-
Notifications
You must be signed in to change notification settings - Fork 17
/
Copy pathDockerfile
73 lines (56 loc) · 2.38 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
FROM node:22-bullseye-slim@sha256:78d58cb33cd6508d24dc07b6b9825d4669275b094ea2aafc9ae10610991d8945 as base
ARG CURL_VERSION=7.74.* \
OPENSSL_VERSION=1.1.* \
TINI_VERSION=0.19.* \
# Specify the XML file to use for configuring the SAML IDP (see config/idp-metadata-*.xml)
SAML_IDP_METADATA_PATH=config/idp-metadata-dev.xml
# hadolint ignore=SC2086
RUN apt-get update && \
apt-get install -y --no-install-recommends \
curl=${CURL_VERSION} \
openssl=${OPENSSL_VERSION} \
tini=${TINI_VERSION} \
&& rm -rf /var/lib/apt/lists/*
###############################################################################
# Install all node_modules, including dev dependencies
FROM base as deps
WORKDIR /app
COPY package*.json .npmrc ./
RUN npm ci --include=dev --ignore-scripts
###############################################################################
# Remove any non-production dependencies
FROM base as production-deps
WORKDIR /app
COPY --from=deps /app/node_modules ./node_modules
COPY package*.json .npmrc ./
RUN npm prune --omit=dev
###############################################################################
# Build the app and generate the prisma client
FROM base as build
WORKDIR /app
COPY --from=deps /app/node_modules ./node_modules
COPY . .
RUN npx prisma generate \
&& npm run build
# Deploy the built app on top of the production deps, run as non-root
FROM base as deploy
WORKDIR /app
ENV NODE_ENV=production \
PORT=8080 \
LOG_LEVEL=${LOG_LEVEL:-info}
USER node
COPY --chown=node:node --from=production-deps /app/.npmrc ./.npmrc
COPY --chown=node:node --from=production-deps /app/node_modules ./node_modules
COPY --chown=node:node --from=build /app/node_modules/.prisma ./node_modules/.prisma
COPY --chown=node:node --from=build /app/build ./build
COPY --chown=node:node --from=build /app/public ./public
COPY --chown=node:node --from=build /app/prisma ./prisma
# Include the SAML IDP metadata in the image. Specify the file to use in the build arg
# and override the SAML_IDP_METADATA_PATH to use when loading this file at startup
COPY --chown=node:node ${SAML_IDP_METADATA_PATH} ./config/idp-metadata.xml
ENV SAML_IDP_METADATA_PATH=/app/config/idp-metadata.xml
COPY docker-entrypoint.sh /usr/local/bin/
ENTRYPOINT ["/usr/bin/tini", "--", "docker-entrypoint.sh"]
CMD ["node", "./build/server.js"]
HEALTHCHECK CMD curl --fail http://localhost:${PORT}/healthcheck || exit 1
EXPOSE ${PORT}