Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #11 from edx/huniafatima/migrate-dockerfile-setup-…
…edx-platform feat: Migrate Dockerfile setup [edx-platform]
- Loading branch information
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,70 @@ | ||
| name: Push edx-platform Docker Images | ||
|
|
||
| on: | ||
| workflow_dispatch: | ||
| inputs: | ||
| branch: | ||
| description: "Target branch from which the source dockerfile from image will be sourced" | ||
|
|
||
| schedule: | ||
| - cron: "0 4 * * 1-5" # UTC Time | ||
|
|
||
| jobs: | ||
| push: | ||
| runs-on: ubuntu-22.04 | ||
|
|
||
| strategy: | ||
| matrix: | ||
| variant: | ||
| - { tag: 'lms-dev', port: '18000', target: 'development' } | ||
| - { tag: 'cms-dev', port: '18000', target: 'development' } | ||
| - { tag: 'cms', port: '18010', target: 'production'} | ||
| - { tag: 'lms', port: '18010', target: 'production' } | ||
|
|
||
| steps: | ||
| - name: Get tag name | ||
| id: get-tag-name | ||
| uses: actions/github-script@v5 | ||
| with: | ||
| script: | | ||
| const tagName = "${{ github.event.inputs.branch }}" || 'latest'; | ||
| console.log('Will use tag: ' + tagName); | ||
| return tagName; | ||
| result-encoding: string | ||
|
|
||
| - name: Set up Docker Buildx | ||
| uses: docker/setup-buildx-action@v3 | ||
|
|
||
| - name: Set up QEMU | ||
| uses: docker/setup-qemu-action@v3 | ||
|
|
||
| - name: Login to DockerHub | ||
| uses: docker/login-action@v3 | ||
| with: | ||
| username: ${{ secrets.DOCKERHUB_USERNAME }} | ||
| password: ${{ secrets.DOCKERHUB_PASSWORD }} | ||
|
|
||
| - name: Build and push Dev Docker image | ||
| uses: docker/build-push-action@v6 | ||
| with: | ||
| file: ./dockerfiles/edx-platform.Dockerfile | ||
| push: true | ||
| platforms: linux/amd64,linux/arm64 | ||
| target: ${{ matrix.variant.target }} | ||
| build-args: | | ||
| SERVICE_VARIANT: ${{ matrix.variant.tag }} | ||
| SERVICE_PORT: ${{ matrix.variant.port }} | ||
| tags: edxops/${{matrix.variant.tag}}:${{ steps.get-tag-name.outputs.result }} | ||
|
|
||
| - name: Send failure notification | ||
| if: failure() | ||
| uses: dawidd6/action-send-mail@v3 | ||
| with: | ||
| server_address: email-smtp.us-east-1.amazonaws.com | ||
| server_port: 465 | ||
| username: ${{secrets.edx_smtp_username}} | ||
| password: ${{secrets.edx_smtp_password}} | ||
| subject: Push Image to docker.io/edxops failed in edx-platform | ||
| to: [email protected] | ||
| from: github-actions <[email protected]> | ||
| body: Push Image to docker.io/edxops for edx-platform failed! For details see "github.com/${{ github.repository }}/actions/runs/${{ github.run_id }}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,201 @@ | ||
| FROM ubuntu:focal AS minimal-system | ||
|
|
||
| ARG DEBIAN_FRONTEND=noninteractive | ||
| ARG SERVICE_VARIANT | ||
| ARG SERVICE_PORT | ||
|
|
||
| # Env vars: paver | ||
| # We intentionally don't use paver in this Dockerfile, but Devstack may invoke paver commands | ||
| # during provisioning. Enabling NO_PREREQ_INSTALL tells paver not to re-install Python | ||
| # requirements for every paver command, potentially saving a lot of developer time. | ||
| ARG NO_PREREQ_INSTALL='1' | ||
|
|
||
| # Env vars: locale | ||
| ENV LANG='en_US.UTF-8' | ||
| ENV LANGUAGE='en_US:en' | ||
| ENV LC_ALL='en_US.UTF-8' | ||
|
|
||
| # Env vars: configuration | ||
| ENV CONFIG_ROOT='/edx/etc' | ||
| ENV LMS_CFG="$CONFIG_ROOT/lms.yml" | ||
| ENV CMS_CFG="$CONFIG_ROOT/cms.yml" | ||
|
|
||
| # Env vars: path | ||
| ENV VIRTUAL_ENV="/edx/app/edxapp/venvs/edxapp" | ||
| ENV PATH="${VIRTUAL_ENV}/bin:${PATH}" | ||
| ENV PATH="/edx/app/edxapp/edx-platform/node_modules/.bin:${PATH}" | ||
| ENV PATH="/edx/app/edxapp/edx-platform/bin:${PATH}" | ||
