165 lines
6.2 KiB
Docker
165 lines
6.2 KiB
Docker
# Dockerfile optimisé pour la production Neah
|
|
# Utilisé uniquement si vous déployez l'application complète avec Docker
|
|
# Pour Vercel, ce fichier n'est pas nécessaire (Vercel build automatiquement)
|
|
|
|
FROM node:22-alpine AS base
|
|
|
|
# Installer les dépendances nécessaires pour Prisma
|
|
RUN apk add --no-cache libc6-compat openssl
|
|
|
|
WORKDIR /app
|
|
|
|
# ============================================
|
|
# Étape 1: Dépendances
|
|
# ============================================
|
|
FROM base AS deps
|
|
COPY package.json package-lock.json* ./
|
|
# Utiliser npm install au lieu de npm ci pour plus de flexibilité
|
|
# Si package-lock.json est présent, il sera utilisé, sinon npm install le créera
|
|
RUN npm install --legacy-peer-deps --prefer-offline --no-audit
|
|
|
|
# ============================================
|
|
# Étape 2: Builder
|
|
# ============================================
|
|
FROM base AS builder
|
|
COPY --from=deps /app/node_modules ./node_modules
|
|
COPY . .
|
|
|
|
# Générer le client Prisma
|
|
RUN npx prisma generate
|
|
|
|
# Variables d'environnement nécessaires au build Next.js
|
|
# Ces variables sont passées depuis docker-compose.yml via build args
|
|
ARG KEYCLOAK_CLIENT_ID
|
|
ARG KEYCLOAK_CLIENT_SECRET
|
|
ARG KEYCLOAK_REALM
|
|
ARG KEYCLOAK_ISSUER
|
|
ARG NEXT_PUBLIC_KEYCLOAK_ISSUER
|
|
ARG NEXT_PUBLIC_API_URL
|
|
ARG NEXT_PUBLIC_APP_URL
|
|
ARG NEXTAUTH_SECRET
|
|
ARG SERVER_NAME
|
|
|
|
# Variables iframe (optionnelles)
|
|
ARG NEXT_PUBLIC_IFRAME_DRIVE_URL
|
|
ARG NEXT_PUBLIC_IFRAME_LEARN_URL
|
|
ARG NEXT_PUBLIC_IFRAME_PAROLE_URL
|
|
ARG NEXT_PUBLIC_IFRAME_CHAPTER_URL
|
|
ARG NEXT_PUBLIC_IFRAME_AGILITY_URL
|
|
ARG NEXT_PUBLIC_IFRAME_ARTLAB_URL
|
|
ARG NEXT_PUBLIC_IFRAME_GITE_URL
|
|
ARG NEXT_PUBLIC_IFRAME_CALCULATION_URL
|
|
ARG NEXT_PUBLIC_IFRAME_MEDIATIONS_URL
|
|
ARG NEXT_PUBLIC_IFRAME_SHOWCASE_URL
|
|
ARG NEXT_PUBLIC_IFRAME_LIVRE_URL
|
|
ARG NEXT_PUBLIC_IFRAME_CONFERENCE_URL
|
|
ARG NEXT_PUBLIC_IFRAME_RADIO_URL
|
|
ARG NEXT_PUBLIC_IFRAME_TIMETRACKER_URL
|
|
|
|
# Rendre les variables disponibles pendant le build
|
|
# Next.js a besoin de ces variables pour le build (notamment NEXT_PUBLIC_*)
|
|
# Les valeurs réelles seront injectées au runtime via docker-compose environment
|
|
|
|
# Keycloak & Auth (valeurs réelles pour NEXT_PUBLIC_*, dummy pour les autres)
|
|
ENV KEYCLOAK_CLIENT_ID=${KEYCLOAK_CLIENT_ID}
|
|
ENV KEYCLOAK_CLIENT_SECRET=${KEYCLOAK_CLIENT_SECRET:-dummy-secret-for-build}
|
|
ENV KEYCLOAK_REALM=${KEYCLOAK_REALM}
|
|
ENV KEYCLOAK_ISSUER=${KEYCLOAK_ISSUER}
|
|
ENV NEXT_PUBLIC_KEYCLOAK_ISSUER=${NEXT_PUBLIC_KEYCLOAK_ISSUER}
|
|
ENV NEXT_PUBLIC_API_URL=${NEXT_PUBLIC_API_URL}
|
|
ENV NEXT_PUBLIC_APP_URL=${NEXT_PUBLIC_APP_URL}
|
|
ENV NEXTAUTH_SECRET=${NEXTAUTH_SECRET:-dummy-nextauth-secret-for-build}
|
|
ENV NEXTAUTH_URL=${NEXT_PUBLIC_APP_URL}
|
|
|
|
# Base de données (dummy values for build - real values at runtime)
|
|
ENV DATABASE_URL=postgresql://postgres:postgres@localhost:5432/neah?schema=public
|
|
ENV NEWSDB_URL=postgresql://dummy:dummy@localhost:5432/news?schema=public
|
|
ENV NEWS_API_URL=http://localhost:8000
|
|
|
|
# Redis (dummy for build)
|
|
ENV REDIS_URL=redis://localhost:6379
|
|
ENV REDIS_HOST=localhost
|
|
ENV REDIS_PORT=6379
|
|
ENV REDIS_PASSWORD=dummy
|
|
|
|
# API Tokens (dummy for build - real values at runtime)
|
|
ENV LEANTIME_TOKEN=dummy-leantime-token-for-build
|
|
ENV LEANTIME_API_URL=https://agilite.example.com
|
|
ENV ROCKET_CHAT_TOKEN=dummy-rocketchat-token-for-build
|
|
ENV ROCKET_CHAT_USER_ID=dummy-user-id-for-build
