# ===========================================
# Stage 1: Dependencies
# ===========================================
FROM node:20-alpine AS deps

WORKDIR /app

# Install libc6-compat and openssl for Prisma
RUN apk add --no-cache libc6-compat openssl

# Set dummy DATABASE_URL for Prisma generate (doesn't need real connection)
ENV DATABASE_URL="postgresql://dummy:dummy@dummy:5432/dummy"

# Copy package files
COPY package.json package-lock.json* ./
COPY prisma ./prisma/

# Install dependencies
RUN npm ci --include=dev

# Generate Prisma client
RUN npx prisma generate

# ===========================================
# Stage 2: Builder
# ===========================================
FROM node:20-alpine AS builder

WORKDIR /app

# Copy dependencies from deps stage
COPY --from=deps /app/node_modules ./node_modules
COPY --from=deps /app/prisma ./prisma

# Copy source files
COPY . .

# Build TypeScript
RUN npm run build

# Prune dev dependencies
RUN npm prune --production

# ===========================================
# Stage 3: Production Runner
# ===========================================
FROM node:20-alpine AS runner

WORKDIR /app

# Install libc6-compat and openssl for Prisma (busybox includes netcat)
RUN apk add --no-cache libc6-compat openssl

# Create non-root user for security
RUN addgroup --system --gid 1001 nodejs
RUN adduser --system --uid 1001 appuser

# Set environment
ENV NODE_ENV=production
ENV PORT=3000

# Copy built files and dependencies
COPY --from=builder /app/dist ./dist
COPY --from=builder /app/node_modules ./node_modules
COPY --from=builder /app/prisma ./prisma
COPY --from=builder /app/package.json ./
COPY scripts/startup.sh ./scripts/startup.sh

# Set ownership
RUN chown -R appuser:nodejs /app

# Make startup script executable
RUN chmod +x ./scripts/startup.sh

# Switch to non-root user
USER appuser

# Expose port
EXPOSE 3000

# Health check
HEALTHCHECK --interval=30s --timeout=10s --start-period=30s --retries=3 \
  CMD wget --no-verbose --tries=1 --spider http://localhost:3000/health || exit 1

# Start application with startup script
CMD ["sh", "./scripts/startup.sh"]