Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Use astral uv to build and manage dependencies #87

Merged
merged 4 commits into from
Nov 12, 2024
+543 −56
Merged

Use astral uv to build and manage dependencies #87

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
5278cf0
chore: switch to uv for building
georgepstaylor Nov 12, 2024
50eb2e2
Update Dockerfile
georgepstaylor Nov 12, 2024
0cd2ba2
Update image-build.yml
georgepstaylor Nov 12, 2024
63943e1
Update image-build.yml
georgepstaylor Nov 12, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
21 changes: 13 additions & 8 deletions .github/workflows/image-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,13 +12,14 @@ on:
- opened
- synchronize
- reopened


run-name: "Image Build for tag ${{ github.ref_name }}"

permissions:
packages: write
contents: write
pull-requests: write
issues: write

jobs:
build-and-push:
Expand All @@ -40,12 +41,12 @@ jobs:
- name: Output VERSION_REF
id: output_version_ref
run: |
if [ "${{ github.event_name }}" == "pull_request" ]; then
# if on a PR we need to get the current branch name
echo "VERSION_REF=${{ github.event.pull_request.head.ref }}" >> $GITHUB_OUTPUT
else
echo "VERSION_REF=${{ inputs.tag }}" >> $GITHUB_OUTPUT
fi
if [ "${{ github.event_name }}" == "pull_request" ]; then
# if on a PR we need to get the current branch name
echo "VERSION_REF=${{ github.event.pull_request.head.ref }}" >> $GITHUB_OUTPUT
else
echo "VERSION_REF=${{ inputs.tag }}" >> $GITHUB_OUTPUT
fi

- name: Set up Docker Buildx
id: setup_buildx
Expand All @@ -65,11 +66,15 @@ jobs:
context: .
platforms: linux/amd64, linux/arm64
push: true
cache-from: type=gha
cache-to: type=gha,mode=max
tags: ghcr.io/ministryofjustice/hmpps-ldap-automation:${{ steps.safe_tag.outputs.SAFE_TAG }}
build-args: |
VERSION_REF=${{ steps.output_version_ref.outputs.VERSION_REF }}

- name: Comment image tag on PR
env:
GH_TOKEN: ${{ github.token }}
if: github.event_name == 'pull_request'
run: |
gh pr comment ${{ github.event.pull_request.number }} --body "Image built and pushed to ghcr.io/ministryofjustice/hmpps-ldap-automation:${{ steps.safe_tag.outputs.SAFE_TAG }}"
Expand Down
45 changes: 39 additions & 6 deletions Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,12 +1,45 @@
FROM python:3.10-alpine

LABEL org.opencontainers.image.source = "https://github.com/ministryofjustice/hmpps-ldap-automation-cli"
FROM ghcr.io/astral-sh/uv:python3.12-bookworm AS builder
ENV UV_COMPILE_BYTECODE=1 \
UV_LINK_MODE=copy \
UV_PYTHON_DOWNLOADS=never

ARG VERSION_REF=main
RUN apt-get update && apt-get install -y --no-install-recommends \
bash \
ca-certificates \
git \
build-essential \
libffi-dev \
libldap2-dev \
ldap-utils \
python3-dev \
libssl-dev \
libsasl2-dev

# Basic tools for now
RUN apk add --update --no-cache bash ca-certificates git build-base libffi-dev openssl-dev gcc musl-dev gcc g++ linux-headers build-base openldap-dev python3-dev
WORKDIR /code

RUN python3 -m pip install --upgrade pip && python3 -m pip install git+https://github.com/ministryofjustice/hmpps-ldap-automation-cli.git@${VERSION_REF}
# Install dependencies
RUN --mount=type=cache,target=/root/.cache/uv \
--mount=type=bind,source=uv.lock,target=uv.lock \
--mount=type=bind,source=pyproject.toml,target=pyproject.toml \
uv sync --frozen --no-install-project --no-dev

# install cli

COPY . .
RUN --mount=type=cache,target=/root/.cache/uv \
uv sync --frozen --no-dev

FROM python:3.12-slim-bookworm
# RUN apk add --update --no-cache bash ca-certificates git build-base libffi-dev openssl-dev gcc musl-dev gcc g++ linux-headers build-base openldap-dev python3-dev
RUN apt-get update && apt-get install -y --no-install-recommends \
bash \
ca-certificates \
git \
ldap-utils

COPY --from=builder /code /code
ENV PATH="/code/.venv/bin:$PATH"
CMD ["ldap-automation"]

LABEL org.opencontainers.image.source=https://github.com/ministryofjustice/hmpps-ldap-automation-cli
41 changes: 26 additions & 15 deletions pyproject.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,16 +1,27 @@
[tool.black]
# PEP-8 line length is not very practical
line-length = 88
include = '\.pyi?$'
exclude = '''
/(
\.git
| \.py_cache
| \venv
)/
'''
[project]
name = "hmpps-ldap-automation-cli"
version = "1.0.1"
description = "An Automation CLI for HMPPS Delius LDAP"
readme = "README.md"
requires-python = ">=3.12"
dependencies = [
"click>=8.1.7",
"gitpython>=3.1.43",
"jinja2>=3.1.4",
"ldap3>=2.9.1",
"oracledb>=2.5.0",
"pygithub>=2.5.0",
"pyjwt>=2.9.0",
"python-dotenv>=1.0.1",
"python-ldap>=3.4.4",
"requests>=2.32.3",
"setuptools>=75.4.0",
]

[tool.codespell]
skip = './venv,./rbac,./rendered'
count = ''
quiet-level = 3
[build-system]
requires = ["setuptools"]
build-backend = "setuptools.build_meta"


[project.scripts]
ldap-automation = "cli:main_group"
2 changes: 1 addition & 1 deletion requirements.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
click==8.1.7
ldap3==2.9.1
oracledb==1.4
oracledb==2.4.1
PyGithub
GitPython==3.1.43
pyjwt==2.9.0
Expand Down
26 changes: 0 additions & 26 deletions setup.py
View file
Open in desktop

This file was deleted.

Loading
Loading