|
|
ENV ROCKET_CHAT_CREATE_TOKEN_SECRET=dummy-secret-for-build
|
|
ENV N8N_API_KEY=dummy-n8n-key-for-build
|
|
ENV TWENTY_CRM_API_KEY=dummy-twenty-key-for-build
|
|
|
|
# MinIO/S3 (dummy for build)
|
|
ENV MINIO_ACCESS_KEY=minioadmin
|
|
ENV MINIO_SECRET_KEY=minioadmin
|
|
|
|
# Variables iframe
|
|
ENV NEXT_PUBLIC_IFRAME_DRIVE_URL=${NEXT_PUBLIC_IFRAME_DRIVE_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_LEARN_URL=${NEXT_PUBLIC_IFRAME_LEARN_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_PAROLE_URL=${NEXT_PUBLIC_IFRAME_PAROLE_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_CHAPTER_URL=${NEXT_PUBLIC_IFRAME_CHAPTER_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_AGILITY_URL=${NEXT_PUBLIC_IFRAME_AGILITY_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_ARTLAB_URL=${NEXT_PUBLIC_IFRAME_ARTLAB_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_GITE_URL=${NEXT_PUBLIC_IFRAME_GITE_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_CALCULATION_URL=${NEXT_PUBLIC_IFRAME_CALCULATION_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_MEDIATIONS_URL=${NEXT_PUBLIC_IFRAME_MEDIATIONS_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_SHOWCASE_URL=${NEXT_PUBLIC_IFRAME_SHOWCASE_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_LIVRE_URL=${NEXT_PUBLIC_IFRAME_LIVRE_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_CONFERENCE_URL=${NEXT_PUBLIC_IFRAME_CONFERENCE_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_RADIO_URL=${NEXT_PUBLIC_IFRAME_RADIO_URL}
|
|
ENV NEXT_PUBLIC_IFRAME_TIMETRACKER_URL=${NEXT_PUBLIC_IFRAME_TIMETRACKER_URL}
|
|
|
|
# Build Next.js (sans migrations - elles seront appliquées séparément)
|
|
ENV NEXT_TELEMETRY_DISABLED=1
|
|
RUN npm run build
|
|
|
|
# ============================================
|
|
# Étape 3: Runner (image finale)
|
|
# ============================================
|
|
FROM base AS runner
|
|
WORKDIR /app
|
|
|
|
ENV NODE_ENV=production
|
|
ENV NEXT_TELEMETRY_DISABLED=1
|
|
|
|
# Créer un utilisateur non-root pour la sécurité
|
|
RUN addgroup --system --gid 1001 nodejs
|
|
RUN adduser --system --uid 1001 nextjs
|
|
|
|
# Copier les fichiers nécessaires depuis le builder
|
|
COPY --from=builder /app/public ./public
|
|
|
|
# Copier le build standalone de Next.js
|
|
COPY --from=builder --chown=nextjs:nodejs /app/.next/standalone ./
|
|
COPY --from=builder --chown=nextjs:nodejs /app/.next/static ./.next/static
|
|
|
|
# Copier Prisma (nécessaire pour le runtime)
|
|
COPY --from=builder --chown=nextjs:nodejs /app/node_modules/.prisma ./node_modules/.prisma
|
|
COPY --from=builder --chown=nextjs:nodejs /app/node_modules/@prisma ./node_modules/@prisma
|
|
|
|
# Copier le CLI Prisma (nécessaire pour les migrations)
|
|
COPY --from=builder --chown=nextjs:nodejs /app/node_modules/prisma ./node_modules/prisma
|
|
|
|
# Copier le schéma Prisma (nécessaire pour certaines opérations)
|
|
COPY --from=builder --chown=nextjs:nodejs /app/prisma ./prisma
|
|
|
|
# Copier package.json pour les scripts Prisma
|
|
COPY --from=builder --chown=nextjs:nodejs /app/package.json ./package.json
|
|
|
|
USER nextjs
|
|
|
|
EXPOSE 3000
|
|
|
|
ENV PORT=3000
|
|
ENV HOSTNAME="0.0.0.0"
|
|
|
|
# Health check
|
|
HEALTHCHECK --interval=30s --timeout=3s --start-period=40s --retries=3 \
|
|
CMD node -e "require('http').get('http://localhost:3000/api/health', (r) => {process.exit(r.statusCode === 200 ? 0 : 1)})" || exit 1
|
|
|
|
# Note: Les migrations Prisma doivent être appliquées séparément avant le démarrage
|
|
# Utilisez: docker exec <container> npx prisma migrate deploy
|
|
CMD ["node", "server.js"]
|