| ENV PATH="/edx/app/edxapp/nodeenv/bin:${PATH}" | ||
|
|
||
| WORKDIR /edx/app/edxapp/edx-platform | ||
|
|
||
| # Create user before assigning any directory ownership to it. | ||
| RUN useradd -m --shell /bin/false app | ||
|
|
||
| # Use debconf to set locales to be generated when the locales apt package is installed later. | ||
| RUN echo "locales locales/default_environment_locale select en_US.UTF-8" | debconf-set-selections | ||
| RUN echo "locales locales/locales_to_be_generated multiselect en_US.UTF-8 UTF-8" | debconf-set-selections | ||
|
|
||
| # Setting up ppa deadsnakes to get python 3.11 | ||
| RUN apt-get update && \ | ||
| apt-get install -y software-properties-common && \ | ||
| apt-add-repository -y ppa:deadsnakes/ppa | ||
|
|
||
| # Install requirements that are absolutely necessary | ||
| RUN apt-get update && \ | ||
| apt-get -y dist-upgrade && \ | ||
| apt-get -y install --no-install-recommends \ | ||
| curl \ | ||
| python3-pip \ | ||
| python3.11 \ | ||
| # python3-dev: required for building mysqlclient python package | ||
| python3.11-dev \ | ||
| python3.11-venv \ | ||
| libpython3.11 \ | ||
| libpython3.11-stdlib \ | ||
| libmysqlclient21 \ | ||
| # libmysqlclient-dev: required for building mysqlclient python package | ||
| libmysqlclient-dev \ | ||
| pkg-config \ | ||
| libssl1.1 \ | ||
| libxmlsec1-openssl \ | ||
| # lynx: Required by https://github.com/openedx/edx-platform/blob/b489a4ecb122/openedx/core/lib/html_to_text.py#L16 | ||
| lynx \ | ||
| ntp \ | ||
| git \ | ||
| build-essential \ | ||
| gettext \ | ||
| gfortran \ | ||
| graphviz \ | ||
| locales \ | ||
| swig \ | ||
| && \ | ||
| apt-get clean all && \ | ||
| rm -rf /var/lib/apt/* | ||
|
|
||
| RUN mkdir -p /edx/var/edxapp | ||
| RUN mkdir -p /edx/etc | ||
| RUN chown app:app /edx/var/edxapp | ||
|
|
||
| # The builder-production stage is a temporary stage that installs required packages and builds the python virtualenv, | ||
| # installs nodejs and node_modules. | ||
| # The built artifacts from this stage are then copied to the base stage. | ||
| FROM minimal-system AS builder-production | ||
|
|
||
| RUN apt-get update && \ | ||
| apt-get -y install --no-install-recommends \ | ||
| libssl-dev \ | ||
| libffi-dev \ | ||
| libfreetype6-dev \ | ||
| libgeos-dev \ | ||
| libgraphviz-dev \ | ||
| libjpeg8-dev \ | ||
| liblapack-dev \ | ||
| libpng-dev \ | ||
| libsqlite3-dev \ | ||
| libxml2-dev \ | ||
| libxmlsec1-dev \ | ||
| libxslt1-dev | ||
|
|
||
| # Setup python virtual environment | ||
| # It is already 'activated' because $VIRTUAL_ENV/bin was put on $PATH | ||
| RUN python3.11 -m venv "${VIRTUAL_ENV}" | ||
|
|
||
| # Install python requirements | ||
| # Requires copying over requirements files, but not entire repository | ||
| RUN mkdir -p requirements/edx | ||
| RUN curl -L -o requirements/pip.txt https://raw.githubusercontent.com/openedx/edx-platform/master/requirements/pip.txt | ||
| RUN curl -L -o requirements/edx/base.txt https://raw.githubusercontent.com/openedx/edx-platform/master/requirements/edx/base.txt | ||
|
|
||
|
|
||
| RUN pip install -r requirements/pip.txt | ||
| RUN pip install -r requirements/edx/base.txt | ||
|
|
||
| # Install node and npm | ||
| RUN nodeenv /edx/app/edxapp/nodeenv --node=18.19.0 --prebuilt | ||
| RUN npm install -g [email protected] | ||
|
|
||
| # This script is used by an npm post-install hook. | ||
| # We copy it into the image now so that it will be available when we run `npm install` in the next step. | ||
| # The script itself will copy certain modules into some uber-legacy parts of edx-platform which still use RequireJS. | ||
| RUN mkdir scripts | ||
| RUN curl -L -o scripts/copy-node-modules.sh https://raw.githubusercontent.com/openedx/edx-platform/master/scripts/copy-node-modules.sh | ||
