-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
This is just a skeleton image and doesn't have any directories or packages that are specific to codejail yet. Lots of differences from cookiecutter django-ida default: - Remove MySQL system packages - Use latest Ubuntu LTS - Shorten the base folder from `codejail-service` to `codejail` - Use port 8080; we'll remap it in compose anyhow - Use ADD on a git repo rather than RUN/curl/tar, which runs afoul of Docker caching when a branch is used. - Allow selecting a commit version - Pass `DJANGO_SETTINGS_MODULE` from outside as env var to reduce differences between dev and prod targets and add flexibility. - Install in /app and create virtualenv in /venv; no need to hew to the same pattern we used in the configuration repo. - Remove apt cache in same RUN command so as not to create a fat layer - Use heredoc syntax for multi-command RUN - No log files, just log to stdout See edx/edx-arch-experiments#894
- Loading branch information
Showing
3 changed files
with
98 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,91 @@ | ||
| # Usage: | ||
| # | ||
| # - Listens on port 8080 internally | ||
| # - Set environment variable `DJANGO_SETTINGS_MODULE`, e.g. to | ||
| # `codejail_service.settings.production` or `codejail_service.settings.devstack` | ||
| # - Override arg `VERSION` to a commit hash or a branch | ||
|
|
||
| FROM ubuntu:noble AS app | ||
|
|
||
| ARG GITHUB_REPO=openedx/codejail-service | ||
|
|
||
| # This should be overridden with a commit hash to ensure we always get | ||
| # a coherent result, even if things are changing on a branch as the | ||
| # image is being built. | ||
| # | ||
| # Must use the full 40-character hash when specifying a commit hash. | ||
| ARG VERSION=main | ||
|
|
||
| # Python version | ||
| ARG PYVER=3.12 | ||
|
|
||
| # Packages installed: | ||
| # | ||
| # - language-pack-en, locales: Ubuntu locale support so that system utilities | ||
| # have a consistent language and time zone. | ||
| # - python*: A specific version of Python | ||
| # - python*-dev: Header files for python extensions, required by many source wheels | ||
| # - python*-venv: Allow creation of virtualenvs | ||
| RUN <<EOF | ||
| apt-get update | ||
| DEBIAN_FRONTEND=noninteractive apt-get install \ | ||
| --quiet --yes --no-install-recommends \ | ||
| language-pack-en locales \ | ||
| python${PYVER} python${PYVER}-dev python${PYVER}-venv | ||
| # If you add a package, please add a comment above explaining why it is needed! | ||
| rm -rf /var/lib/apt/lists/* | ||
| EOF | ||
|
|
||
| RUN locale-gen en_US.UTF-8 | ||
| ENV LANG en_US.UTF-8 | ||
| ENV LANGUAGE en_US:en | ||
| ENV LC_ALL en_US.UTF-8 | ||
|
|
||
| WORKDIR /app | ||
|
|
||
| # We'll build the virtualenv and pre-compile Python as root, but switch to user | ||
| # `app` for actually running the application. | ||
| RUN useradd -m --shell /bin/false app | ||
|
|
||
| # Unpack the repo directly from GitHub, since this image is not built | ||
| # from inside the application repo. | ||
| # | ||
| # Start with getting just the requirements files so that code changes | ||
| # do not bust the image cache and require rebuilding the virtualenv. | ||
| ADD https://github.com/${GITHUB_REPO}.git#${VERSION}:requirements requirements | ||
|
|
||
| RUN <<EOF | ||
| python${PYVER} -m venv /venv | ||
| /venv/bin/pip install -r /app/requirements/pip.txt | ||
| /venv/bin/pip install -r /app/requirements/pip-tools.txt | ||
| EOF | ||
|
|
||
| EXPOSE 8080 | ||
|
|
||
|
|
||
| FROM app AS dev | ||
|
|
||
| RUN /venv/bin/pip-sync requirements/dev.txt | ||
| RUN python${PYVER} -m compileall /venv | ||
|
|
||
| # After the requirements so changes to the code will not bust the image cache | ||
| ADD https://github.com/${GITHUB_REPO}.git#${VERSION} . | ||
| RUN python${PYVER} -m compileall /app | ||
|
|
||
| USER app | ||
| CMD echo $PATH; while true; do /venv/bin/python ./manage.py runserver 0.0.0.0:8080; sleep 2; done | ||
|
|
||
|
|
||
| FROM app AS prod | ||
|
|
||
| RUN /venv/bin/pip-sync requirements/base.txt | ||
| RUN python${PYVER} -m compileall /venv | ||
|
|
||
| # After the requirements so changes to the code will not bust the image cache | ||
| ADD https://github.com/${GITHUB_REPO}.git#${VERSION} . | ||
| RUN python${PYVER} -m compileall /app | ||
|
|
||
| USER app | ||
| CMD /venv/bin/gunicorn -c /app/codejail_service/docker_gunicorn_configuration.py \ | ||
| --bind '0.0.0.0:8080' --workers=2 --max-requests=1000 --name codejail \ | ||
| codejail_service.wsgi:application |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters