2025-12-02 18:56:38 +09:00
|
|
|
# syntax=docker/dockerfile:1
|
2025-12-02 11:06:54 +09:00
|
|
|
# =============================================================================
|
2025-12-02 18:56:38 +09:00
|
|
|
# BFF (NestJS) Dockerfile
|
2025-12-02 11:06:54 +09:00
|
|
|
# =============================================================================
|
2025-12-02 18:56:38 +09:00
|
|
|
# Multi-stage build with BuildKit cache mounts for fast rebuilds
|
2025-12-02 11:06:54 +09:00
|
|
|
# =============================================================================
|
2025-08-21 15:24:40 +09:00
|
|
|
|
2025-12-02 11:06:54 +09:00
|
|
|
ARG NODE_VERSION=22
|
2025-12-10 13:59:41 +09:00
|
|
|
ARG PNPM_VERSION=10.25.0
|
|
|
|
|
ARG PRISMA_VERSION=7.1.0
|
2025-08-20 18:02:50 +09:00
|
|
|
|
2025-12-02 11:06:54 +09:00
|
|
|
# =============================================================================
|
2025-12-02 18:56:38 +09:00
|
|
|
# Stage 1: Builder
|
2025-12-02 11:06:54 +09:00
|
|
|
# =============================================================================
|
|
|
|
|
FROM node:${NODE_VERSION}-alpine AS builder
|
|
|
|
|
|
|
|
|
|
ARG PNPM_VERSION
|
2025-12-02 18:56:38 +09:00
|
|
|
ARG PRISMA_VERSION
|
2025-12-02 11:06:54 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
RUN apk add --no-cache python3 make g++ openssl libc6-compat \
|
2025-12-02 11:06:54 +09:00
|
|
|
&& corepack enable \
|
|
|
|
|
&& corepack prepare pnpm@${PNPM_VERSION} --activate
|
2025-08-20 18:02:50 +09:00
|
|
|
|
|
|
|
|
WORKDIR /app
|
|
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
# Copy manifests first for dependency caching
|
2025-12-02 10:05:11 +09:00
|
|
|
COPY .npmrc pnpm-workspace.yaml package.json pnpm-lock.yaml ./
|
2025-09-26 17:02:36 +09:00
|
|
|
COPY packages/domain/package.json ./packages/domain/
|
2025-08-21 15:24:40 +09:00
|
|
|
COPY apps/bff/package.json ./apps/bff/
|
2025-08-20 18:02:50 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
# Install dependencies with cache mount
|
2025-12-02 11:06:54 +09:00
|
|
|
ENV HUSKY=0
|
2025-12-02 18:56:38 +09:00
|
|
|
RUN --mount=type=cache,id=pnpm,target=/root/.local/share/pnpm/store \
|
|
|
|
|
pnpm install --frozen-lockfile
|
2025-08-21 15:24:40 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
# Copy source files
|
2025-12-02 11:06:54 +09:00
|
|
|
COPY tsconfig.json tsconfig.base.json ./
|
2025-12-02 18:56:38 +09:00
|
|
|
COPY packages/domain/ ./packages/domain/
|
2025-08-21 15:24:40 +09:00
|
|
|
COPY apps/bff/ ./apps/bff/
|
2025-08-20 18:02:50 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
# Build domain → generate Prisma (for type-checking) → build BFF
|
|
|
|
|
RUN pnpm --filter @customer-portal/domain build \
|
|
|
|
|
&& cd apps/bff && pnpm exec prisma generate && cd ../.. \
|
|
|
|
|
&& pnpm --filter @customer-portal/bff build
|
2025-12-02 10:05:11 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
# Create production deployment bundle
|
|
|
|
|
# pnpm deploy creates a standalone package with production dependencies
|
|
|
|
|
RUN pnpm deploy --filter @customer-portal/bff --prod /app/deploy \
|
|
|
|
|
&& cp -r apps/bff/dist deploy/dist \
|
|
|
|
|
&& cp -r apps/bff/prisma deploy/prisma \
|
|
|
|
|
&& cp -r packages/domain/dist deploy/node_modules/@customer-portal/domain/dist
|
2025-08-20 18:02:50 +09:00
|
|
|
|
2025-12-02 11:06:54 +09:00
