Spaces:

NitinBot001
/

Penpot

Sleeping

App Files Files Community

NitinBot001 commited on Feb 17

Commit

4b33e61

verified ·

1 Parent(s): aebb070

Update Dockerfile

Browse files

Files changed (1) hide show

Dockerfile +217 -60

Dockerfile CHANGED Viewed

@@ -1,67 +1,224 @@
-# Dockerfile for running Penpot on Hugging Face Spaces
-# WARNING: This is NOT an official Penpot deployment method
-# Hugging Face Spaces does NOT support Docker-in-Docker or multi-container setups well
-# This is a SIMPLIFIED single-container approach with significant limitations
-# For production use, please use the official docker-compose setup from:
-# https://raw.githubusercontent.com/penpot/penpot/main/docker/images/docker-compose.yaml
-FROM penpotapp/frontend:latest
-# Switch to root to install dependencies
 USER root
-# Install system dependencies
-RUN apt-get update && apt-get install -y \
-    postgresql-15 \
-    supervisor \
-    wget \
-    curl \
-    && rm -rf /var/lib/apt/lists/*
-# Setup PostgreSQL
-RUN mkdir -p /var/lib/postgresql/data && \
-    chown -R postgres:postgres /var/lib/postgresql && \
-    su - postgres -c "/usr/lib/postgresql/15/bin/initdb -D /var/lib/postgresql/data"
-# Create assets directory
-RUN mkdir -p /opt/data/assets && chmod -R 755 /opt/data
-# Environment variables for Penpot
-ENV PENPOT_FLAGS="disable-email-verification enable-prepl-server disable-secure-session-cookies demo-users registration login-with-password" \
-    PENPOT_PUBLIC_URI="http://0.0.0.0:7860" \
-    PENPOT_DATABASE_URI="postgresql://localhost/penpot" \
-    PENPOT_DATABASE_USERNAME="penpot" \
-    PENPOT_DATABASE_PASSWORD="penpot" \
-    PENPOT_SECRET_KEY="change-this-for-production-use-random-key" \
-    PENPOT_HTTP_SERVER_HOST="0.0.0.0" \
-    PENPOT_HTTP_SERVER_PORT="7860"
-# Expose port 7860 (Hugging Face Spaces default)
 EXPOSE 7860
-# Create startup script
-RUN echo '#!/bin/bash\n\
-set -e\n\
-\n\
-echo "Starting PostgreSQL..."\n\
-su - postgres -c "/usr/lib/postgresql/15/bin/pg_ctl -D /var/lib/postgresql/data -l /var/log/postgresql.log start"\n\
-sleep 5\n\
-\n\
-echo "Creating database..."\n\
-su - postgres -c "psql -c \"CREATE DATABASE penpot;\"" || true\n\
-su - postgres -c "psql -c \"CREATE USER penpot WITH PASSWORD '\''penpot'\'';\"" || true\n\
-su - postgres -c "psql -c \"GRANT ALL PRIVILEGES ON DATABASE penpot TO penpot;\"" || true\n\
-\n\
-echo "Starting Penpot..."\n\
-exec /opt/run.sh\n\
-' > /start.sh && chmod +x /start.sh
-CMD ["/start.sh"]
-# IMPORTANT NOTES:
-# 1. This Dockerfile is NOT suitable for production use
-# 2. Hugging Face Spaces may not support this complex setup
-# 3. For proper deployment, use docker-compose with the official setup
-# 4. This lacks Redis/Valkey, proper backend service, and exporter service
-# 5. Consider using Elestio or dedicated hosting instead

