416d1a5959
Some checks failed
CI / Lint → Typecheck → Test → Build (22) (push) Failing after 8s
CI / E2E Tests (push) Has been skipped
CI / AI Services (Python) — Smoke (push) Failing after 5s
CodeQL Analysis / CodeQL (javascript-typescript) (push) Failing after 1m4s
Deploy / Build API Image (push) Failing after 15s
Deploy / Build Web Image (push) Failing after 6s
Deploy / Build AI Services Image (push) Failing after 7s
E2E Tests / Playwright E2E (push) Failing after 11s
Security Scanning / Dependency Audit (pnpm) (push) Failing after 4s
Security Scanning / Trivy Scan — API Image (push) Failing after 48s
Security Scanning / Trivy Scan — Web Image (push) Failing after 37s
Security Scanning / Trivy Scan — AI Services Image (push) Failing after 1m40s
Security Scanning / Trivy Filesystem Scan (push) Failing after 1m48s
Deploy / Deploy to Staging (push) Has been skipped
Deploy / Smoke Test Staging (push) Has been skipped
Deploy / Deploy to Production (push) Has been skipped
Deploy / Smoke Test Production (push) Has been skipped
Security Scanning / Security Gate (push) Failing after 1s
Deploy / Rollback Staging (push) Has been skipped
Deploy / Rollback Production (push) Has been skipped
The hoisted node_modules layout (set in deps stage `.npmrc` with `node-linker=hoisted`) puts `next` at `/app/node_modules/next` only — `apps/web/node_modules/next` doesn't exist. The previous `cd apps/web && npx next build` failed with: Cannot find module '/app/apps/web/node_modules/next/dist/bin/next' because `npx` resolves binaries against the cwd subtree and doesn't walk up. Switching to the explicit binary path `/app/node_modules/.bin/next build` makes the build reproducible in the goodgo Docker image. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
57 lines
2.2 KiB
Docker
57 lines
2.2 KiB
Docker
# ---- Base ----
|
|
FROM node:22-slim AS base
|
|
RUN corepack enable && corepack prepare pnpm@10.27.0 --activate
|
|
WORKDIR /app
|
|
|
|
# ---- Dependencies ----
|
|
# Use node-linker=hoisted so pnpm creates flat node_modules (no symlinks).
|
|
# This ensures standalone output has real files, not broken pnpm symlinks.
|
|
FROM base AS deps
|
|
RUN echo "node-linker=hoisted" > .npmrc
|
|
COPY pnpm-lock.yaml pnpm-workspace.yaml package.json turbo.json ./
|
|
COPY apps/web/package.json apps/web/
|
|
RUN pnpm install --frozen-lockfile --filter @goodgo/web...
|
|
|
|
# ---- Build ----
|
|
FROM base AS build
|
|
# NEXT_PUBLIC_* vars are baked into JS bundle at build time
|
|
ARG NEXT_PUBLIC_API_URL=https://api.goodgo.vn/api/v1
|
|
ARG NEXT_PUBLIC_WEB_URL=https://platform.goodgo.vn
|
|
ENV NEXT_PUBLIC_API_URL=$NEXT_PUBLIC_API_URL
|
|
ENV NEXT_PUBLIC_WEB_URL=$NEXT_PUBLIC_WEB_URL
|
|
COPY --from=deps /app/.npmrc ./
|
|
COPY --from=deps /app/node_modules ./node_modules
|
|
COPY tsconfig.base.json ./
|
|
COPY apps/web/ apps/web/
|
|
# Hoisted layout: `next` binary is in /app/node_modules/.bin/next.
|
|
# Neither `npx next` nor `pnpm run build` resolve it from apps/web cwd
|
|
# because that subtree has no node_modules. Call the binary directly.
|
|
RUN cd apps/web && /app/node_modules/.bin/next build
|
|
|
|
# ---- Production ----
|
|
FROM node:22-slim AS production
|
|
RUN apt-get update && apt-get install -y --no-install-recommends dumb-init && rm -rf /var/lib/apt/lists/*
|
|
WORKDIR /app
|
|
|
|
ENV NODE_ENV=production
|
|
ENV NEXT_TELEMETRY_DISABLED=1
|
|
ENV HOSTNAME=0.0.0.0
|
|
ENV PORT=3000
|
|
|
|
# With hoisted node_modules, standalone output has real files (no symlinks)
|
|
COPY --from=build --chown=node:node /app/apps/web/.next/standalone/node_modules ./node_modules
|
|
COPY --from=build --chown=node:node /app/apps/web/.next/standalone/apps/web/server.js ./server.js
|
|
COPY --from=build --chown=node:node /app/apps/web/.next/standalone/apps/web/.next ./.next
|
|
COPY --from=build --chown=node:node /app/apps/web/.next/static ./.next/static
|
|
COPY --from=build --chown=node:node /app/apps/web/public ./public
|
|
|
|
EXPOSE 3000
|
|
|
|
HEALTHCHECK --interval=30s --timeout=5s --start-period=10s --retries=3 \
|
|
CMD node -e "fetch('http://localhost:3000/api/health').then(r => { if (!r.ok) throw 1 }).catch(() => { process.exit(1) })"
|
|
|
|
USER node
|
|
|
|
ENTRYPOINT ["dumb-init", "--"]
|
|
CMD ["node", "server.js"]
|