-
Notifications
You must be signed in to change notification settings - Fork 0
/
Dockerfile
189 lines (152 loc) · 6.47 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
# I: Runtime Stage: ============================================================
# This is the stage where we build the runtime base image, which is used as the
# common ancestor by the rest of the stages, and contains the minimal runtime
# dependencies required for the application to run:
# Step 1: Use the official Ruby 2.6.5 Slim Buster image as base:
FROM ruby:2.6.5-slim-buster AS runtime
# Step 2: We'll set the MALLOC_ARENA_MAX for optimization purposes & prevent memory bloat
# https://www.speedshop.co/2017/12/04/malloc-doubles-ruby-memory.html
ENV MALLOC_ARENA_MAX="2"
# Step 3: We'll set '/usr/src' path as the working directory:
# NOTE: This is a Linux "standard" practice - see:
# - http://www.pathname.com/fhs/2.2/
# - http://www.pathname.com/fhs/2.2/fhs-4.1.html
# - http://www.pathname.com/fhs/2.2/fhs-4.12.html
WORKDIR /usr/src
# Step 4: We'll set the working dir as HOME and add the app's binaries path to
# $PATH:
ENV HOME=/usr/src PATH=/usr/src/bin:$PATH
# Step 5: We'll install curl for later dependencies installations
RUN apt-get update && \
apt-get install -y --no-install-recommends \
curl
# Step 6: Add nodejs source
RUN curl -sL https://deb.nodesource.com/setup_12.x | bash -
# Step 7: Add yarn packages repository
RUN curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | apt-key add - && \
echo "deb https://dl.yarnpkg.com/debian/ stable main" | tee /etc/apt/sources.list.d/yarn.list
# Step 8: Install the common runtime dependencies:
RUN apt-get update && \
apt-get install -y --no-install-recommends \
apt-transport-https software-properties-common \
ca-certificates \
libpq5 \
openssl \
nodejs \
tzdata \
yarn && \
rm -rf /var/lib/apt/lists/*
# Step 9: Add Dockerize image
RUN export DOCKERIZE_VERSION=v0.6.1 && curl -L \
https://github.com/jwilder/dockerize/releases/download/$DOCKERIZE_VERSION/dockerize-linux-amd64-$DOCKERIZE_VERSION.tar.gz \
| tar -C /usr/local/bin -xz
# II: Development Stage: =======================================================
# In this stage we'll build the image used for development, including compilers,
# and development libraries. This is also a first step for building a releasable
# Docker image:
# Step 10: Start off from the "runtime" stage:
FROM runtime AS development
# Step 16: Set the default command:
CMD [ "rails", "server", "-b", "0.0.0.0" ]
# Step 17: Create the developer user:
ARG DEVELOPER_UID=1000
ARG DEVELOPER_USER=me
ENV DEVELOPER_USER=${DEVELOPER_USER} IS_CONTAINER="yes"
RUN useradd --uid ${DEVELOPER_UID} ${DEVELOPER_USER}
# Step 11: Install the development dependency packages with alpine package
# manager:
RUN apt-get update && \
apt-get install -y --no-install-recommends \
build-essential \
chromium \
chromium-driver \
git \
libpq-dev && \
rm -rf /var/lib/apt/lists/*
# Step 12: Fix npm uid-number error
# - see https://github.com/npm/uid-number/issues/7
RUN npm config set unsafe-perm true
# Step 13: Install the 'check-dependencies' node package:
RUN npm install -g check-dependencies
# Step 14: Copy the project's Gemfile + lock dependency files:
COPY Gemfile* /usr/src/
# Step 15: Install the current project gems - they can be safely changed later
# during development via `bundle install` or `bundle update`:
RUN bundle install --jobs=4 --retry=3
# Step 14: Copy the project's npm dependency files:
COPY package.json yarn.lock /usr/src/
# Step 19: Install Yarn packages:
RUN yarn install
# III: Testing stage: ==========================================================
# In this stage we'll add the current code from the project's source, so we can
# run tests with the code.
# Step 17: Start off from the development stage image:
FROM development AS testing
# Step 18: Copy the rest of the application code
COPY . /usr/src
# IV: Builder stage: ===========================================================
# In this stage we'll compile assets coming from the project's source, do some
# tests and cleanup. If the CI/CD that builds this image allows it, we should
# also run the app test suites here:
# Step 20: Start off from the development stage image:
FROM testing AS builder
# Step 21: Precompile assets:
RUN export DATABASE_URL=postgres://postgres@example.com:5432/fakedb \
SECRET_KEY_BASE=10167c7f7654ed02b3557b05b88ece \
RAILS_ENV=production && \
rails assets:precompile && \
rails webpacker:compile && \
rails secret > /dev/null
# Step 22: Remove installed gems that belong to the development & test groups -
# we'll copy the remaining system gems into the deployable image on the next
# stage:
RUN bundle config without development:test && bundle clean
# Step 23: Remove files not used on release image:
RUN rm -rf \
.rspec \
Guardfile \
bin/rspec \
bin/checkdb \
bin/setup \
bin/spring \
bin/webpack \
bin/webpack-dev-server \
bin/dev-entrypoint.sh \
config/spring.rb \
node_modules \
spec \
tmp/*
# V: Release stage: ============================================================
# In this stage, we build the final, deployable Docker image, which will be
# smaller than the images generated on previous stages:
# Step 24: Start off from the runtime stage image:
FROM runtime AS release
# Step 25: Copy the remaining installed gems from the "builder" stage:
COPY --from=builder /usr/local/bundle /usr/local/bundle
# Step 26: Copy from app code from the "builder" stage, which at this point
# should have the assets from the asset pipeline already compiled:
COPY --from=builder /usr/src /usr/src
# Step 27: Set the RAILS/RACK_ENV and PORT default values:
ENV RAILS_ENV=production RACK_ENV=production PORT=3000
# Step 28: Generate the temporary directories in case they don't already exist:
RUN mkdir -p /usr/src/tmp/cache && \
mkdir -p /usr/src/tmp/pids && \
mkdir -p /usr/src/tmp/sockets && \
chown -R nobody /usr/src
# Step 29: Set the container user to 'nobody':
USER nobody
# Step 30: Set the default command:
CMD [ "puma" ]
# Step 31 thru 34: Add label-schema.org labels to identify the build info:
ARG SOURCE_BRANCH="master"
ARG SOURCE_COMMIT="000000"
ARG BUILD_DATE="2017-09-26T16:13:26Z"
ARG IMAGE_NAME="santacasa:latest"
LABEL org.label-schema.build-date=$BUILD_DATE \
org.label-schema.name="Santacasa" \
org.label-schema.description="santacasa" \
org.label-schema.vcs-url="https://github.com/IcaliaLabs/santacasa.git" \
org.label-schema.vcs-ref=$SOURCE_COMMIT \
org.label-schema.schema-version="1.0.0-rc1" \
build-target="release" \
build-branch=$SOURCE_BRANCH