37 lines
930 B
Docker
37 lines
930 B
Docker
# --- Build stage ---
|
|
FROM python:3.12-slim-bookworm AS builder
|
|
|
|
COPY --from=ghcr.io/astral-sh/uv:0.7.12 /uv /uvx /bin/
|
|
|
|
ENV UV_COMPILE_BYTECODE=1 \
|
|
UV_LINK_MODE=copy \
|
|
UV_NO_DEV=1 \
|
|
UV_PYTHON_DOWNLOADS=0
|
|
|
|
WORKDIR /app
|
|
|
|
# Install dependencies (cached separately from app code)
|
|
COPY pyproject.toml uv.lock ./
|
|
RUN uv sync --locked --no-install-project --no-cache
|
|
|
|
# Copy application code and install project
|
|
COPY . /app
|
|
RUN uv sync --locked --no-editable --no-cache
|
|
|
|
# --- Runtime stage ---
|
|
FROM python:3.12-slim-bookworm
|
|
|
|
RUN groupadd --system --gid 999 nonroot \
|
|
&& useradd --system --gid 999 --uid 999 --create-home nonroot
|
|
|
|
COPY --from=builder --chown=nonroot:nonroot /app /app
|
|
|
|
ENV PATH="/app/.venv/bin:$PATH" \
|
|
PYTHONUNBUFFERED=1
|
|
|
|
USER nonroot
|
|
WORKDIR /app
|
|
EXPOSE 8080
|
|
|
|
CMD ["uvicorn", "capa_de_integracion.main:app", "--host", "0.0.0.0", "--port", "8080", "--limit-concurrency", "1000", "--backlog", "2048"]
|