# Use Python 3.12 as the base image
FROM python:3.12

# Set up a new user named "user" with user ID 1000
RUN useradd -m -u 1000 user

# Set home to the user's home directory
ENV HOME=/home/user \
	PATH=/home/user/.local/bin:$PATH

# Set the working directory to the user's home directory
WORKDIR $HOME/app

# Copy the current directory contents into the container at $HOME/app setting the owner to the user
COPY --chown=user . .

USER user

RUN pip install --no-cache-dir --user -r requirements.txt
# Ensure Hugging Face token storage has the correct permissions
RUN mkdir -p $HOME/.cache/huggingface && chmod -R 700 $HOME/.cache/huggingface

# Run the application
CMD huggingface-cli login --token "$HF_TOKEN" --add-to-git-credential && \
    streamlit run app.py \
    --server.headless true \
    --server.enableCORS false \
    --server.enableXsrfProtection false \
    --server.fileWatcherType none