backend/Dockerfile

# ================================
# Build Stage
# ================================
FROM node:20-alpine AS builder

WORKDIR /app

# Install dependencies for native modules
RUN apk add --no-cache python3 make g++

# Copy package files
COPY package*.json ./

# Install ALL dependencies (including devDependencies for build)
RUN npm ci && npm cache clean --force

# Copy source code
COPY . .

# Build the application
RUN npm run build

# Remove devDependencies after build
RUN npm prune --production

# ================================
# Production Stage
# ================================
FROM node:20-alpine AS production

WORKDIR /app

# Add labels
LABEL maintainer="Government of Goa"
LABEL description="Goa GEL Backend - Blockchain Document Verification Platform"
LABEL version="1.0.0"

# Install runtime dependencies
RUN apk add --no-cache \
    postgresql-client \
    bash \
    wget

# Create non-root user for security
RUN addgroup -g 1001 -S nodejs && \
    adduser -S nestjs -u 1001

# Copy built application from builder
COPY --from=builder --chown=nestjs:nodejs /app/dist ./dist
COPY --from=builder --chown=nestjs:nodejs /app/node_modules ./node_modules
COPY --from=builder --chown=nestjs:nodejs /app/package*.json ./

# Copy compiled database migrations and seeds from dist (only .js files, no .d.ts or .map)
COPY --from=builder --chown=nestjs:nodejs /app/dist/database/migrations ./src/database/migrations
COPY --from=builder --chown=nestjs:nodejs /app/dist/database/seeds ./src/database/seeds
COPY --from=builder --chown=nestjs:nodejs /app/dist/database/knexfile.js ./src/database/knexfile.js

# Remove TypeScript declaration files that can confuse Knex
RUN find ./src/database -name "*.d.ts" -delete && \
    find ./src/database -name "*.js.map" -delete

# Copy initialization scripts (shell and JS)
COPY --chown=nestjs:nodejs scripts ./scripts
RUN chmod +x scripts/*.sh 2>/dev/null || true

# Create data directory for initialization flags
RUN mkdir -p /app/data && chown nestjs:nodejs /app/data

# Set environment variables
ENV NODE_ENV=production
ENV PORT=3001

# Expose port
EXPOSE 3001

# Health check
HEALTHCHECK --interval=30s --timeout=10s --start-period=40s --retries=3 \
  CMD wget --no-verbose --tries=1 --spider http://localhost:3001/api/v1/health || exit 1

# Use entrypoint script for initialization
ENTRYPOINT ["/app/scripts/docker-entrypoint.sh"]
feat: Goa GEL Blockchain e-Licensing Platform - Full Stack Implementation Complete implementation of the Goa Government e-Licensing platform with: Backend: - NestJS API with JWT authentication - PostgreSQL database with Knex ORM - Redis caching and session management - MinIO document storage - Hyperledger Besu blockchain integration - Multi-department workflow system - Comprehensive API tests (266/282 passing) Frontend: - Angular 21 with standalone components - Angular Material + TailwindCSS UI - Visual workflow builder - Document upload with progress tracking - Blockchain explorer integration - Role-based dashboards (Admin, Department, Citizen) - E2E tests with Playwright (37 tests) Infrastructure: - Docker Compose orchestration - Blockscout blockchain explorer - Development and production configurations 2026-02-07 10:23:29 -04:00			`# ================================`
			`# Build Stage`
			`# ================================`
			`FROM node:20-alpine AS builder`

			`WORKDIR /app`

			`# Install dependencies for native modules`
			`RUN apk add --no-cache python3 make g++`

			`# Copy package files`
			`COPY package*.json ./`

			`# Install ALL dependencies (including devDependencies for build)`
			`RUN npm ci && npm cache clean --force`

			`# Copy source code`
			`COPY . .`

			`# Build the application`
			`RUN npm run build`

			`# Remove devDependencies after build`
			`RUN npm prune --production`

			`# ================================`
			`# Production Stage`
			`# ================================`
			`FROM node:20-alpine AS production`

			`WORKDIR /app`

			`# Add labels`
			`LABEL maintainer="Government of Goa"`
			`LABEL description="Goa GEL Backend - Blockchain Document Verification Platform"`
			`LABEL version="1.0.0"`

			`# Install runtime dependencies`
			`RUN apk add --no-cache \`
			`postgresql-client \`
			`bash \`
			`wget`

			`# Create non-root user for security`
			`RUN addgroup -g 1001 -S nodejs && \`
			`adduser -S nestjs -u 1001`

			`# Copy built application from builder`
			`COPY --from=builder --chown=nestjs:nodejs /app/dist ./dist`
			`COPY --from=builder --chown=nestjs:nodejs /app/node_modules ./node_modules`
			`COPY --from=builder --chown=nestjs:nodejs /app/package*.json ./`

feat: Runtime configuration and Docker deployment improvements Frontend: - Add runtime configuration service for deployment-time API URL injection - Create docker-entrypoint.sh to generate config.json from environment variables - Update ApiService, ApprovalService, and DocumentViewer to use RuntimeConfigService - Add APP_INITIALIZER to load runtime config before app starts Backend: - Fix init-blockchain.js to properly quote mnemonic phrases in .env file - Improve docker-entrypoint.sh with health checks and better error handling Docker: - Add API_BASE_URL environment variable to frontend container - Update docker-compose.yml with clear documentation for remote deployment - Reorganize .env.example with clear categories (REQUIRED FOR REMOTE, PRODUCTION, AUTO-GENERATED) Workflow fixes: - Fix DepartmentApproval interface to match backend schema - Fix stage transformation for 0-indexed stageOrder - Fix workflow list to show correct stage count from definition.stages Cleanup: - Move development artifacts to .trash directory - Remove root-level package.json (was only for utility scripts) - Add .trash/ to .gitignore 2026-02-08 18:44:05 -04:00			`# Copy compiled database migrations and seeds from dist (only .js files, no .d.ts or .map)`
feat: Goa GEL Blockchain e-Licensing Platform - Full Stack Implementation Complete implementation of the Goa Government e-Licensing platform with: Backend: - NestJS API with JWT authentication - PostgreSQL database with Knex ORM - Redis caching and session management - MinIO document storage - Hyperledger Besu blockchain integration - Multi-department workflow system - Comprehensive API tests (266/282 passing) Frontend: - Angular 21 with standalone components - Angular Material + TailwindCSS UI - Visual workflow builder - Document upload with progress tracking - Blockchain explorer integration - Role-based dashboards (Admin, Department, Citizen) - E2E tests with Playwright (37 tests) Infrastructure: - Docker Compose orchestration - Blockscout blockchain explorer - Development and production configurations 2026-02-07 10:23:29 -04:00			`COPY --from=builder --chown=nestjs:nodejs /app/dist/database/migrations ./src/database/migrations`
			`COPY --from=builder --chown=nestjs:nodejs /app/dist/database/seeds ./src/database/seeds`
			`COPY --from=builder --chown=nestjs:nodejs /app/dist/database/knexfile.js ./src/database/knexfile.js`

feat: Runtime configuration and Docker deployment improvements Frontend: - Add runtime configuration service for deployment-time API URL injection - Create docker-entrypoint.sh to generate config.json from environment variables - Update ApiService, ApprovalService, and DocumentViewer to use RuntimeConfigService - Add APP_INITIALIZER to load runtime config before app starts Backend: - Fix init-blockchain.js to properly quote mnemonic phrases in .env file - Improve docker-entrypoint.sh with health checks and better error handling Docker: - Add API_BASE_URL environment variable to frontend container - Update docker-compose.yml with clear documentation for remote deployment - Reorganize .env.example with clear categories (REQUIRED FOR REMOTE, PRODUCTION, AUTO-GENERATED) Workflow fixes: - Fix DepartmentApproval interface to match backend schema - Fix stage transformation for 0-indexed stageOrder - Fix workflow list to show correct stage count from definition.stages Cleanup: - Move development artifacts to .trash directory - Remove root-level package.json (was only for utility scripts) - Add .trash/ to .gitignore 2026-02-08 18:44:05 -04:00			`# Remove TypeScript declaration files that can confuse Knex`
			`RUN find ./src/database -name "*.d.ts" -delete && \`
			`find ./src/database -name "*.js.map" -delete`

			`# Copy initialization scripts (shell and JS)`
feat: Goa GEL Blockchain e-Licensing Platform - Full Stack Implementation Complete implementation of the Goa Government e-Licensing platform with: Backend: - NestJS API with JWT authentication - PostgreSQL database with Knex ORM - Redis caching and session management - MinIO document storage - Hyperledger Besu blockchain integration - Multi-department workflow system - Comprehensive API tests (266/282 passing) Frontend: - Angular 21 with standalone components - Angular Material + TailwindCSS UI - Visual workflow builder - Document upload with progress tracking - Blockchain explorer integration - Role-based dashboards (Admin, Department, Citizen) - E2E tests with Playwright (37 tests) Infrastructure: - Docker Compose orchestration - Blockscout blockchain explorer - Development and production configurations 2026-02-07 10:23:29 -04:00			`COPY --chown=nestjs:nodejs scripts ./scripts`
feat: Runtime configuration and Docker deployment improvements Frontend: - Add runtime configuration service for deployment-time API URL injection - Create docker-entrypoint.sh to generate config.json from environment variables - Update ApiService, ApprovalService, and DocumentViewer to use RuntimeConfigService - Add APP_INITIALIZER to load runtime config before app starts Backend: - Fix init-blockchain.js to properly quote mnemonic phrases in .env file - Improve docker-entrypoint.sh with health checks and better error handling Docker: - Add API_BASE_URL environment variable to frontend container - Update docker-compose.yml with clear documentation for remote deployment - Reorganize .env.example with clear categories (REQUIRED FOR REMOTE, PRODUCTION, AUTO-GENERATED) Workflow fixes: - Fix DepartmentApproval interface to match backend schema - Fix stage transformation for 0-indexed stageOrder - Fix workflow list to show correct stage count from definition.stages Cleanup: - Move development artifacts to .trash directory - Remove root-level package.json (was only for utility scripts) - Add .trash/ to .gitignore 2026-02-08 18:44:05 -04:00			`RUN chmod +x scripts/*.sh 2>/dev/null \|\| true`

			`# Create data directory for initialization flags`
			`RUN mkdir -p /app/data && chown nestjs:nodejs /app/data`
feat: Goa GEL Blockchain e-Licensing Platform - Full Stack Implementation Complete implementation of the Goa Government e-Licensing platform with: Backend: - NestJS API with JWT authentication - PostgreSQL database with Knex ORM - Redis caching and session management - MinIO document storage - Hyperledger Besu blockchain integration - Multi-department workflow system - Comprehensive API tests (266/282 passing) Frontend: - Angular 21 with standalone components - Angular Material + TailwindCSS UI - Visual workflow builder - Document upload with progress tracking - Blockchain explorer integration - Role-based dashboards (Admin, Department, Citizen) - E2E tests with Playwright (37 tests) Infrastructure: - Docker Compose orchestration - Blockscout blockchain explorer - Development and production configurations 2026-02-07 10:23:29 -04:00
			`# Set environment variables`
			`ENV NODE_ENV=production`
			`ENV PORT=3001`

			`# Expose port`
			`EXPOSE 3001`

			`# Health check`
			`HEALTHCHECK --interval=30s --timeout=10s --start-period=40s --retries=3 \`
			`CMD wget --no-verbose --tries=1 --spider http://localhost:3001/api/v1/health \|\| exit 1`

			`# Use entrypoint script for initialization`
			`ENTRYPOINT ["/app/scripts/docker-entrypoint.sh"]`