refactor: Switch to debian-based Docker image for compatibility

Dockerfile

@@ -1,25 +1,73 @@
-# Multi-stage build for Python backend
-# Build stage
-FROM python:3.11-alpine as builder
+# Stage 1: Builder
+# Use a standard Debian-based image which has better compatibility for wheels
+FROM python:3.11-slim-bookworm as builder
 
 # Install build dependencies
-RUN apk add --no-cache \
-    gcc \
-    musl-dev \
-    libffi-dev \
-    openssl-dev \
-    python3-dev \
-    postgresql-dev \
-    curl
-
-# Set the working directory
+# We use apt-get instead of apk
+RUN apt-get update && apt-get install -y \
+    build-essential \
+    libpq-dev \
+    curl \
+    --no-install-recommends && \
+    rm -rf /var/lib/apt/lists/*
+
+WORKDIR /app
+
+COPY requirements.txt .
+
+# Create requirements for production (exclude dev dependencies)
+RUN grep -v "pytest" requirements.txt > requirements-prod.txt
+
+# Set a higher timeout for pip installations
+ENV PIP_DEFAULT_TIMEOUT=1000
+
+# Install dependencies to a local directory
+RUN pip install --no-cache-dir --user -r requirements-prod.txt
+
+
+# Stage 2: Final Production Image
+FROM python:3.11-slim-bookworm
+
+# Install runtime dependencies only
+RUN apt-get update && apt-get install -y \
+    curl \
+    libpq5 \
+    --no-install-recommends && \
+    rm -rf /var/lib/apt/lists/*
+
+# Create non-root user for security
+RUN addgroup -S appgroup --gid 1001 && \
+    adduser -S appuser --uid 1001 --ingroup appgroup
+
 WORKDIR /app
 
-# --- TEMPORARY DEBUGGING STEP ---
-# We will install pip and then run a command to get the exact platform tag.
-RUN python -m ensurepip
-RUN pip install --upgrade pip
-RUN pip debug --verbose
+# Copy installed packages from builder stage
+COPY --from=builder /root/.local /home/appuser/.local
+
+# Copy the application code
+COPY --chown=appuser:appgroup ./src /app/src
+COPY --chown=appuser:appgroup ./scripts /app/scripts
+COPY --chown=appuser:appgroup ./alembic /app/alembic
+COPY --chown=appuser:appgroup ./alembic.ini /app/alembic.ini
+
+# Grant ownership of home directory to appuser
+RUN chown -R appuser:appgroup /home/appuser
+
+# Create data directory and set permissions
+RUN mkdir -p /app/data && chown -R appuser:appgroup /app/data
+
+# Make scripts executable
+RUN chmod +x /app/scripts/*.sh
+
+# Switch to non-root user
+USER appuser
+
+# Ensure user's local bin is in PATH
+ENV PATH="/home/appuser/.local/bin:${PATH}"
+
+# Expose port 8000
+EXPOSE 8000
 
-# The build will stop here for now.
-CMD ["echo", "Debugging complete. Check logs for platform info."]
+# Define the command to run the application
+# This will be overridden by the command in Hugging Face settings, but it's good practice to have it.
+CMD ["/app/scripts/init-db.sh"]

requirements.txt

@@ -2,7 +2,7 @@ fastapi
 uvicorn[standard]
 python-multipart
 pydantic
-PyMuPDF @ https://files.pythonhosted.org/packages/b5/f2/1335a5897823a3d134826b43e8a482a0e5b9622c5e339b4e13f6b3b4f67c/PyMuPDF-1.24.9-cp312-cp312-manylinux_2_17_x86_64.manylinux2014_x86_64.whl#sha256=8d309c368f644396c44c14586f7525c39c5c343d29b33cd41455c889395c4c59
+PyMuPDF
 pdfminer.six
 beautifulsoup4
 sentence-transformers