address env overwrite

Author: alexh-scrt

dockerize/build-secretai-docker.sh

@@ -0,0 +1,224 @@
+#!/bin/bash
+
+# =====================================
+# Docker Build Script for MONAI Breast Density Classification
+# =====================================
+
+set -e
+
+# Configuration
+IMAGE_NAME="monai-breast-density"
+IMAGE_TAG="latest"
+DOCKERFILE="Dockerfile"
+
+# Colors for output
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+YELLOW='\033[1;33m'
+BLUE='\033[0;34m'
+NC='\033[0m' # No Color
+
+# Function to print colored output
+print_status() {
+    echo -e "${BLUE}[INFO]${NC} $1"
+}
+
+print_success() {
+    echo -e "${GREEN}[SUCCESS]${NC} $1"
+}
+
+print_warning() {
+    echo -e "${YELLOW}[WARNING]${NC} $1"
+}
+
+print_error() {
+    echo -e "${RED}[ERROR]${NC} $1"
+}
+
+# Function to check prerequisites
+check_prerequisites() {
+    print_status "Checking prerequisites..."
+    
+    # Check if Docker is installed
+    if ! command -v docker &> /dev/null; then
+        print_error "Docker is not installed. Please install Docker first."
+        exit 1
+    fi
+    
+    # Check if Docker daemon is running
+    if ! docker info &> /dev/null; then
+        print_error "Docker daemon is not running. Please start Docker."
+        exit 1
+    fi
+    
+    # Check for NVIDIA Docker support (for GPU)
+    if ! docker info | grep -q "nvidia"; then
+        print_warning "NVIDIA Docker runtime not detected. GPU support may not work."
+        print_warning "Install nvidia-container-toolkit for GPU support."
+    fi
+    
+    # Check if required files exist
+    if [ ! -f "$DOCKERFILE" ]; then
+        print_error "Dockerfile not found in current directory."
+        exit 1
+    fi
+    
+    if [ ! -f "requirements-docker.txt" ]; then
+        print_error "requirements-docker.txt not found in current directory."
+        exit 1
+    fi
+    
+    # Check if model-core mount point directory exists (for documentation)
+    if [ ! -d "/mnt/secure/.fetch/model-core" ]; then
+        print_warning "Model-core mount point /mnt/secure/.fetch/model-core not found."
+        print_warning "This is expected if running on a development machine."
+        print_warning "Ensure the mount point is available when deploying to production."
+    fi
+    
+    print_success "Prerequisites check passed."
+}
+
+# Function to build Docker image
+build_image() {
+    print_status "Building Docker image: ${IMAGE_NAME}:${IMAGE_TAG}"
+    
+    # Build the image with build context
+    docker build \
+        --target production \
+        --tag "${IMAGE_NAME}:${IMAGE_TAG}" \
+        --file "${DOCKERFILE}" \
+        --progress=plain \
+        --no-cache \
+        .
+    
+    if [ $? -eq 0 ]; then
+        print_success "Docker image built successfully: ${IMAGE_NAME}:${IMAGE_TAG}"
+    else
+        print_error "Failed to build Docker image."
+        exit 1
+    fi
+}
+
+# Function to verify the built image
+verify_image() {
+    print_status "Verifying built image..."
+    
+    # Check if image exists
+    if docker images | grep -q "${IMAGE_NAME}"; then
+        local image_size=$(docker images --format "table {{.Repository}}:{{.Tag}}\t{{.Size}}" | grep "${IMAGE_NAME}:${IMAGE_TAG}" | awk '{print $2}')
+        print_success "Image verification passed. Size: ${image_size}"
+        
+        # Show image details
+        print_status "Image details:"
+        docker images "${IMAGE_NAME}:${IMAGE_TAG}"
+    else
+        print_error "Image verification failed. Image not found."
+        exit 1
+    fi
+}
+
+# Function to create necessary directories
+create_directories() {
+    print_status "Creating necessary directories..."
+    
+    mkdir -p logs
+    mkdir -p temp
+    mkdir -p model-store
+    mkdir -p credentials
+    
+    print_success "Directories created."
+}
+
+# Function to show usage instructions
+show_usage() {
+    echo ""
+    print_success "Build completed successfully!"
+    echo ""
+    echo "Next steps:"
+    echo "1. Copy .env.example to .env and configure your API keys:"
+    echo "   cp .env.example .env"
+    echo ""
+    echo "2. Edit .env file with your actual API keys and configuration"
+    echo ""
+    echo "3. If using GCP, place your service account JSON file in ./credentials/"
+    echo ""
+    echo "4. IMPORTANT: Ensure the model-core mount point is available:"
+    echo "   The pre-built MAR file should be at:"
+    echo "   /mnt/secure/.fetch/model-core/monai-breast-density-classification_model-store_monai-breast-density-classification.mar"
+    echo ""
+    echo "5. Run the container using Docker Compose (recommended):"
+    echo "   docker-compose up -d"
+    echo ""
+    echo "6. Or run directly with Docker (ensure mount point exists):"
+    echo "   docker run --gpus all -d \\"
+    echo "     --name monai-breast-density \\"
+    echo "     -p 127.0.0.1:8085:8085 \\"
+    echo "     -p 127.0.0.1:8086:8086 \\"
+    echo "     -p 127.0.0.1:8082:8082 \\"
+    echo "     -e OPENAI_API_KEY=your_key_here \\"
+    echo "     -v /mnt/secure/.fetch/model-core:/mnt/secure/.fetch/model-core:ro \\"
+    echo "     -v \$(pwd)/logs:/home/model-server/logs \\"
+    echo "     -v \$(pwd)/model-store:/home/model-server/model-store \\"
+    echo "     ${IMAGE_NAME}:${IMAGE_TAG}"
+    echo ""
+    echo "7. Check container health:"
+    echo "   curl http://localhost:8082/ping"
+    echo ""
+    echo "8. Check if model loaded successfully:"
+    echo "   curl http://localhost:8086/models/monai-breast-density-classification"
+    echo ""
+    echo "9. Test inference:"
+    echo "   curl -X POST http://localhost:8085/predictions/monai-breast-density-classification \\"
+    echo "     -H 'Content-Type: application/json' \\"
+    echo "     -d @examples/monai-breast-density-classification.json"
+    echo ""
+    echo "Note: The container will automatically copy the pre-built MAR file from the mount point"
+    echo "      to the local model store and load it at startup."
+    echo ""
+}
+
+# Main execution
+main() {
+    echo "========================================="
+    echo "MONAI Breast Density Classification"
+    echo "Docker Build Script"
+    echo "========================================="
+    echo ""
+    
+    check_prerequisites
+    create_directories
+    build_image
+    verify_image
+    show_usage
+}
+
+# Parse command line arguments
+while [[ $# -gt 0 ]]; do
+    case $1 in
+        --tag)
+            IMAGE_TAG="$2"
+            shift 2
+            ;;
+        --name)
+            IMAGE_NAME="$2"
+            shift 2
+            ;;
+        --help|-h)
+            echo "Usage: $0 [OPTIONS]"
+            echo ""
+            echo "Options:"
+            echo "  --tag TAG     Set image tag (default: latest)"
+            echo "  --name NAME   Set image name (default: monai-breast-density)"
+            echo "  --help, -h    Show this help message"
+            exit 0
+            ;;
+        *)
+            print_error "Unknown option: $1"
+            echo "Use --help for usage information."
+            exit 1
+            ;;
+    esac
+done
+
+# Run main function
+main

dockerize/build-torchserve-docker.sh

@@ -1,13 +1,11 @@
-version: '3.8'
-
 services:
   torchserve:
     # build:
     #   context: .
     #   dockerfile: Dockerfile
     #   target: production
     image: monai-breast-density:latest
-    container_name: fetch
+    container_name: torchserve
     privileged: true
 
     # GPU support
@@ -35,8 +33,6 @@ services:
       - "127.0.0.1:8082:8082"  # Metrics API
       - "127.0.0.1:7070:7070"  # gRPC Inference
       - "127.0.0.1:7071:7071"  # gRPC Management
-      - "127.0.0.1:8090:8090"  # REST API
-    
 
     # Volume mounts
     volumes:
@@ -58,17 +54,17 @@ services:
       memlock: -1
       stack: 67108864
 
-    # Health check
+    # Token-based health check - checks for key_file.json presence
     healthcheck:
-      test: ["CMD", "curl", "-f", "http://localhost:8082/ping"]
+      test: ["CMD", "test", "-f", "/home/model-server/key_file.json"]
       interval: 30s
-      timeout: 30s
+      timeout: 10s
       start_period: 120s
       retries: 3
 
     # Restart policy
     restart: unless-stopped
-    
+        
     # Logging configuration
     logging:
       driver: "json-file"
@@ -77,14 +73,15 @@ services:
         max-file: "5"
 
     networks:
-    - monai-network
+      - monai-network
 
   # FastAPI Authentication & Gateway Service
   auth-gateway:
-    build:
-      context: ./secretai
-      dockerfile: Dockerfile
-    container_name: fetch-auth-gateway
+    image: monai-secretai:dev
+    # build:
+    #   context: ./secretai
+    #   dockerfile: Dockerfile
+    container_name: auth-gateway
 
     environment:
       - TORCHSERVE_URL=http://torchserve:8085
@@ -125,8 +122,7 @@ services:
 
 # Networks
 networks:
-  default:
-    name: monai-network
+  monai-network:
     driver: bridge
 
 # Volumes for persistent data

dockerize/docker-compose.yaml

@@ -24,16 +24,12 @@ COPY *.py ./
 COPY .env ./
 
 # Create non-root user for security
-RUN groupadd -r authuser && useradd -r -g authuser authuser
-RUN chown -R authuser:authuser /app
-USER authuser
+RUN groupadd -r model-server && useradd -r -g model-server -u 1000 model-server
+RUN chown -R model-server:model-server /app
+USER model-server
 
 # Environment variables
 ENV PYTHONUNBUFFERED=1
-ENV JWT_SECRET_KEY=""
-ENV REST_API_USERNAME=""
-ENV REST_API_PASSWORD=""
-ENV TORCHSERVE_URL="http://torchserve:8085"
 
 # Expose port
 EXPOSE 8090

dockerize/secretai/Dockerfile

@@ -0,0 +1,9 @@
+{
+    "build_time": "2025-06-24T23:26:59Z",
+    "image_name": "monai-secretai",
+    "image_tag": "dev",
+    "git_commit": "ae5f7b77802f5b3b11a6e4911c38353c0df15f4d",
+    "git_branch": "master",
+    "platform": "",
+    "builder": "ubuntu@158-101-123-7"
+}

dockerize/secretai/build-info.json

@@ -0,0 +1,18 @@
+import os
+from pathlib import Path
+from dotenv import load_dotenv
+
+# Try multiple locations
+env_paths = [
+    '/app/.env',
+    '.env',
+    Path(__file__).parent / '.env'
+]
+
+for env_path in env_paths:
+    if os.path.exists(env_path):
+        print(f"🏗️  Loading environment variables from {env_path}")
+        load_dotenv(env_path)
+        for key, value in os.environ.items():
+            print(f"🔑  {key} = {value}")
+        break

dockerize/secretai/env.py

@@ -2,6 +2,7 @@
 FastAPI Authentication & Gateway Service for MONAI Breast Density Classification
 Provides JWT-based authentication and proxies requests to TorchServe with token support
 """
+import env
 
 import os
 import sys

dockerize/secretai/server.py

@@ -1,17 +1,6 @@
 import os
 import sys
 import secrets
-from datetime import datetime, timedelta
-from typing import Optional, Dict, Any
-
-import jwt
-from fastapi import FastAPI, HTTPException, Depends, status
-from fastapi.security import HTTPBearer, HTTPAuthorizationCredentials
-from fastapi.middleware.cors import CORSMiddleware
-from pydantic import BaseModel, Field
-import bcrypt
-from contextlib import asynccontextmanager
-
 from dotenv import load_dotenv, find_dotenv
 
 _ = load_dotenv(find_dotenv())  # read local .env file