opensource/dify
2
0
Fork 0
mirror of https://github.com/langgenius/dify.git synced 2026-06-23 04:11:09 +08:00
Code Issues Packages Projects Releases Wiki Activity
a0bdb16cb9
dify/dify-agent/Dockerfile

69 lines
2.1 KiB
Docker
Raw Blame History

# Dedicated image for the standalone Dify Agent backend server.
#
# It is laid out to match how the service is deployed today (see the
# agent_backend compose service): the virtualenv lives at /app/api/.venv and
# the server is started with
# cd /app/api && .venv/bin/uvicorn dify_agent.server.app:app --host 0.0.0.0 --port 5050
#
# Unlike the dify-api image (which only installs the base `dify-agent`
# dependency), this image installs the `[server]` extra, so jwcrypto,
# shell-session-manager, fastapi, uvicorn, etc. are present and the server can
# actually start. dify-api is intentionally left lean.
# base image
FROM python:3.12-slim-bookworm AS base
WORKDIR /app/api
# Install uv
ENV UV_VERSION=0.8.9
RUN pip install --no-cache-dir uv==${UV_VERSION}
FROM base AS packages
# The build context is the repository root (see build-push.yml), so paths are
# repo-root relative. dify-agent ships its own uv.lock that resolves the server
# extra, so this builds standalone without the api project.
COPY dify-agent/pyproject.toml dify-agent/uv.lock dify-agent/README.md ./
COPY dify-agent/src ./src
# Trust the checked-in lock during image builds and install the server extra.
RUN uv sync --frozen --no-dev --no-editable --extra server
# production stage
FROM base AS production
ENV TZ=UTC
ENV LANG=C.UTF-8
ENV LC_ALL=C.UTF-8
ENV PYTHONIOENCODING=utf-8
ENV PYTHONDONTWRITEBYTECODE=1
ENV PYTHONUNBUFFERED=1
WORKDIR /app/api
# Create non-root user (uid matches the dify-api image convention)
ARG dify_uid=1001
RUN groupadd -r -g ${dify_uid} dify && \
useradd -r -u ${dify_uid} -g ${dify_uid} -s /bin/bash dify
# Copy the resolved virtualenv. The dify-agent package is installed
# non-editable, so the source is already baked into site-packages.
ENV VIRTUAL_ENV=/app/api/.venv
COPY --from=packages --chown=dify:dify ${VIRTUAL_ENV} ${VIRTUAL_ENV}
ENV PATH="${VIRTUAL_ENV}/bin:${PATH}"
# storage is bind-mounted at runtime; pre-create it so the dify user can write.
RUN mkdir -p /app/api/storage && chown -R dify:dify /app/api
ARG COMMIT_SHA
ENV COMMIT_SHA=${COMMIT_SHA}
EXPOSE 5050
USER dify
CMD ["uvicorn", "dify_agent.server.app:app", "--host", "0.0.0.0", "--port", "5050"]
Reference in New Issue View Git Blame Copy Permalink