# syntax=docker/dockerfile:1.4 # This needs to be bookworm-slim because the Ruby image is built on bookworm-slim ARG NODE_VERSION="20.9-bookworm-slim" FROM ghcr.io/moritzheiber/ruby-jemalloc:3.2.2-slim as ruby FROM node:${NODE_VERSION} as build COPY --link --from=ruby /opt/ruby /opt/ruby ENV DEBIAN_FRONTEND="noninteractive" \ PATH="${PATH}:/opt/ruby/bin" SHELL ["/bin/bash", "-o", "pipefail", "-c"] WORKDIR /opt/mastodon # hadolint ignore=DL3008 RUN apt-get update && \ apt-get -yq dist-upgrade && \ apt-get install -y --no-install-recommends build-essential \ git \ libicu-dev \ libidn-dev \ libpq-dev \ libjemalloc-dev \ zlib1g-dev \ libgdbm-dev \ libgmp-dev \ libssl-dev \ libyaml-dev \ ca-certificates \ libreadline8 \ python3 \ shared-mime-info && \ bundle config set --local deployment 'true' && \ bundle config set --local without 'development test' && \ bundle config set silence_root_warning true && \ corepack enable COPY Gemfile* package.json yarn.lock .yarnrc.yml /opt/mastodon/ COPY .yarn /opt/mastodon/.yarn RUN bundle install -j"$(nproc)" RUN yarn workspaces focus --all --production && \ yarn cache clean FROM node:${NODE_VERSION} # Use those args to specify your own version flags & suffixes ARG MASTODON_VERSION_PRERELEASE="" ARG MASTODON_VERSION_METADATA="" ARG UID="991" ARG GID="991" COPY --link --from=ruby /opt/ruby /opt/ruby SHELL ["/bin/bash", "-o", "pipefail", "-c"] ENV DEBIAN_FRONTEND="noninteractive" \ PATH="${PATH}:/opt/ruby/bin:/opt/mastodon/bin" # Ignoring these here since we don't want to pin any versions and the Debian image removes apt-get content after use # hadolint ignore=DL3008,DL3009 RUN apt-get update && \ echo "Etc/UTC" > /etc/localtime && \ groupadd -g "${GID}" mastodon && \ useradd -l -u "$UID" -g "${GID}" -m -d /opt/mastodon mastodon && \ apt-get -y --no-install-recommends install whois \ wget \ procps \ libssl3 \ libpq5 \ imagemagick \ ffmpeg \ libjemalloc2 \ libicu72 \ libidn12 \ libyaml-0-2 \ file \ ca-certificates \ tzdata \ libreadline8 \ tini && \ ln -s /opt/mastodon /mastodon && \ corepack enable # Note: no, cleaning here since Debian does this automatically # See the file /etc/apt/apt.conf.d/docker-clean within the Docker image's filesystem COPY --chown=mastodon:mastodon . /opt/mastodon COPY --chown=mastodon:mastodon --from=build /opt/mastodon /opt/mastodon ENV RAILS_ENV="production" \ NODE_ENV="production" \ RAILS_SERVE_STATIC_FILES="true" \ BIND="0.0.0.0" \ MASTODON_VERSION_PRERELEASE="${MASTODON_VERSION_PRERELEASE}" \ MASTODON_VERSION_METADATA="${MASTODON_VERSION_METADATA}" # Set the run user USER mastodon WORKDIR /opt/mastodon # Precompile assets RUN OTP_SECRET=precompile_placeholder SECRET_KEY_BASE=precompile_placeholder rails assets:precompile # Set the work dir and the container entry point ENTRYPOINT ["/usr/bin/tini", "--"] EXPOSE 3000 4000