schon/Dockerfiles/app.Dockerfile

# syntax=docker/dockerfile:1
FROM python:3.12-slim-bookworm
LABEL authors="fureunoir"

ENV PYTHONDONTWRITEBYTECODE=1 \
    PYTHONUNBUFFERED=1 \
    LANG=C.UTF-8 \
    DEBIAN_FRONTEND=noninteractive

WORKDIR /app

RUN set -eux; \
    sed -i 's|https://deb.debian.org/debian|https://ftp.uk.debian.org/debian|g' /etc/apt/sources.list.d/debian.sources; \
    apt-get update; \
    apt-get install -y --no-install-recommends wget gnupg curl; \
    wget -qO - https://www.postgresql.org/media/keys/ACCC4CF8.asc | apt-key add -; \
    echo "deb http://apt.postgresql.org/pub/repos/apt bookworm-pgdg main" \
         > /etc/apt/sources.list.d/pgdg.list; \
    apt-get update; \
    apt-get install -y --no-install-recommends --fix-missing \
        build-essential \
        libpq-dev \
        gettext \
        libgettextpo-dev \
        libgts-dev \
        libpq5 \
        chrony \
        binutils \
        libproj-dev \
        postgresql-client-17 \
        gdal-bin; \
    rm -rf /var/lib/apt/lists/*; \
    pip install --upgrade pip

RUN curl -LsSf https://astral.sh/uv/install.sh | UV_INSTALL_DIR=/usr/local/bin sh

ENV VIRTUAL_ENV=/opt/schon-python
ENV UV_PROJECT_ENVIRONMENT=/opt/schon-python
ENV PATH="/opt/schon-python/bin:/usr/local/bin:$PATH"

COPY pyproject.toml pyproject.toml
COPY uv.lock uv.lock

RUN uv venv /opt/schon-python && \
    uv sync --extra worker --extra openai --locked

COPY ./scripts/Docker/app-entrypoint.sh /usr/local/bin/app-entrypoint.sh
RUN chmod +x /usr/local/bin/app-entrypoint.sh

COPY . .

RUN groupadd --system --gid 1000 schon && \
    useradd --system --uid 1000 --gid schon --shell /bin/bash --create-home schon && \
    mkdir -p /app/static /app/media && \
    chown -R schon:schon /app /opt/schon-python

USER schon

ENTRYPOINT ["/usr/bin/bash", "app-entrypoint.sh"]