|
| 1 | +# Stage 1: Build development dependencies |
| 2 | +FROM python:3.12.0 AS builder-dev |
| 3 | + |
| 4 | +WORKDIR /code |
| 5 | + |
| 6 | +# Install system dependencies for psycopg2 and pipenv |
| 7 | +RUN apt-get update \ |
| 8 | + && apt-get install --no-install-recommends -y \ |
| 9 | + libpq-dev \ |
| 10 | + gcc=4:12.2.0-3 \ |
| 11 | + && pip install --no-cache-dir --upgrade pip==24.1.2 \ |
| 12 | + && pip install --no-cache-dir pipenv==2024.0.1 |
| 13 | + |
| 14 | +# Copy Pipfiles |
| 15 | +COPY Pipfile Pipfile.lock ./ |
| 16 | + |
| 17 | +# Install development dependencies |
| 18 | +RUN pipenv install --dev --system --deploy |
| 19 | + |
| 20 | + |
| 21 | + |
| 22 | +# Stage 2: Build production dependencies |
| 23 | +FROM python:3.12.0-alpine AS builder-prod |
| 24 | + |
| 25 | +WORKDIR /code |
| 26 | + |
| 27 | +# Install system dependencies for psycopg2 and pipenv |
| 28 | +RUN apk update \ |
| 29 | + && apk add --no-cache \ |
| 30 | + postgresql15-dev=15.7-r0 \ |
| 31 | + gcc=12.2.1_git20220924-r10 \ |
| 32 | + musl-dev=1.2.4-r2 \ |
| 33 | + && pip install --no-cache-dir --upgrade pip==24.1.4 \ |
| 34 | + && pip install --no-cache-dir pipenv==2024.0.1 |
| 35 | + |
| 36 | +# Copy Pipfiles |
| 37 | +COPY Pipfile Pipfile.lock ./ |
| 38 | + |
| 39 | +# Install production dependencies |
| 40 | +RUN PIPENV_VENV_IN_PROJECT=1 pipenv install --deploy --system |
| 41 | + |
| 42 | +# Stage 3: Final image |
| 43 | +FROM python:3.12.0-alpine as production |
| 44 | + |
| 45 | +WORKDIR /code |
| 46 | + |
| 47 | +# Install runtime dependencies for psycopg2 |
| 48 | +RUN apk update \ |
| 49 | + && apk add libpq=15.7-r0 |
| 50 | + |
| 51 | +# Copy production dependencies from builder-prod stage |
| 52 | +COPY --from=builder-prod /usr/local /usr/local |
| 53 | + |
| 54 | +# Copy the application code |
| 55 | +COPY ./app ./app |
| 56 | + |
| 57 | +# Create a non-root user to run the application |
| 58 | +RUN adduser -D -H nonroot |
| 59 | + |
| 60 | +# Switch to the non-root user |
| 61 | +USER nonroot |
| 62 | + |
| 63 | +# Command to run the application |
| 64 | +CMD ["uvicorn", "app.main:app", "--host", "0.0.0.0", "--port", "80"] |
| 65 | + |
| 66 | +# Stage 4: Lambda function |
| 67 | +FROM public.ecr.aws/lambda/python:3.12 as lambda |
| 68 | + |
| 69 | +WORKDIR ${LAMBDA_TASK_ROOT} |
| 70 | + |
| 71 | +# Install system dependencies for psycopg2 and pipenv |
| 72 | +RUN dnf install -y \ |
| 73 | + postgresql-devel \ |
| 74 | + gcc-11.4.1-2.amzn2023.0.2.x86_64 \ |
| 75 | + && pip install --no-cache-dir --upgrade pip==24.1.2 \ |
| 76 | + && pip install --no-cache-dir pipenv==2024.0.1 \ |
| 77 | + && dnf clean all |
| 78 | + |
| 79 | +# Copy Pipfiles |
| 80 | +COPY Pipfile Pipfile.lock ${LAMBDA_TASK_ROOT}/ |
| 81 | + |
| 82 | +# Install production dependencies |
| 83 | +RUN PIPENV_VENV_IN_PROJECT=1 pipenv install --system --deploy |
| 84 | + |
| 85 | +# Copy the lambda handler code |
| 86 | +COPY . ${LAMBDA_TASK_ROOT} |
| 87 | + |
| 88 | +CMD ["app/main.handler"] |
0 commit comments