apskel-pos-backend/Dockerfile

# =========================
# 3) Production runtime
# =========================
FROM debian:bullseye-slim AS production

# Install only minimal runtime deps
RUN apt-get update && apt-get install -y \
    ca-certificates \
    tzdata \
    curl \
 && rm -rf /var/lib/apt/lists/*

# Create non-root user
RUN groupadd -r appuser && useradd -r -g appuser appuser

# Copy app binary from build
COPY --from=build /out/app /app

# Copy infra/config files (if your app reads config/templates from here)
COPY --from=migration /src/infra /infra

# Optionally copy migrations and migrate binary so you can run migrations
COPY --from=migration /go/bin/migrate /usr/local/bin/migrate
COPY --from=migration /src/migrations /migrations

# Permissions
RUN chown -R appuser:appuser /app /infra /migrations

# Env & timezone
ENV TZ=Asia/Jakarta

# Network
EXPOSE 3300

# Healthcheck
HEALTHCHECK --interval=30s --timeout=10s --start-period=30s --retries=3 \
  CMD curl -fsS http://localhost:3300/health || exit 1

# Drop privileges
USER appuser

# Default entrypoint -> run the server
ENTRYPOINT ["/app"]
add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# =========================`
			`# 3) Production runtime`
			`# =========================`
init 2025-07-18 20:10:29 +07:00			`FROM debian:bullseye-slim AS production`

add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Install only minimal runtime deps`
init 2025-07-18 20:10:29 +07:00			`RUN apt-get update && apt-get install -y \`
			`ca-certificates \`
			`tzdata \`
			`curl \`
add cors check and update docker file 2025-09-01 16:14:15 +07:00			`&& rm -rf /var/lib/apt/lists/*`
init 2025-07-18 20:10:29 +07:00
add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Create non-root user`
init 2025-07-18 20:10:29 +07:00			`RUN groupadd -r appuser && useradd -r -g appuser appuser`

add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Copy app binary from build`
			`COPY --from=build /out/app /app`

			`# Copy infra/config files (if your app reads config/templates from here)`
			`COPY --from=migration /src/infra /infra`
init project 2023-10-08 15:59:42 +07:00
add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Optionally copy migrations and migrate binary so you can run migrations`
			`COPY --from=migration /go/bin/migrate /usr/local/bin/migrate`
			`COPY --from=migration /src/migrations /migrations`
init 2025-07-18 20:10:29 +07:00
add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Permissions`
			`RUN chown -R appuser:appuser /app /infra /migrations`
init project 2023-10-08 15:59:42 +07:00
add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Env & timezone`
init project 2023-10-08 15:59:42 +07:00			`ENV TZ=Asia/Jakarta`

add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Network`
init 2025-07-18 20:10:29 +07:00			`EXPOSE 3300`

add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Healthcheck`
init 2025-07-18 20:10:29 +07:00			`HEALTHCHECK --interval=30s --timeout=10s --start-period=30s --retries=3 \`
add cors check and update docker file 2025-09-01 16:14:15 +07:00			`CMD curl -fsS http://localhost:3300/health \|\| exit 1`
init 2025-07-18 20:10:29 +07:00
add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Drop privileges`
init 2025-07-18 20:10:29 +07:00			`USER appuser`

add cors check and update docker file 2025-09-01 16:14:15 +07:00			`# Default entrypoint -> run the server`
init project 2023-10-08 15:59:42 +07:00			`ENTRYPOINT ["/app"]`