[mediagoblin.git] / Dockerfile-debian-python3-sqlite

# A Dockerfile for MediaGoblin hacking.
#
# Most development Docker images are built and run as root. That doesn't work
# here because the `bower` command run within the `make` step, refuses to run as
# root.
#
# To build this Docker image, run:
#
#   docker build -t mediagoblin-python3 -f Dockerfile-debian-python3-sqlite .  # or
#   docker build -t mediagoblin-python3 - < Dockerfile-debian-python3-sqlite  # with no build context
#
# The "- < Dockerfile" format advises Docker not to include the current
# directory as build context.
#
# Before running the image you first need to first assign the "mediagoblin" and
# "user_dev" directories to an artificial group (1024) on the host that is
# mirrored within the image (details below):
#
#   sudo chown --recursive :1024 mediagoblin user_dev
#   find mediagoblin user_dev -type d -exec chmod 775 {} \;
#   find mediagoblin user_dev -type f -exec chmod 664 {} \;
#
# Then you can run the image with the upstream MediaGoblin code:
#
#   docker run --interactive --tty --publish 6543:6543 mediagoblin-python3
#
# Or you can run with your local "mediagoblin" and "user_dev" directories
# bind-mounted into the container. This provides automatic code reloading and
# persistence:
#
#   # TODO: Not working.
#   docker run --interactive --tty --publish 6543:6543 --volume ./mediagoblin:/opt/mediagoblin/mediagoblin --volume ./extlib:/opt/mediagoblin/extlib mediagoblin-python3
#
# Alternatively you use docker-compose instead of separate build/run steps:
#
#   sudo chown --recursive :1024 mediagoblin user_dev
#   find mediagoblin user_dev -type d -exec chmod 775 {} \;
#   find mediagoblin user_dev -type f -exec chmod 664 {} \;
#   docker-compose up --build
#
# You can run the test suite with:
#
# docker run --tty mediagoblin-python3 bash -c "bin/python -m pytest ./mediagoblin/tests --boxed"


FROM debian:buster

# Install bootstrap and configure dependencies. Currently requires virtualenv
# rather than the more modern python3-venv (should be fixed).
RUN apt-get update && apt-get install -y \
automake \
git \
nodejs \
npm \
python3-dev \
virtualenv

# Install make and runtime dependencies.
#
# Excluding python3-celery here due to conflict with dist-packges for a
# compatible version of billiard.
RUN apt-get install -y \
python3-alembic \
python3-jsonschema \
python3-kombu \
python3-lxml \
python3-migrate \
python3-py \
python3-pytest \
python3-pytest-xdist \
python3-six \
python3-snowballstemmer \
python3-sphinx \
python3-sphinxcontrib.websupport \
python3-webtest

# Install audio dependencies.
RUN apt-get install -y \
gstreamer1.0-libav \
gstreamer1.0-plugins-bad \
gstreamer1.0-plugins-base \
gstreamer1.0-plugins-good \
gstreamer1.0-plugins-ugly \
python3-gst-1.0

# Install video dependencies.
RUN apt-get install -y \
gir1.2-gst-plugins-base-1.0 \
gir1.2-gstreamer-1.0 \
gstreamer1.0-tools \
python3-gi

# Install document (PDF-only) dependencies.
# TODO: Check that PDF tests aren't skipped.
RUN apt-get install -y \
poppler-utils

# Create working directory.
RUN mkdir /opt/mediagoblin
RUN chown -R www-data:www-data /opt/mediagoblin
WORKDIR /opt/mediagoblin

# Create /var/www because Bower writes some cache files into /var/www during
# make, failing if it doesn't exist.
RUN mkdir --mode=g+w /var/www
RUN chown root:www-data /var/www

# Set up custom group to align with volume permissions for mounted
# "mediagoblin/mediagoblin" and "mediagoblin/user_dev".
#
# The problem here is that the host's UID, GID and mode are used in the
# container, but of course the container's user www-data is running under a
# different UID/GID so can't read or write to the volume. It seems like there
# should be a better approach, but we'll align volume permissions between host
# and container as per
# https://medium.com/@nielssj/docker-volumes-and-file-system-permissions-772c1aee23ca
RUN groupadd --system mediagoblin --gid 1024 && adduser www-data mediagoblin

USER www-data

# Copy upstream MediaGoblin into the image for use in the build process.
#
# This build process is somewhat complicated, because of Bower/NPM, translations
# and Python dependencies, so it's not really feasible just to copy over a
# requirements.txt like many Python Dockerfiles examples do. We need the full
# source.
#
# While it is possible to copy the source from the current directory like this:
#
# COPY --chown=www-data:www-data . /opt/mediagoblin
#
# that approach to lots of confusing problems when your working directory has
# changed from the default - say you've enabled some plugins or switched
# database type. So instead we're doing a git clone. We could potentially use
# `git archive` but this still wouldn't account for the submodules.
#
# TODO: Figure out a docker-only way to do the build and run from our local
# version, so that local changes are immediately available to the running
# container. Not as easy as it sounds. We have this working with docker-compose,
# but still uses upstream MediaGoblin for the build.
# RUN git clone --depth=1 git://git.savannah.gnu.org/mediagoblin.git --branch master .
RUN git clone --depth=1 https://gitlab.com/BenSturmfels/mediagoblin.git --branch spectrograms .

