Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
This is just a skeleton image and doesn't have any directories or packages that are specific to codejail yet. Lots of differences from cookiecutter django-ida default: - Remove MySQL system packages - Use latest Ubuntu LTS - Shorten the base folder from `codejail-service` to `codejail` - Use port 8080; we'll remap it in compose anyhow - Use ADD on a git repo rather than RUN/curl/tar, which runs afoul of Docker caching when a branch is used. - Allow selecting a commit version - Pass `DJANGO_SETTINGS_MODULE` from outside as env var to reduce differences between dev and prod targets and add flexibility. - Install in /app and create virtualenv in /venv; no need to hew to the same pattern we used in the configuration repo. - Remove apt cache in same RUN command so as not to create a fat layer - Use heredoc syntax for multi-command RUN - No log files, just log to stdout See edx/edx-arch-experiments#894
- Loading branch information
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,91 @@ | ||
| # Usage: | ||
| # | ||
| # - Listens on port 8080 internally | ||
| # - Set environment variable `DJANGO_SETTINGS_MODULE`, e.g. to | ||
| # `codejail_service.settings.production` or `codejail_service.settings.devstack` | ||
| # - Override arg `VERSION` to a commit hash or a branch | ||
|
|
||
| FROM ubuntu:noble AS app | ||
|
|
||
| ARG GITHUB_REPO=openedx/codejail-service | ||
|
|
||
| # This should be overridden with a commit hash to ensure we always get | ||
| # a coherent result, even if things are changing on a branch as the | ||
| # image is being built. | ||
| # | ||
| # Must use the full 40-character hash when specifying a commit hash. | ||
| ARG VERSION=main | ||
|
|
||
| # Python version | ||
| ARG PYVER=3.12 | ||
|
|
||
| # Packages installed: | ||
| # | ||
| # - language-pack-en, locales: Ubuntu locale support so that system utilities | ||
| # have a consistent language and time zone. | ||
| # - python*: A specific version of Python | ||
| # - python*-dev: Header files for python extensions, required by many source wheels | ||
| # - python*-venv: Allow creation of virtualenvs | ||
| RUN <<EOF | ||
| apt-get update | ||
| DEBIAN_FRONTEND=noninteractive apt-get install \ | ||
| --quiet --yes --no-install-recommends \ | ||
| language-pack-en locales \ | ||
| python${PYVER} python${PYVER}-dev python${PYVER}-venv | ||
| # If you add a package, please add a comment above explaining why it is needed! | ||
| rm -rf /var/lib/apt/lists/* | ||
| EOF | ||
|
|
||
| RUN locale-gen en_US.UTF-8 | ||
| ENV LANG en_US.UTF-8 | ||
|
Check warning on line 40 in dockerfiles/codejail.Dockerfile
|
||
| ENV LANGUAGE en_US:en | ||
|
Check warning on line 41 in dockerfiles/codejail.Dockerfile
|
||
| ENV LC_ALL en_US.UTF-8 | ||
|
Check warning on line 42 in dockerfiles/codejail.Dockerfile
|
||
|
|
||
| WORKDIR /app | ||
|
|
||
| # We'll build the virtualenv and pre-compile Python as root, but switch to user | ||
| # `app` for actually running the application. | ||
| RUN useradd -m --shell /bin/false app | ||
|
|
||
| # Unpack the repo directly from GitHub, since this image is not built | ||
| # from inside the application repo. | ||
| # | ||
| # Start with getting just the requirements files so that code changes | ||
| # do not bust the image cache and require rebuilding the virtualenv. | ||
| ADD https://github.com/${GITHUB_REPO}.git#${VERSION}:requirements requirements | ||
|
|
||
| RUN <<EOF | ||
| python${PYVER} -m venv /venv | ||
| /venv/bin/pip install -r /app/requirements/pip.txt | ||
| /venv/bin/pip install -r /app/requirements/pip-tools.txt | ||
| EOF | ||
|
|
||
| EXPOSE 8080 | ||
|
|
||
|
|
||
| FROM app AS dev | ||
|
|
||
| RUN /venv/bin/pip-sync requirements/dev.txt | ||
| RUN python${PYVER} -m compileall /venv | ||
|
|
||
| # Add code changes after deps installation so it won't bust the image cache | ||
| ADD https://github.com/${GITHUB_REPO}.git#${VERSION} . | ||
| RUN python${PYVER} -m compileall /app | ||
|
|
||
| USER app | ||
| CMD echo $PATH; while true; do /venv/bin/python ./manage.py runserver 0.0.0.0:8080; sleep 2; done | ||
|
Check warning on line 76 in dockerfiles/codejail.Dockerfile
|
||
|
|
||
|
|
||
| FROM app AS prod | ||
|
|
||
| RUN /venv/bin/pip-sync requirements/base.txt | ||
| RUN python${PYVER} -m compileall /venv | ||
|
|
||
| # Add code changes after deps installation so it won't bust the image cache | ||
| ADD https://github.com/${GITHUB_REPO}.git#${VERSION} . | ||
| RUN python${PYVER} -m compileall /app | ||
|
|
||
| USER app | ||
| CMD /venv/bin/gunicorn -c /app/codejail_service/docker_gunicorn_configuration.py \ | ||
| --bind '0.0.0.0:8080' --workers=2 --max-requests=1000 --name codejail \ | ||
| codejail_service.wsgi:application | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters