2026-04-03 17:21:01 -06:00
|
|
|
# Stage 1: Install all dependencies (including devDeps needed for build)
|
feat(17-02): Dockerfile three-stage build, .dockerignore, .env.production.example
- Three-stage node:20-slim Dockerfile with --platform=linux/amd64 on all 3 FROM lines
- Non-root nextjs:nodejs user, seeds/ copied for form library, uploads/ dir pre-created
- HEALTHCHECK via wget pointing to /api/health, CMD node server.js
- .dockerignore excludes node_modules, .next, .git, .env*, uploads/, *.md
- .env.production.example with exactly 11 required vars (template, no real secrets, force-added past .env* glob)
2026-04-03 16:56:09 -06:00
|
|
|
FROM --platform=linux/amd64 node:20-slim AS deps
|
|
|
|
|
WORKDIR /app
|
|
|
|
|
COPY package.json package-lock.json ./
|
2026-04-03 17:21:01 -06:00
|
|
|
RUN npm ci
|
feat(17-02): Dockerfile three-stage build, .dockerignore, .env.production.example
- Three-stage node:20-slim Dockerfile with --platform=linux/amd64 on all 3 FROM lines
- Non-root nextjs:nodejs user, seeds/ copied for form library, uploads/ dir pre-created
- HEALTHCHECK via wget pointing to /api/health, CMD node server.js
- .dockerignore excludes node_modules, .next, .git, .env*, uploads/, *.md
- .env.production.example with exactly 11 required vars (template, no real secrets, force-added past .env* glob)
2026-04-03 16:56:09 -06:00
|
|
|
|
|
|
|
|
# Stage 2: Build the application
|
|
|
|
|
FROM --platform=linux/amd64 node:20-slim AS builder
|
|
|
|
|
WORKDIR /app
|
|
|
|
|
COPY --from=deps /app/node_modules ./node_modules
|
|
|
|
|
COPY . .
|
|
|
|
|
ENV NODE_ENV=production
|
|
|
|
|
RUN npm run build
|
|
|
|
|
|
|
|
|
|
# Stage 3: Production runner
|
|
|
|
|
FROM --platform=linux/amd64 node:20-slim AS runner
|
|
|
|
|
WORKDIR /app
|
|
|
|
|
ENV NODE_ENV=production
|
|
|
|
|
ENV PORT=3000
|
|
|
|
|
ENV HOSTNAME=0.0.0.0
|
|
|
|
|
|
|
|
|
|
RUN addgroup --system --gid 1001 nodejs && \
|
|
|
|
|
adduser --system --uid 1001 nextjs
|
|
|
|
|
|
|
|
|
|
# Copy standalone server and static assets
|
|
|
|
|
COPY --from=builder --chown=nextjs:nodejs /app/public ./public
|
|
|
|
|
COPY --from=builder --chown=nextjs:nodejs /app/.next/standalone ./
|
|
|
|
|
COPY --from=builder --chown=nextjs:nodejs /app/.next/static ./.next/static
|
|
|
|
|
|
|
|
|
|
# Copy seeds/forms for form library import feature (runtime dependency)
|
|
|
|
|
COPY --from=builder --chown=nextjs:nodejs /app/seeds ./seeds
|
|
|
|
|
|
2026-04-03 18:02:39 -06:00
|
|
|
# Copy polyfill script (required via NODE_OPTIONS before server starts)
|
|
|
|
|
COPY --from=builder --chown=nextjs:nodejs /app/scripts/polyfill-dom.cjs ./scripts/polyfill-dom.cjs
|
|
|
|
|
|
feat(17-02): Dockerfile three-stage build, .dockerignore, .env.production.example
- Three-stage node:20-slim Dockerfile with --platform=linux/amd64 on all 3 FROM lines
- Non-root nextjs:nodejs user, seeds/ copied for form library, uploads/ dir pre-created
- HEALTHCHECK via wget pointing to /api/health, CMD node server.js
- .dockerignore excludes node_modules, .next, .git, .env*, uploads/, *.md
- .env.production.example with exactly 11 required vars (template, no real secrets, force-added past .env* glob)
2026-04-03 16:56:09 -06:00
|
|
|
# Create uploads directory (will be mounted as volume)
|
|
|
|
|
RUN mkdir -p uploads && chown nextjs:nodejs uploads
|
|
|
|
|
|
|
|
|
|
USER nextjs
|
|
|
|
|
EXPOSE 3000
|
|
|
|
|
|
|
|
|
|
HEALTHCHECK --interval=30s --timeout=10s --start-period=15s --retries=3 \
|
|
|
|
|
CMD wget --no-verbose --tries=1 --spider http://localhost:3000/api/health || exit 1
|
|
|
|
|
|
|
|
|
|
CMD ["node", "server.js"]
|
