FROM python:3.12

# Add user
RUN useradd -m -u 1000 user
USER user
ENV HOME=/home/user \
    PATH=/home/user/.local/bin:$PATH

WORKDIR $HOME/app

COPY --chown=user . $HOME/app
# Install system dependencies and requirements
RUN pip install --no-cache-dir --upgrade pip && \
    pip install --no-cache-dir -r $HOME/app/requirements.txt && \
    chown -R user:user $HOME/.cache/huggingface

EXPOSE 7860
CMD huggingface-cli login --token $HF_TOKEN --add-to-git-credential && \
    streamlit run app.py \
        --server.headless true \
        --server.enableCORS false \
        --server.enableXsrfProtection false \
        --server.fileWatcherType none \