time
164
+ # ENV NEXT_TELEMETRY_DISABLED 1
165
+
166
+ # Note: Don't expose ports here, Compose will handle that for us
167
+
168
+ ENTRYPOINT ["sh", "entrypoint.sh"]
169
+
170
+ CMD ["node", "server.js"]