50 lines
1.3 KiB
Docker
50 lines
1.3 KiB
Docker
# Build stage
|
|
FROM node:22-alpine AS builder
|
|
|
|
WORKDIR /app
|
|
|
|
# Copy package files first (better cache layer)
|
|
COPY package.json package-lock.json ./
|
|
|
|
# Install dependencies (include optional for native modules like oxc-parser)
|
|
RUN npm install --legacy-peer-deps && \
|
|
npm cache clean --force
|
|
|
|
# Copy app source
|
|
COPY . .
|
|
|
|
# Build app with higher memory limit (prerendering is memory-intensive)
|
|
RUN NODE_OPTIONS="--max-old-space-size=2048" npm run build
|
|
|
|
# Runtime stage - use distroless for minimal size
|
|
FROM node:22-alpine
|
|
|
|
WORKDIR /app
|
|
|
|
# Copy package files
|
|
COPY package.json package-lock.json ./
|
|
|
|
# Install production dependencies only with optimizations
|
|
RUN npm install --omit=dev --legacy-peer-deps && \
|
|
npm cache clean --force && \
|
|
# Remove unnecessary files
|
|
rm -rf /root/.npm /root/.cache
|
|
|
|
# Copy built app from builder
|
|
COPY --from=builder /app/.output ./.output
|
|
|
|
# Use non-root user for security
|
|
RUN addgroup -g 1001 -S nodejs && \
|
|
adduser -S nodejs -u 1001
|
|
|
|
USER nodejs
|
|
|
|
EXPOSE 3000
|
|
|
|
# Health check
|
|
HEALTHCHECK --interval=30s --timeout=3s --start-period=40s --retries=3 \
|
|
CMD node -e "require('http').get('http://localhost:3000/', (r) => {if (r.statusCode !== 200) throw new Error(r.statusCode)})"
|
|
|
|
# Start app with memory limits
|
|
CMD ["node", "--max-old-space-size=512", ".output/server/index.mjs"]
|