# ---------- build stage ----------
FROM python:3.12-slim AS builder

WORKDIR /build
COPY app/requirements.txt .
RUN pip install --no-cache-dir --prefix=/install -r requirements.txt

# ---------- runtime stage ----------
FROM python:3.12-slim

LABEL maintainer="blazp04"
LABEL org.opencontainers.image.source="https://git.fpmoz.sum.ba/blazp04/distribuirani"

RUN adduser --disabled-password --no-create-home appuser

WORKDIR /app
COPY --from=builder /install /usr/local
COPY app/ .

USER appuser

EXPOSE 8000

CMD ["uvicorn", "main:app", "--host", "0.0.0.0", "--port", "8000"]