+# ============================================================
+# Agenta Self-Hosted — Hugging Face Spaces Dockerfile
+# ============================================================
+# HF Spaces requirements:
+#   - Single container, port 7860 exposed
+#   - No privileged / Docker-in-Docker
+#   - Runs as non-root after setup (HF uid 1000)
+# Strategy:
+#   - supervisord manages: PostgreSQL, Redis, Agenta API, Agenta Web, nginx
+#   - nginx reverse-proxies everything on port 7860
+# ============================================================
+FROM ubuntu:22.04
+# ---------- Avoid interactive prompts ----------
+ENV DEBIAN_FRONTEND=noninteractive
+ENV TZ=UTC
+# ---------- System dependencies ----------
+RUN apt-get update && apt-get install -y \
+    curl wget git ca-certificates gnupg lsb-release \
+    supervisor nginx \
+    postgresql postgresql-contrib \
+    redis-server \
+    python3.11 python3.11-venv python3.11-dev python3-pip \
+    build-essential libpq-dev \
+    nodejs npm \
+    && npm install -g n && n 20 \
+    && hash -r \
+    && apt-get clean && rm -rf /var/lib/apt/lists/*
+# ---------- Environment variables ----------
+ENV PORT=7860
+ENV AGENTA_WEB_URL=http://localhost:7860
+ENV AGENTA_API_URL=http://localhost:7860/api
+ENV AGENTA_SERVICES_URL=http://localhost:7860/services
+ENV AGENTA_API_INTERNAL_URL=http://localhost:8000
+# Postgres
+ENV POSTGRES_USER=agenta
+ENV POSTGRES_PASSWORD=agenta_secret
+ENV POSTGRES_DB_CORE=agenta_core
+ENV POSTGRES_DB_TRACING=agenta_tracing
+ENV POSTGRES_DB_SUPERTOKENS=agenta_supertokens
+ENV POSTGRES_URI_CORE=postgresql+asyncpg://agenta:agenta_secret@localhost:5432/agenta_core
+ENV POSTGRES_URI_TRACING=postgresql+asyncpg://agenta:agenta_secret@localhost:5432/agenta_tracing
+ENV POSTGRES_URI_SUPERTOKENS=postgresql://agenta:agenta_secret@localhost:5432/agenta_supertokens
+# Redis
+ENV REDIS_URI=redis://localhost:6379/0
+# Auth keys — CHANGE THESE in HF Space Secrets!
+ENV AGENTA_AUTH_KEY=changeme_auth_key_32chars_minimum
+ENV AGENTA_CRYPT_KEY=changeme_crypt_key_32charsminimum
+# API internals
+ENV PYTHONPATH=/app
+ENV PYTHONUNBUFFERED=1
+WORKDIR /app
+# ---------- Clone Agenta ----------
+RUN git clone --depth 1 https://github.com/Agenta-AI/agenta .
+# ---------- Python virtualenv + API deps ----------
+RUN python3.11 -m venv /app/venv && \
+    /app/venv/bin/pip install --upgrade pip && \
+    /app/venv/bin/pip install \
+        fastapi uvicorn[standard] \
+        sqlalchemy[asyncio] asyncpg alembic \
+        redis celery \
+        pydantic pydantic-settings \
+        httpx tenacity \
+        python-multipart python-jose[cryptography] \
+        passlib[bcrypt] \
+        supertokens-python \
+        opentelemetry-sdk opentelemetry-exporter-otlp \
+        posthog \
+        agenta || true
+# Install from repo requirements if present
+RUN [ -f /app/api/requirements.txt ] && \
+    /app/venv/bin/pip install -r /app/api/requirements.txt || true
+RUN [ -f /app/oss/src/requirements.txt ] && \
+    /app/venv/bin/pip install -r /app/oss/src/requirements.txt || true
+# ---------- Web (Next.js) build ----------
+# Locate the web app directory
+RUN WEB_DIR=$(find /app -maxdepth 3 -name "package.json" \
+        -not -path "*/node_modules/*" \
+        -not -path "/app/package.json" | head -1 | xargs dirname) && \
+    echo "Web dir: $WEB_DIR" && \
+    cd "$WEB_DIR" && \
+    NEXT_PUBLIC_AGENTA_API_URL=http://localhost:7860/api \
+    npm install && \
+    NEXT_PUBLIC_AGENTA_API_URL=http://localhost:7860/api npm run build || true
+# ---------- PostgreSQL setup ----------
+USER postgres
+RUN /etc/init.d/postgresql start && \
+    psql -c "CREATE USER ${POSTGRES_USER} WITH PASSWORD '${POSTGRES_PASSWORD}';" && \
+    psql -c "CREATE DATABASE ${POSTGRES_DB_CORE} OWNER ${POSTGRES_USER};" && \
