update Dockerfile

colby-swandale · colby-swandale · commit abc9d6ac0098 · 2025-04-10T13:29:32.000Z
diff --git a/.dockerignore b/.dockerignore
@@ -6,14 +6,14 @@
 # Ignore bundler config.
 /.bundle
 
+# Ignore all environment files (except templates).
+/.env*
+!/.env*.erb
+
 # Ignore all default key files.
 /config/master.key
 /config/credentials/*.key
 
-# Ignore all environment files.
-/.env*
-!/.env.example
-
 # Ignore all logfiles and tempfiles.
 /log/*
 /tmp/*
@@ -31,6 +31,7 @@
 !/tmp/storage/.keep
 
 # Ignore assets.
+/node_modules/
 /app/assets/builds/*
 !/app/assets/builds/.keep
 /public/assets
diff --git a/Dockerfile b/Dockerfile
@@ -8,36 +8,36 @@ FROM ruby:$RUBY_VERSION-slim as base
 WORKDIR /rails
 
 # Set production environment
-ENV RAILS_ENV="production" \
-  BUNDLE_WITHOUT="development:test" \
-  BUNDLE_DEPLOYMENT="1"
+ENV BUNDLE_DEPLOYMENT="1" \
+    BUNDLE_PATH="/usr/local/bundle" \
+    BUNDLE_WITHOUT="development:test" \
+    RAILS_ENV="production"
 
 # Update gems and bundler
 RUN gem update --system --no-document && \
-  gem install -N bundler
+    gem install -N bundler
 
-# Throw-away build stages to reduce size of final image
-FROM base as prebuild
+
+# Throw-away build stage to reduce size of final image
+FROM base as build
 
 # Install packages needed to build gems
 RUN --mount=type=cache,id=dev-apt-cache,sharing=locked,target=/var/cache/apt \
-  --mount=type=cache,id=dev-apt-lib,sharing=locked,target=/var/lib/apt \
-  apt-get update -qq && \
-  apt-get install --no-install-recommends -y build-essential curl libpq-dev pkg-config python-is-python3 libyaml-dev
-
-FROM prebuild as build
+    --mount=type=cache,id=dev-apt-lib,sharing=locked,target=/var/lib/apt \
+    apt-get update -qq && \
+    apt-get install --no-install-recommends -y build-essential libpq-dev libyaml-dev pkg-config
 
 # Install application gems
 COPY --link Gemfile Gemfile.lock ./
 RUN --mount=type=cache,id=bld-gem-cache,sharing=locked,target=/srv/vendor \
-  bundle config set app_config .bundle && \
-  bundle config set path /srv/vendor && \
-  bundle install && \
-  bundle exec bootsnap precompile --gemfile && \
-  bundle clean && \
-  mkdir -p vendor && \
-  bundle config set path vendor && \
-  cp -ar /srv/vendor .
+    bundle config set app_config .bundle && \
+    bundle config set path /srv/vendor && \
+    bundle install && \
+    bundle exec bootsnap precompile --gemfile && \
+    bundle clean && \
+    mkdir -p vendor && \
+    bundle config set path vendor && \
+    cp -ar /srv/vendor .
 
 # Copy application code
 COPY --link . .
@@ -46,36 +46,37 @@ COPY --link . .
 RUN bundle exec bootsnap precompile app/ lib/
 
 # Precompiling assets for production without requiring secret RAILS_MASTER_KEY
-# We need to run precompile twice so Propshaft sees the newly compiled assets
-RUN SECRET_KEY_BASE_DUMMY=1 ./bin/rails assets:precompile
 RUN SECRET_KEY_BASE_DUMMY=1 ./bin/rails assets:precompile
 
+
 # Final stage for app image
 FROM base
 
 # Install packages needed for deployment
 RUN --mount=type=cache,id=dev-apt-cache,sharing=locked,target=/var/cache/apt \
-  --mount=type=cache,id=dev-apt-lib,sharing=locked,target=/var/lib/apt \
-  apt-get update -qq && \
-  apt-get install --no-install-recommends -y curl postgresql-client ruby-foreman sudo unzip
+    --mount=type=cache,id=dev-apt-lib,sharing=locked,target=/var/lib/apt \
+    apt-get update -qq && \
+    apt-get install --no-install-recommends -y curl libjemalloc2 libsqlite3-0 libyaml-dev postgresql-client ruby-foreman sudo
 
 # Copy built artifacts: gems, application
-COPY --from=build /usr/local/bundle /usr/local/bundle
+COPY --from=build "${BUNDLE_PATH}" "${BUNDLE_PATH}"
 COPY --from=build /rails /rails
 