RUN ./bootstrap.sh
RUN VIRTUALENV_FLAGS='--system-site-packages' ./configure
RUN make

# Run the tests.
RUN ./bin/python -m pytest ./mediagoblin/tests --boxed

# Only safe if being run on a clean git checkout. Otherwise you may have already
# customised mediagoblin.ini to already install these.
RUN echo '[[mediagoblin.media_types.audio]]' >> mediagoblin.ini
RUN echo '[[mediagoblin.media_types.video]]' >> mediagoblin.ini

# Prepare the SQLite database.
#
# TODO: Should probably be done at runtime.
RUN ./bin/gmg dbupdate
RUN ./bin/gmg adduser --username admin --password a --email admin@example.com
RUN ./bin/gmg makeadmin admin

EXPOSE 6543/tcp

# TODO: Is it possible to have a CMD here that is overriden by docker-compose?
CMD ["./lazyserver.sh", "--server-name=broadcast"]
Commit	Line	Data
63a92e3b	1	# A Dockerfile for MediaGoblin hacking.
86891869 BS	2	#
	3	# Most development Docker images are built and run as root. That doesn't work
	4	# here because the `bower` command run within the `make` step, refuses to run as
	5	# root.
	6	#
	7	# To build this Docker image, run:
	8	#
cbd11916	9	# docker build -t mediagoblin-python3 -f Dockerfile-debian-python3-sqlite . # or
486f90a7	10	# docker build -t mediagoblin-python3 - < Dockerfile-debian-python3-sqlite # with no build context
86891869 BS	11	#
	12	# The "- < Dockerfile" format advises Docker not to include the current
	13	# directory as build context.
	14	#
	15	# Before running the image you first need to first assign the "mediagoblin" and
	16	# "user_dev" directories to an artificial group (1024) on the host that is
	17	# mirrored within the image (details below):
	18	#
	19	# sudo chown --recursive :1024 mediagoblin user_dev
	20	# find mediagoblin user_dev -type d -exec chmod 775 {} \;
	21	# find mediagoblin user_dev -type f -exec chmod 664 {} \;
	22	#
	23	# Then you can run the image with the upstream MediaGoblin code:
	24	#
cbd11916	25	# docker run --interactive --tty --publish 6543:6543 mediagoblin-python3
86891869 BS	26	#
	27	# Or you can run with your local "mediagoblin" and "user_dev" directories
	28	# bind-mounted into the container. This provides automatic code reloading and
	29	# persistence:
	30	#
cbd11916	31	# # TODO: Not working.
86891869 BS	32	# docker run --interactive --tty --publish 6543:6543 --volume ./mediagoblin:/opt/mediagoblin/mediagoblin --volume ./extlib:/opt/mediagoblin/extlib mediagoblin-python3
	33	#
	34	# Alternatively you use docker-compose instead of separate build/run steps:
	35	#
	36	# sudo chown --recursive :1024 mediagoblin user_dev
	37	# find mediagoblin user_dev -type d -exec chmod 775 {} \;
	38	# find mediagoblin user_dev -type f -exec chmod 664 {} \;
	39	# docker-compose up --build
cbd11916 BS	40	#
	41	# You can run the test suite with:
	42	#
	43	# docker run --tty mediagoblin-python3 bash -c "bin/python -m pytest ./mediagoblin/tests --boxed"
	44
63a92e3b BS	45
	46	FROM debian:buster
	47
	48	# Install bootstrap and configure dependencies. Currently requires virtualenv
	49	# rather than the more modern python3-venv (should be fixed).
	50	RUN apt-get update && apt-get install -y \
	51	automake \
	52	git \
	53	nodejs \
	54	npm \
	55	python3-dev \
	56	virtualenv
	57
	58	# Install make and runtime dependencies.
86891869 BS	59	#
	60	# Excluding python3-celery here due to conflict with dist-packges for a
	61	# compatible version of billiard.
63a92e3b BS	62	RUN apt-get install -y \
63a92e3b BS	63	python3-alembic \
63a92e3b BS	64	python3-jsonschema \
	65	python3-kombu \
	66	python3-lxml \
86891869	67	python3-migrate \
63a92e3b BS	68	python3-py \
	69	python3-pytest \
	70	python3-pytest-xdist \
	71	python3-six \
86891869	72	python3-snowballstemmer \
63a92e3b	73	python3-sphinx \
86891869	74	python3-sphinxcontrib.websupport \
63a92e3b BS	75	python3-webtest
	76
	77	# Install audio dependencies.
	78	RUN apt-get install -y \
	79	gstreamer1.0-libav \
	80	gstreamer1.0-plugins-bad \
	81	gstreamer1.0-plugins-base \
