Home Explore Help
Register Sign In
fphammerle
/
location-guessing-game-telegram-bot
mirror of https://github.com/fphammerle/location-guessing-game-telegram-bot
1
0
Fork 0
Files Issues 0 Wiki
Tree: 99f93c5c39
Branches Tags
location-guessi...
/
Dockerfile

Dockerfile 2.3 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. ARG BASE_IMAGE=docker.io/python:3.8.7-slim-buster
    2. 

  2. ARG SOURCE_DIR_PATH=/location-guessing-game-telegram-bot
    3. 

  3. 

  4. 

  5. # hadolint ignore=DL3006
    6. 

  6. FROM $BASE_IMAGE as build
    7. 

  7. 

  8. # hadolint ignore=DL3008
    9. 

  9. RUN apt-get update \
    10. 

  10.     && apt-get install --no-install-recommends --yes \
    11. 

  11.         ca-certificates \
    12. 

  12.         git `# setuptools_scm` \
    13. 

  13.         jq `# edit Pipfile.lock` \
    14. 

  14.     && rm -rf /var/lib/apt/lists/* \
    15. 

  15.     && useradd --create-home build
    16. 

  16. 

  17. USER build
    18. 

  18. RUN pip install --user --no-cache-dir pipenv==2020.11.15
    19. 

  19. 

  20. ARG SOURCE_DIR_PATH
    21. 

  21. COPY --chown=build Pipfile Pipfile.lock $SOURCE_DIR_PATH/
    22. 

  22. WORKDIR $SOURCE_DIR_PATH
    23. 

  23. ENV PIPENV_CACHE_DIR=/tmp/pipenv-cache \
    24. 

  24.     PIPENV_VENV_IN_PROJECT=yes-please \
    25. 

  25.     PATH=/home/build/.local/bin:$PATH
    26. 

  26. # `sponge` is not pre-installed
    27. 

  27. RUN jq 'del(.default."location-guessing-game-telegram-bot", .default."sanitized-package")' Pipfile.lock > Pipfile.lock~ \
    28. 

  28.     && mv Pipfile.lock~ Pipfile.lock \
    29. 

  29.     && pipenv install --deploy \
    30. 

  30.     && rm -rf $PIPENV_CACHE_DIR
    31. 

  31. COPY --chown=build . $SOURCE_DIR_PATH
    32. 

  32. # allow manual specification to support build without git history
    33. 

  33. ARG SETUPTOOLS_SCM_PRETEND_VERSION=
    34. 

  34. RUN pipenv install --deploy \
    35. 

  35.     && pipenv run location-guessing-game-telegram-bot --help \
    36. 

  36.     && pipenv graph \
    37. 

  37.     && pipenv run pip freeze \
    38. 

  38.     && rm -rf .git/ $PIPENV_CACHE_DIR \
    39. 

  39.     && chmod -cR a+rX .
    40. 

  40. 

  41. # workaround for broken multi-stage copy
    42. 

  42. # > failed to copy files: failed to copy directory: Error processing tar file(exit status 1): Container ID ... cannot be mapped to a host ID
    43. 

  43. USER 0
    44. 

  44. RUN chown -R 0:0 $SOURCE_DIR_PATH
    45. 

  45. USER build
    46. 

  46. 

  47. 

  48. # hadolint ignore=DL3006
    49. 

  49. FROM $BASE_IMAGE
    50. 

  50. 

  51. # hadolint ignore=DL3008
    52. 

  52. RUN apt-get update \
    53. 

  53.     && apt-get install --no-install-recommends --yes ca-certificates \
    54. 

  54.     && rm -rf /var/lib/apt/lists/* \
    55. 

  55.     && find / -xdev -type f -perm /u+s -exec chmod -c u-s {} \; \
    56. 

  56.     && find / -xdev -type f -perm /g+s -exec chmod -c g-s {} \;
    57. 

  57. 

  58. USER nobody
    59. 

  59. 

  60. ARG SOURCE_DIR_PATH
    61. 

  61. COPY --from=build $SOURCE_DIR_PATH $SOURCE_DIR_PATH
    62. 

  62. ENV PATH=$SOURCE_DIR_PATH/.venv/bin:$PATH
    63. 

  63. WORKDIR $SOURCE_DIR_PATH
    64. 

  64. CMD ["location-guessing-game-telegram-bot"]
    65. 

  65. 

  66. # https://github.com/opencontainers/image-spec/blob/v1.0.1/annotations.md
    67. 

  67. LABEL org.opencontainers.image.title="location guessing game telegram bot" \
    68. 

  68.     org.opencontainers.image.source="https://github.com/fphammerle/location-guessing-game-telegram-bot"
    69.