 # Run and own only the runtime files as a non-root user for security
 RUN groupadd --system --gid 1000 rails && \
-  useradd rails --uid 1000 --gid 1000 --create-home --shell /bin/bash && \
-  sed -i 's/env_reset/env_keep="*"/' /etc/sudoers && \
-  chown -R 1000:1000 db log tmp
+    useradd rails --uid 1000 --gid 1000 --create-home --shell /bin/bash && \
+    sed -i 's/env_reset/env_keep="*"/' /etc/sudoers && \
+    chown -R 1000:1000 db log storage tmp
 USER 1000:1000
 
 # Deployment options
-ENV RUBY_YJIT_ENABLE="1"
+ENV LD_PRELOAD="libjemalloc.so.2" \
+    MALLOC_CONF="dirty_decay_ms:1000,narenas:2,background_thread:true" \
+    RUBY_YJIT_ENABLE="1"
 
 # Entrypoint prepares the database.
 ENTRYPOINT ["/rails/bin/docker-entrypoint"]
 
 # Start the server by default, this can be overwritten at runtime
-EXPOSE 3000
+EXPOSE 80
 CMD ["foreman", "start", "--procfile=Procfile"]
diff --git a/Gemfile b/Gemfile
@@ -7,6 +7,7 @@ gem "bootsnap", ">= 1.1.0", require: false
 gem "puma"
 gem "propshaft"
 gem "sqlite3"
+gem "thruster"
 
 gem "elasticsearch-persistence"
 gem "opensearch-aws-sigv4"
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -110,16 +110,10 @@ GEM
       bigdecimal
       rexml
     crass (1.0.6)
-    datadog-ci (0.8.3)
-      msgpack
     date (3.4.1)
-    ddtrace (1.23.3)
-      datadog-ci (~> 0.8.1)
-      debase-ruby_core_source (= 3.3.1)
-      libdatadog (~> 7.0.0.1.0)
-      libddwaf (~> 1.14.0.0.0)
+    ddtrace (0.48.0)
+      ffi (~> 1.0)
       msgpack
-    debase-ruby_core_source (3.3.1)
     debug (1.10.0)
       irb (~> 1.10)
       reline (>= 0.3.8)
@@ -251,17 +245,6 @@ GEM
       kaminari-core (= 1.2.2)
     kaminari-core (1.2.2)
     language_server-protocol (3.17.0.3)
-    libdatadog (7.0.0.1.0)
-    libdatadog (7.0.0.1.0-aarch64-linux)
-    libdatadog (7.0.0.1.0-x86_64-linux)
-    libddwaf (1.14.0.0.0-aarch64-linux)
-      ffi (~> 1.0)
-    libddwaf (1.14.0.0.0-arm64-darwin)
-      ffi (~> 1.0)
-    libddwaf (1.14.0.0.0-x86_64-darwin)
-      ffi (~> 1.0)
-    libddwaf (1.14.0.0.0-x86_64-linux)
-      ffi (~> 1.0)
     lint_roller (1.1.0)
     listen (3.9.0)
       rb-fsevent (~> 0.10, >= 0.10.3)
@@ -460,6 +443,10 @@ GEM
     tailwindcss-ruby (4.0.14-x86_64-darwin)
     tailwindcss-ruby (4.0.14-x86_64-linux-gnu)
     thor (1.3.2)
+    thruster (0.1.12-aarch64-linux)
+    thruster (0.1.12-arm64-darwin)
+    thruster (0.1.12-x86_64-darwin)
+    thruster (0.1.12-x86_64-linux)
     timeout (0.4.3)
     trenni (3.13.1)
       rake-compiler
@@ -543,6 +530,7 @@ DEPENDENCIES
   standard-rails
   stimulus-rails
   tailwindcss-rails
+  thruster
   trenni-sanitize
   tty-spinner
   typhoeus
diff --git a/Procfile b/Procfile
@@ -1 +1 @@
-web: bundle exec rails server -p ${PORT:-3000}
+web: thrust bin/rails server -p ${PORT:-3000}
diff --git a/bin/docker-entrypoint b/bin/docker-entrypoint
@@ -1,8 +1,7 @@
 #!/bin/bash -e
 
-# If running the rails server then create or migrate existing database
-# if [ "${1}" == "./bin/rails" ] && [ "${2}" == "server" ]; then
-#   ./bin/rails db:prepare
-# fi
+if [ "${*}" == "foreman start --procfile=Procfile" ]; then
+  ./bin/rails db:prepare
+fi
 
 exec "${@}"
diff --git a/config/dockerfile.yml b/config/dockerfile.yml
@@ -3,8 +3,15 @@
 ---
 options:
   cache: true
+  jemalloc: true
   parallel: true
   postgresql: true
   procfile: Procfile
   sudo: true
+  thruster: true
   yjit: true
+  packages:
+    build:
+    - libyaml-dev
+    deploy:
+    - libyaml-dev

Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-web: bundle exec rails server -p ${PORT:-3000}`
	`1`	`+web: thrust bin/rails server -p ${PORT:-3000}`