	82	gstreamer1.0-plugins-good \
	83	gstreamer1.0-plugins-ugly \
4f3f70d1	84	python3-gst-1.0
63a92e3b BS	85
	86	# Install video dependencies.
	87	RUN apt-get install -y \
	88	gir1.2-gst-plugins-base-1.0 \
	89	gir1.2-gstreamer-1.0 \
	90	gstreamer1.0-tools \
	91	python3-gi
	92
0798a889 BS	93	# Install document (PDF-only) dependencies.
	94	# TODO: Check that PDF tests aren't skipped.
	95	RUN apt-get install -y \
	96	poppler-utils
	97
63a92e3b BS	98	# Create working directory.
	99	RUN mkdir /opt/mediagoblin
	100	RUN chown -R www-data:www-data /opt/mediagoblin
	101	WORKDIR /opt/mediagoblin
	102
	103	# Create /var/www because Bower writes some cache files into /var/www during
	104	# make, failing if it doesn't exist.
486f90a7	105	RUN mkdir --mode=g+w /var/www
63a92e3b	106	RUN chown root:www-data /var/www
63a92e3b	107
86891869 BS	108	# Set up custom group to align with volume permissions for mounted
	109	# "mediagoblin/mediagoblin" and "mediagoblin/user_dev".
	110	#
	111	# The problem here is that the host's UID, GID and mode are used in the
	112	# container, but of course the container's user www-data is running under a
	113	# different UID/GID so can't read or write to the volume. It seems like there
	114	# should be a better approach, but we'll align volume permissions between host
	115	# and container as per
	116	# https://medium.com/@nielssj/docker-volumes-and-file-system-permissions-772c1aee23ca
	117	RUN groupadd --system mediagoblin --gid 1024 && adduser www-data mediagoblin
	118
63a92e3b BS	119	USER www-data
63a92e3b BS	120
86891869 BS	121	# Copy upstream MediaGoblin into the image for use in the build process.
	122	#
	123	# This build process is somewhat complicated, because of Bower/NPM, translations
	124	# and Python dependencies, so it's not really feasible just to copy over a
	125	# requirements.txt like many Python Dockerfiles examples do. We need the full
	126	# source.
	127	#
	128	# While it is possible to copy the source from the current directory like this:
	129	#
	130	# COPY --chown=www-data:www-data . /opt/mediagoblin
	131	#
	132	# that approach to lots of confusing problems when your working directory has
	133	# changed from the default - say you've enabled some plugins or switched
	134	# database type. So instead we're doing a git clone. We could potentially use
	135	# `git archive` but this still wouldn't account for the submodules.
16fbe852 BS	136	#
	137	# TODO: Figure out a docker-only way to do the build and run from our local
	138	# version, so that local changes are immediately available to the running
	139	# container. Not as easy as it sounds. We have this working with docker-compose,
	140	# but still uses upstream MediaGoblin for the build.
e77430eb BS	141	# RUN git clone --depth=1 git://git.savannah.gnu.org/mediagoblin.git --branch master .
e77430eb BS	142	RUN git clone --depth=1 https://gitlab.com/BenSturmfels/mediagoblin.git --branch spectrograms .
63a92e3b BS	143
63a92e3b BS	144	RUN ./bootstrap.sh
100f6265	145	RUN VIRTUALENV_FLAGS='--system-site-packages' ./configure
63a92e3b BS	146	RUN make
63a92e3b BS	147
16fbe852 BS	148	# Run the tests.
	149	RUN ./bin/python -m pytest ./mediagoblin/tests --boxed
	150
86891869 BS	151	# Only safe if being run on a clean git checkout. Otherwise you may have already
86891869 BS	152	# customised mediagoblin.ini to already install these.
63a92e3b BS	153	RUN echo '[[mediagoblin.media_types.audio]]' >> mediagoblin.ini
	154	RUN echo '[[mediagoblin.media_types.video]]' >> mediagoblin.ini
	155
86891869 BS	156	# Prepare the SQLite database.
	157	#
	158	# TODO: Should probably be done at runtime.
63a92e3b	159	RUN ./bin/gmg dbupdate
63a92e3b BS	160	RUN ./bin/gmg adduser --username admin --password a --email admin@example.com
	161	RUN ./bin/gmg makeadmin admin
	162
86891869 BS	163	EXPOSE 6543/tcp
	164
	165	# TODO: Is it possible to have a CMD here that is overriden by docker-compose?
	166	CMD ["./lazyserver.sh", "--server-name=broadcast"]