Add FE code to Docker image #207
Conversation
aponcedeleonch
force-pushed
the
add-fe-to-img
branch
from
293ec01 to
8c7ca22
Compare
|
This needs a GH token setup for the repo to be able to download the FE repo since it's private. I tried |
aponcedeleonch
force-pushed
the
add-fe-to-img
branch
from
5dfa143 to
fb4dc41
Compare
aponcedeleonch
force-pushed
the
add-fe-to-img
branch
from
d0c2794 to
01ae938
Compare
aponcedeleonch
force-pushed
the
add-fe-to-img
branch
from
01ae938 to
932785c
Compare
Dockerfile
Outdated
| # -L to follow redirects | ||
| # -s to silence the progress bar | ||
| # -k to allow curl to make insecure connections | ||
| # -H to pass the GITHUB_TOKEN as a header |
There was a problem hiding this comment.
My spider sense is tingling. Why would we allow insecure connections and allow curl to do redirects? Also main might be OK for now, but we should do tags then and fetch a particular blob.
There was a problem hiding this comment.
I removed the insecure connections bit by installing ca-certificates, I was missing that. We need redirects because otherwise we cannot download :( , it returns an empty file. Do you think that at some point we would need something else than main from FE?
scripts/entrypoint.sh
Outdated
| @@ -11,7 +11,7 @@ fi | |||
|
|
|||
| # Step 2: Start the main application (serve) | |||
| echo "Starting the application..." | |||
| exec python -m src.codegate.cli serve --port 8989 --host 0.0.0.0 --vllm-url https://inference.codegate.ai | |||
| exec python -m src.codegate.cli serve --port 8989 --host 0.0.0.0 --vllm-url https://inference.codegate.ai & | |||
There was a problem hiding this comment.
For some reason I can't build the Dockerfile locally (it complains about missing main.zip?) but does this mean that the container stdout wouldn't have codegate log messages? Could we do that the other way around and run nginx on the background instead or forward the messages to stdout?
(Ideally Docker containers are meant to serve 1 process..it would be ideal to serve the FE from the same codegate process as well...but..let's discuss this next week)
There was a problem hiding this comment.
That happens when you don't pass a GH token with enough permissions, we need to read FE private repo. If you setup a token then you should be able to build with something like
docker build \
--build-arg LATEST_COMMIT_SHA=$(curl -LSsk "https://api.github.com/repos/stacklok/codegate-ui/commits?per_page=1" -H "Authorization: Bearer $GITHUB_TOKEN" | jq -r '.[0].sha') \
--secret id=gh_token,env=GITHUB_TOKEN \
-t codegate .;And I checked and it seems that both were forwarding to stdout even though one was at the background. Anyways, just to be extra cautious I followed your suggestion and moved nginx to the background and fastapi now is at the front.
The PR adds:
webbuilderto download and build the FE code..zipfrom GH using a GH token. The token is needed since the repository is private.runtimestage to installnginxand also serve the FE code.