create nix dockerfile

Author: markbeep

.github/workflows/nix-build.yaml

@@ -0,0 +1,62 @@
+name: Build and Deploy Dockerfile
+
+on:
+  push:
+    branches:
+      - nix-dockerfile
+
+env:
+  DOCKER_TAG: ${{ secrets.DOCKER_HUB_USERNAME }}/audiobookrequest
+
+jobs:
+  website:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          submodules: recursive
+      - name: Install Nix
+        uses: DeterminateSystems/nix-installer-action@main
+      - name: Enable magic Nix cache
+        uses: DeterminateSystems/magic-nix-cache-action@main
+      - name: Set version
+        run: |
+          if [ "${{ github.event_name }}" == "release" ]; then
+            VERSION="${{ github.event.release.tag_name }}"
+            echo $VERSION > static/version
+          else
+            github_sha_hash=${{ github.sha }}
+            echo nightly:${github_sha_hash:0:7} > static/version
+          fi
+      - name: Build Docker image using Nix
+        run: nix build ".#docker"
+
+      - name: Load image
+        run: |
+          export IMAGE_TAG=$(docker load < result | grep -Po 'Loaded image: \K.*')
+          echo "Loaded image ${IMAGE_TAG}"
+          echo "IMAGE_TAG=${IMAGE_TAG}" >> $GITHUB_ENV
+
+      - name: Login to Docker Hub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.DOCKER_HUB_USERNAME }}
+          password: ${{ secrets.DOCKER_HUB_ACCESS_TOKEN }}
+
+      - name: Push image
+        run: |
+          if [ "${{ github.event_name }}" == "release" ]; then
+            VERSION="${{ github.event.release.tag_name }}"
+            MAJOR=$(echo $VERSION | cut -d. -f1)
+            MINOR=$(echo $VERSION | cut -d. -f2)
+            PATCH=$(echo $VERSION | cut -d. -f3)
+            docker tag $IMAGE_TAG "${DOCKER_TAG}:$VERSION"
+            docker tag $IMAGE_TAG "${DOCKER_TAG}:$MAJOR.$MINOR"
+            docker tag $IMAGE_TAG "${DOCKER_TAG}:$MAJOR"
+            docker push "${DOCKER_TAG}:$VERSION"
+            docker push "${DOCKER_TAG}:$MAJOR.$MINOR"
+            docker push "${DOCKER_TAG}:$MAJOR"
+          else
+            docker tag $IMAGE_TAG "${DOCKER_TAG}:nix-test"
+            docker push "${DOCKER_TAG}:nix-test"
+          fi

.gitignore

@@ -6,3 +6,4 @@ __pycache__
 static/globals.css
 config
 node_modules
+result

Dockerfile

@@ -29,12 +29,11 @@ RUN uv sync --frozen --no-cache
 
 COPY alembic/ alembic/
 COPY alembic.ini alembic.ini
-COPY styles/ styles/
 COPY static/ static/
 COPY templates/ templates/
 COPY app/ app/
 
-RUN /bin/tailwindcss -i styles/globals.css -o static/globals.css -m
+RUN /bin/tailwindcss -i static/tw.css -o static/globals.css -m
 
 ENV ABR_APP__PORT=8000
 ARG VERSION

README.md

@@ -200,9 +200,9 @@ Website can be visited at http://localhost:8000.
 
 ```sh
 npm i
-uv run tailwindcss -i styles/globals.css -o static/globals.css --watch
+uv run tailwindcss -i static/tw.css -o static/globals.css --watch
 # Alternatively npx can be used to run tailwindcss
-npx @tailwindcss/cli@4 -i styles/globals.css -o static/globals.css --watch
+npx @tailwindcss/cli@4 -i static/tw.css -o static/globals.css --watch
 ```
 
 3. _Optional:_ Start browser-sync. This hot reloads the website when the html template or python files are modified:

flake.lock

@@ -1,26 +1,115 @@
 {
-  description = "A Nix-flake-based Python development environment";
-
-  inputs.nixpkgs.url = "https://flakehub.com/f/NixOS/nixpkgs/0.1.*.tar.gz";
+  description = "AudioBookRequest";
 
+   inputs = {
+    nixpkgs.url = "github:NixOS/nixpkgs/nixos-unstable";
+    flake-utils = {
+      url = "github:numtide/flake-utils";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+    pyproject-nix = {
+      url = "github:pyproject-nix/pyproject.nix";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+    uv2nix = {
+      url = "github:pyproject-nix/uv2nix";
+      inputs.pyproject-nix.follows = "pyproject-nix";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+    pyproject-build-systems = {
+      url = "github:pyproject-nix/build-system-pkgs";
+      inputs.pyproject-nix.follows = "pyproject-nix";
+      inputs.uv2nix.follows = "uv2nix";
+      inputs.nixpkgs.follows = "nixpkgs";
+    };
+  };
 
