# --- Base image ---
# Node 22 LTS (Debian slim — glibc required for sharp image optimization)
FROM node:22-slim AS base

# --- Stage 1: Install dependencies ---
FROM base AS deps
WORKDIR /app
RUN corepack enable pnpm
COPY package.json pnpm-lock.yaml ./
RUN --mount=type=cache,id=pnpm,target=/root/.local/share/pnpm/store \
    pnpm install --frozen-lockfile

# --- Stage 2: Build the application ---
FROM base AS builder
WORKDIR /app
RUN corepack enable pnpm
COPY --from=deps /app/node_modules ./node_modules
COPY . .
ENV NODE_ENV=production
ENV NEXT_TELEMETRY_DISABLED=1
# Dummy env vars so toolkit.config.ts doesn't throw at build time (no DB connection needed)
ENV DATABASE_URL=postgresql://build:build@localhost:5432/build
ENV BETTER_AUTH_SECRET=build-secret-not-used-at-runtime
RUN pnpm build

# --- Stage 3: Production runner ---
FROM base AS runner
WORKDIR /app
ENV NODE_ENV=production
ENV PORT=3000
ENV HOSTNAME=0.0.0.0
ENV NEXT_TELEMETRY_DISABLED=1

# Copy standalone output (includes server.js + traced node_modules)
COPY --from=builder --chown=node:node /app/.next/standalone ./
# Copy static assets (JS/CSS chunks — excluded from standalone trace)
COPY --from=builder --chown=node:node /app/.next/static ./.next/static
# Copy public assets (favicon, robots.txt, images)
COPY --from=builder --chown=node:node /app/public ./public
# Copy migrations (applied at app startup by the toolkit migration runner)
COPY --from=builder --chown=node:node /app/migrations ./migrations

# Run as non-root user
USER node
EXPOSE 3000
CMD ["node", "server.js"]
