| # ββββββββββββββββββββββββββββββββββββββββββββββ | |
| # Shortlist Frontend β Production Dockerfile | |
| # Multi-stage build for minimal image size | |
| # ββββββββββββββββββββββββββββββββββββββββββββββ | |
| # Stage 1: Install dependencies | |
| FROM node:20-alpine AS deps | |
| RUN apk add --no-cache libc6-compat | |
| WORKDIR /app | |
| COPY package.json package-lock.json* ./ | |
| RUN npm ci --ignore-scripts | |
| # Stage 2: Build the application | |
| FROM node:20-alpine AS builder | |
| WORKDIR /app | |
| COPY --from=deps /app/node_modules ./node_modules | |
| COPY . . | |
| # Build-time env vars (public only β safe in image) | |
| ARG NEXT_PUBLIC_API_URL | |
| ARG NEXT_PUBLIC_SUPABASE_URL | |
| ARG NEXT_PUBLIC_SUPABASE_ANON_KEY | |
| ENV NEXT_PUBLIC_API_URL=${NEXT_PUBLIC_API_URL} | |
| ENV NEXT_PUBLIC_SUPABASE_URL=${NEXT_PUBLIC_SUPABASE_URL} | |
| ENV NEXT_PUBLIC_SUPABASE_ANON_KEY=${NEXT_PUBLIC_SUPABASE_ANON_KEY} | |
| # Enable standalone output for minimal production image | |
| ENV NEXT_TELEMETRY_DISABLED=1 | |
| RUN npm run build | |
| # Stage 3: Production image | |
| FROM node:20-alpine AS runner | |
| WORKDIR /app | |
| ENV NODE_ENV=production | |
| ENV NEXT_TELEMETRY_DISABLED=1 | |
| # Security: Run as non-root | |
| RUN addgroup --system --gid 1001 nodejs && \ | |
| adduser --system --uid 1001 nextjs | |
| # Copy only what's needed for production | |
| COPY --from=builder /app/public ./public | |
| COPY --from=builder --chown=nextjs:nodejs /app/.next/standalone ./ | |
| COPY --from=builder --chown=nextjs:nodejs /app/.next/static ./.next/static | |
| USER nextjs | |
| EXPOSE 3000 | |
| ENV PORT=3000 | |
| ENV HOSTNAME="0.0.0.0" | |
| CMD ["node", "server.js"] | |