# Use python:3.9-slim-bookworm to ensure stable Debian packages
FROM python:3.9-slim-bookworm

# 1. Install system dependencies (Poppler is required for PDF)
RUN apt-get update && apt-get install -y \
    libgl1 \
    libglib2.0-0 \
    poppler-utils \
    && rm -rf /var/lib/apt/lists/*

# 2. Set up user permissions (Crucial for Spaces)
RUN useradd -m -u 1000 user
RUN mkdir -p /app && chown user:user /app

# 3. Switch to non-root user
USER user
ENV PATH="/home/user/.local/bin:$PATH"

# 4. Set working directory
WORKDIR /app

# 5. Install Python dependencies
COPY --chown=user ./requirements.txt requirements.txt
RUN pip install --no-cache-dir --upgrade -r requirements.txt

# 6. Copy application code
COPY --chown=user . /app

# 7. Start the application
CMD ["uvicorn", "app:app", "--host", "0.0.0.0", "--port", "7860"]