|
|
|
# =============================================================================
|
2025-12-02 18:56:38 +09:00
|
|
|
# Stage 2: Production
|
2025-12-02 11:06:54 +09:00
|
|
|
# =============================================================================
|
|
|
|
|
FROM node:${NODE_VERSION}-alpine AS production
|
2025-08-21 15:24:40 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
ARG PRISMA_VERSION
|
2025-08-29 18:52:31 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
LABEL org.opencontainers.image.title="Customer Portal BFF" \
|
|
|
|
|
org.opencontainers.image.description="NestJS Backend-for-Frontend API"
|
2025-12-02 10:05:11 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
RUN apk add --no-cache dumb-init libc6-compat netcat-openbsd wget \
|
|
|
|
|
&& addgroup --system --gid 1001 nodejs \
|
|
|
|
|
&& adduser --system --uid 1001 nestjs
|
2025-12-02 11:06:54 +09:00
|
|
|
|
2025-12-02 10:05:11 +09:00
|
|
|
WORKDIR /app
|
2025-09-01 15:11:42 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
# Copy deploy bundle
|
|
|
|
|
COPY --from=builder --chown=nestjs:nodejs /app/deploy ./
|
|
|
|
|
|
|
|
|
|
# Regenerate Prisma client in the final container layout (/app) so the embedded
|
|
|
|
|
# schema path matches /app/prisma/schema.prisma. Then ensure the runtime user
|
|
|
|
|
# owns the generated client assets.
|
|
|
|
|
ENV PRISMA_SCHEMA_PATH=/app/prisma/schema.prisma
|
|
|
|
|
RUN rm -rf node_modules/.prisma \
|
|
|
|
|
&& npx prisma@${PRISMA_VERSION} generate --schema=${PRISMA_SCHEMA_PATH} \
|
|
|
|
|
# Ensure legacy path exists for any stale schemaPath references
|
|
|
|
|
&& mkdir -p /app/apps/bff/prisma \
|
|
|
|
|
&& cp /app/prisma/schema.prisma /app/apps/bff/prisma/schema.prisma \
|
|
|
|
|
# Patch any generated files that may still embed the monorepo schema path
|
|
|
|
|
&& find node_modules -type f -path "*/.prisma/client/*.js" -exec sed -i 's|apps/bff/prisma/schema\\.prisma|/app/prisma/schema.prisma|g' {} + \
|
|
|
|
|
# Fix ownership for runtime user
|
|
|
|
|
&& find node_modules -type d -name ".prisma" -exec chown -R nestjs:nodejs {} + \
|
|
|
|
|
&& chown -R nestjs:nodejs /app/apps/bff/prisma \
|
|
|
|
|
&& npm cache clean --force \
|
|
|
|
|
&& rm -rf /root/.npm/_npx /root/.npm/_cacache /tmp/*
|
|
|
|
|
|
|
|
|
|
# Copy and setup entrypoint
|
|
|
|
|
COPY --chown=nestjs:nodejs apps/bff/scripts/docker-entrypoint.sh ./docker-entrypoint.sh
|
|
|
|
|
RUN chmod +x docker-entrypoint.sh \
|
|
|
|
|
&& mkdir -p secrets logs \
|
|
|
|
|
&& chown nestjs:nodejs secrets logs
|
2025-08-20 18:02:50 +09:00
|
|
|
|
|
|
|
|
USER nestjs
|
|
|
|
|
|
|
|
|
|
EXPOSE 4000
|
2025-12-02 11:06:54 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
ENV NODE_ENV=production \
|
|
|
|
|
PORT=4000 \
|
|
|
|
|
PRISMA_VERSION=${PRISMA_VERSION} \
|
|
|
|
|
PRISMA_SCHEMA_PATH=/app/prisma/schema.prisma
|
2025-08-20 18:02:50 +09:00
|
|
|
|
2025-08-21 15:24:40 +09:00
|
|
|
HEALTHCHECK --interval=30s --timeout=10s --start-period=60s --retries=3 \
|
2025-12-02 18:56:38 +09:00
|
|
|
CMD node -e "fetch('http://localhost:4000/health').then(r=>r.ok||process.exit(1)).catch(()=>process.exit(1))"
|
2025-08-20 18:02:50 +09:00
|
|
|
|
2025-12-02 18:56:38 +09:00
|
|
|
ENTRYPOINT ["dumb-init", "--", "./docker-entrypoint.sh"]
|
2025-09-01 16:45:12 +09:00
|
|
|
CMD ["node", "dist/main.js"]
|