+    psql -c "CREATE DATABASE ${POSTGRES_DB_TRACING} OWNER ${POSTGRES_USER};" && \
+    psql -c "CREATE DATABASE ${POSTGRES_DB_SUPERTOKENS} OWNER ${POSTGRES_USER};" && \
+    /etc/init.d/postgresql stop
 USER root
+# ---------- Nginx config (reverse proxy on 7860) ----------
+RUN cat > /etc/nginx/sites-available/agenta <<'EOF'
+server {
+    listen 7860;
+    server_name _;
+    client_max_body_size 50M;
+    # Agenta Web (Next.js on port 3000)
+    location / {
+        proxy_pass http://127.0.0.1:3000;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection 'upgrade';
+        proxy_set_header Host $host;
+        proxy_cache_bypass $http_upgrade;
+    }
+    # Agenta API (FastAPI on port 8000)
+    location /api/ {
+        proxy_pass http://127.0.0.1:8000/;
+        proxy_http_version 1.1;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
+    # Services endpoint
+    location /services/ {
+        proxy_pass http://127.0.0.1:8000/services/;
+        proxy_http_version 1.1;
+        proxy_set_header Host $host;
+    }
+}
+EOF
+RUN ln -sf /etc/nginx/sites-available/agenta /etc/nginx/sites-enabled/agenta && \
+    rm -f /etc/nginx/sites-enabled/default
+# ---------- Supervisord config ----------
+RUN mkdir -p /var/log/supervisor
+RUN cat > /etc/supervisor/conf.d/agenta.conf <<'EOF'
+[supervisord]
+nodaemon=true
+logfile=/var/log/supervisor/supervisord.log
+pidfile=/var/run/supervisord.pid
+[program:postgresql]
+command=/usr/lib/postgresql/14/bin/postgres -D /var/lib/postgresql/14/main -c config_file=/etc/postgresql/14/main/postgresql.conf
+user=postgres
+autostart=true
+autorestart=true
+stderr_logfile=/var/log/supervisor/postgres.err.log
+stdout_logfile=/var/log/supervisor/postgres.out.log
+priority=1
+[program:redis]
+command=redis-server --daemonize no --bind 127.0.0.1 --port 6379
+autostart=true
+autorestart=true
+stderr_logfile=/var/log/supervisor/redis.err.log
+stdout_logfile=/var/log/supervisor/redis.out.log
+priority=2
+[program:agenta-api]
+command=/app/venv/bin/uvicorn main:app --host 0.0.0.0 --port 8000
+directory=/app/api
+environment=PYTHONPATH=/app,POSTGRES_URI_CORE=%(ENV_POSTGRES_URI_CORE)s,POSTGRES_URI_TRACING=%(ENV_POSTGRES_URI_TRACING)s,REDIS_URI=%(ENV_REDIS_URI)s,AGENTA_AUTH_KEY=%(ENV_AGENTA_AUTH_KEY)s,AGENTA_CRYPT_KEY=%(ENV_AGENTA_CRYPT_KEY)s,AGENTA_API_URL=%(ENV_AGENTA_API_URL)s,AGENTA_WEB_URL=%(ENV_AGENTA_WEB_URL)s
+autostart=true
+autorestart=true
+stderr_logfile=/var/log/supervisor/api.err.log
+stdout_logfile=/var/log/supervisor/api.out.log
+priority=10
+startsecs=5
+[program:agenta-web]
+command=node server.js
+directory=/app/web/.next/standalone
+environment=PORT=3000,HOSTNAME=0.0.0.0,NEXT_PUBLIC_AGENTA_API_URL=http://localhost:7860/api
+autostart=true
+autorestart=true
+stderr_logfile=/var/log/supervisor/web.err.log
+stdout_logfile=/var/log/supervisor/web.out.log
+priority=20
+startsecs=5
+[program:nginx]
+command=/usr/sbin/nginx -g "daemon off;"
+autostart=true
+autorestart=true
+stderr_logfile=/var/log/supervisor/nginx.err.log
+stdout_logfile=/var/log/supervisor/nginx.out.log
+priority=30
+EOF
+# ---------- Entrypoint script ----------
+RUN cat > /app/entrypoint.sh <<'SCRIPT'
+#!/bin/bash
+set -e
+echo "==> Waiting for PostgreSQL to be ready..."
+su -c "/usr/lib/postgresql/14/bin/pg_ctl start -D /var/lib/postgresql/14/main" postgres &
+sleep 4
+echo "==> Running Agenta DB migrations..."
+cd /app && /app/venv/bin/python -m alembic \
+    -c oss/databases/postgres/migrations/core/alembic.ini upgrade head 2>/dev/null || \
+    echo "Migration step skipped or already up to date."
+echo "==> Starting all services via supervisord..."
+exec /usr/bin/supervisord -c /etc/supervisor/supervisord.conf
+SCRIPT
+RUN chmod +x /app/entrypoint.sh
+# ---------- Expose port ----------
 EXPOSE 7860
+# ---------- Run ----------
+CMD ["/app/entrypoint.sh"]