Dockerfile

# ─── Stage 1: Build ───────────────────────────────────────────────────────
FROM node:20-alpine AS builder

WORKDIR /app

# Server
COPY server/package*.json ./server/
RUN cd server && npm ci

COPY server/ ./server/
RUN cd server && npm run db:generate && npm run build

# Client
COPY client/package*.json ./client/
RUN cd client && npm ci

COPY client/ ./client/
RUN cd client && npm run build

# ─── Stage 2: Runtime ─────────────────────────────────────────────────────
FROM node:20-alpine AS runtime

# Security: run as non-root
RUN addgroup -S appgroup && adduser -S appuser -G appgroup

WORKDIR /app

ENV NODE_ENV=production

# Server production deps only
COPY server/package*.json ./server/
RUN cd server && npm ci --omit=dev && npm cache clean --force

# Built artifacts
COPY --from=builder /app/server/dist       ./server/dist
COPY --from=builder /app/server/prisma     ./server/prisma
COPY --from=builder /app/server/node_modules/.prisma  ./server/node_modules/.prisma
COPY --from=builder /app/server/node_modules/@prisma  ./server/node_modules/@prisma

# React SPA
COPY --from=builder /app/client/dist ./client/dist

# Data directory for SQLite (bind-mount or volume in production)
RUN mkdir -p /data && chown appuser:appgroup /data

USER appuser

EXPOSE 8080

HEALTHCHECK --interval=30s --timeout=5s --start-period=15s --retries=3 \
  CMD wget -qO- http://localhost:8080/api/v1/health || exit 1

WORKDIR /app/server

CMD ["sh", "-c", "npx prisma migrate deploy && node dist/index.js"]
Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# ─── Stage 1: Build ───────────────────────────────────────────────────────`
Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`FROM node:20-alpine AS builder`

			`WORKDIR /app`

Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# Server`
Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`COPY server/package*.json ./server/`
			`RUN cd server && npm ci`

			`COPY server/ ./server/`
			`RUN cd server && npm run db:generate && npm run build`

Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# Client`
Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`COPY client/package*.json ./client/`
			`RUN cd client && npm ci`

			`COPY client/ ./client/`
			`RUN cd client && npm run build`

Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# ─── Stage 2: Runtime ─────────────────────────────────────────────────────`
Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`FROM node:20-alpine AS runtime`

Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# Security: run as non-root`
			`RUN addgroup -S appgroup && adduser -S appuser -G appgroup`

Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`WORKDIR /app`

			`ENV NODE_ENV=production`

Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# Server production deps only`
Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`COPY server/package*.json ./server/`
Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`RUN cd server && npm ci --omit=dev && npm cache clean --force`
Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00
Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# Built artifacts`
			`COPY --from=builder /app/server/dist ./server/dist`
			`COPY --from=builder /app/server/prisma ./server/prisma`
			`COPY --from=builder /app/server/node_modules/.prisma ./server/node_modules/.prisma`
			`COPY --from=builder /app/server/node_modules/@prisma ./server/node_modules/@prisma`
Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00
Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# React SPA`
Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`COPY --from=builder /app/client/dist ./client/dist`

Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`# Data directory for SQLite (bind-mount or volume in production)`
			`RUN mkdir -p /data && chown appuser:appgroup /data`

			`USER appuser`

Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`EXPOSE 8080`

Milestone 4: payment abstraction, receipts, refunds, logging, hardened Docker 2026-03-21 06:57:33 -05:00			`HEALTHCHECK --interval=30s --timeout=5s --start-period=15s --retries=3 \`
			`CMD wget -qO- http://localhost:8080/api/v1/health \|\| exit 1`

Add Milestones 1 & 2: full-stack POS foundation with admin UI 2026-03-20 23:18:04 -05:00			`WORKDIR /app/server`

			`CMD ["sh", "-c", "npx prisma migrate deploy && node dist/index.js"]`