-  outputs = { self, nixpkgs, ... }:
+  outputs = { self, nixpkgs, flake-utils, pyproject-nix, uv2nix, pyproject-build-systems, ... }: flake-utils.lib.eachDefaultSystem (system:
     let
-      supportedSystems = [ "x86_64-linux" "aarch64-linux" "x86_64-darwin" "aarch64-darwin" ];
-      forEachSupportedSystem = f: nixpkgs.lib.genAttrs supportedSystems (system: f {
-        pkgs = import nixpkgs { inherit system; };
-      });
+      pkgs = import nixpkgs { inherit system; };
+      python = pkgs.python312;
+      workspace = uv2nix.lib.workspace.loadWorkspace { workspaceRoot = ./.; };
+
+      pyprojectOverrides = final: prev: {
+        # both fastapi and fastapi-cli add the binary causing "FileCollisionError: Two or more packages are trying to provide the same file with different contents" 
+        fastapi-cli = prev.fastapi-cli.overrideAttrs(_: { postInstall = "rm $out/bin/fastapi"; });
+      };
+
+      overlay = workspace.mkPyprojectOverlay { sourcePreference = "wheel"; };
+      pythonSet = (pkgs.callPackage pyproject-nix.build.packages { inherit python; }).overrideScope (
+        pkgs.lib.composeManyExtensions [
+          pyproject-build-systems.overlays.default
+          overlay
+          pyprojectOverrides
+        ]
+      );
     in
-    {
+    rec {
+      packages = rec {
+        # Creates a separate nix store virtualenv with the default dependencies (no devDependencies)
+        default = pythonSet.mkVirtualEnv "audiobookrequest-venv" workspace.deps.default;
 
-      devShells = forEachSupportedSystem ({ pkgs }: {
-        default = pkgs.mkShell {
-          venvDir = ".venv";
-          packages = with pkgs; [ python312 nodejs_23 sqlite nodePackages.browser-sync uv ] ++
-            (with pkgs.python312Packages; [
-              venvShellHook
-            ]);
+
+        docker =
+        let 
+          npmDeps = pkgs.importNpmLock.buildNodeModules {
+            package = pkgs.lib.importJSON ./package.json;
+            packageLock = pkgs.lib.importJSON ./package-lock.json;
+            nodejs = pkgs.nodejs_23;
+          };
+          tw-init = pkgs.writeShellScriptBin "tw-init" ''
+            ln -s ${npmDeps}/node_modules node_modules
+            cp ${./static/tw.css} tw.css # copy over the file since tailwind looks for daisyui relative to the input file
+            ${pkgs.tailwindcss_4}/bin/tailwindcss -i tw.css -o $out/app/static/globals.css -m
+          '';
+          run = pkgs.writeShellScriptBin "run" ''
+            ${default}/bin/alembic upgrade heads
+            ${default}/bin/fastapi run --port $ABR_APP__PORT
+          '';
+          gitignore = pkgs.nix-gitignore.gitignoreSource [ ] ./.;
+        in
+        pkgs.dockerTools.buildImage  {
+            name = "audiobookrequest";
+
+            copyToRoot = pkgs.buildEnv {
+              name = "test";
+              paths = [];
+              postBuild = ''
+                mkdir -p $out/app/static
+                ${tw-init}/bin/tw-init
+                cp ${gitignore}/alembic.ini $out/app/alembic.ini
+                cp -r ${gitignore}/alembic $out/app/alembic
+                cp -r ${gitignore}/templates $out/app/templates
+                cp -r ${gitignore}/static $out/app/static
+                cp -r ${gitignore}/app $out/app/app
+              '';
+            };
+
+            config = {
+              WorkingDir = "/app";
+              Cmd = [ "${run}/bin/run" ];
+              ExposedPorts = {
+                "8000/tcp" = {};
+              };
+              Env = [
+                "ABR_APP__PORT=8000"
+                "ABR_APP__VERSION=${builtins.readFile ./static/version}"
+              ];
+            };
         };
-      });
-    };
+      };
+      
+      # What is run when we use `nix run . -- dev`
+      apps.default = {
+        type = "app";
+        program = "${packages.default}/bin/fastapi";
+      };
+      
+      # Create a .venv and activates it. Allows for the venv to easily be selected in the editor for the python interpreter
+      devShells.default = pkgs.mkShell {
+          venvDir = ".venv";
+          packages = with pkgs; [ nodejs_23 sqlite nodePackages.browser-sync python312Packages.venvShellHook uv ];
+          postShellHook = "uv sync";
+      };
+    });
 }