|
|
||
| # Install node modules | ||
| RUN curl -L -o package.json https://raw.githubusercontent.com/openedx/edx-platform/master/package.json | ||
| RUN curl -L -o package-lock.json https://raw.githubusercontent.com/openedx/edx-platform/master/package-lock.json | ||
|
|
||
|
|
||
| RUN chmod +x scripts/copy-node-modules.sh | ||
| RUN npm set progress=false && npm ci | ||
|
|
||
| # The builder-development stage is a temporary stage that installs python modules required for development purposes | ||
| # The built artifacts from this stage are then copied to the development stage. | ||
| FROM builder-production AS builder-development | ||
|
|
||
| RUN curl -L -o requirements/edx/development.txt https://raw.githubusercontent.com/openedx/edx-platform/master/requirements/edx/development.txt | ||
|
|
||
| RUN pip install -r requirements/edx/development.txt | ||
|
|
||
| # base stage | ||
| FROM minimal-system AS base | ||
|
|
||
| # Copy python virtual environment, nodejs and node_modules | ||
| COPY --from=builder-production /edx/app/edxapp/venvs/edxapp /edx/app/edxapp/venvs/edxapp | ||
| COPY --from=builder-production /edx/app/edxapp/nodeenv /edx/app/edxapp/nodeenv | ||
| COPY --from=builder-production /edx/app/edxapp/edx-platform/node_modules /edx/app/edxapp/edx-platform/node_modules | ||
|
|
||
| # Copy over remaining parts of repository (including all code) | ||
|
|
||
| RUN curl -L https://github.com/openedx/edx-platform/archive/refs/heads/master.tar.gz | tar -xz --strip-components=1 | ||
|
|
||
| # Install Python requirements again in order to capture local projects | ||
| RUN pip install -e . | ||
|
|
||
| # Setting edx-platform directory as safe for git commands | ||
| RUN git config --global --add safe.directory /edx/app/edxapp/edx-platform | ||
|
|
||
| # Production target | ||
| FROM base AS production | ||
|
|
||
| USER app | ||
|
|
||
| ENV EDX_PLATFORM_SETTINGS='docker-production' | ||
| ENV SERVICE_VARIANT="${SERVICE_VARIANT}" | ||
| ENV SERVICE_PORT="${SERVICE_PORT}" | ||
| ENV DJANGO_SETTINGS_MODULE="${SERVICE_VARIANT}.envs.$EDX_PLATFORM_SETTINGS" | ||
| EXPOSE ${SERVICE_PORT} | ||
|
|
||
| CMD gunicorn \ | ||
|
Check warning on line 169 in dockerfiles/edx-platform.Dockerfile
|
||
| -c /edx/app/edxapp/edx-platform/${SERVICE_VARIANT}/docker_${SERVICE_VARIANT}_gunicorn.py \ | ||
| --name ${SERVICE_VARIANT} \ | ||
| --bind=0.0.0.0:${SERVICE_PORT} \ | ||
| --max-requests=1000 \ | ||
| --access-logfile \ | ||
| - ${SERVICE_VARIANT}.wsgi:application | ||
|
|
||
| # Development target | ||
| FROM base AS development | ||
|
|
||
| RUN apt-get update && \ | ||
| apt-get -y install --no-install-recommends \ | ||
| # wget is used in Makefile for common_constraints.txt | ||
| wget \ | ||
| && \ | ||
| apt-get clean all && \ | ||
| rm -rf /var/lib/apt/* | ||
|
|
||
| COPY --from=builder-development /edx/app/edxapp/venvs/edxapp /edx/app/edxapp/venvs/edxapp | ||
|
|
||
| RUN ln -s "$(pwd)/lms/envs/devstack-experimental.yml" "$LMS_CFG" | ||
| RUN ln -s "$(pwd)/cms/envs/devstack-experimental.yml" "$CMS_CFG" | ||
| # Temporary compatibility hack while devstack is supporting both the old `edxops/edxapp` image and this image. | ||
| # * Add in a dummy ../edxapp_env file | ||
| # * devstack sets /edx/etc/studio.yml as CMS_CFG. | ||
| RUN ln -s "$(pwd)/cms/envs/devstack-experimental.yml" "/edx/etc/studio.yml" | ||
| RUN touch ../edxapp_env | ||
|
|
||
| ENV EDX_PLATFORM_SETTINGS='devstack_docker' | ||
| ENV SERVICE_VARIANT="${SERVICE_VARIANT}" | ||
| EXPOSE ${SERVICE_PORT} | ||
| CMD ./manage.py ${SERVICE_VARIANT} runserver 0.0.0.0:${SERVICE_PORT} | ||
|
Check warning on line 201 in dockerfiles/edx-platform.Dockerfile
|
||
