Skip to content

Prepare Docker Compose VPS deployment #25

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
Spbd1 wants to merge 1 commit into
base: codex/improve-admin-dashboard-analytics
Choose a base branch
from
Open

Prepare Docker Compose VPS deployment #25

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 4 additions & 0 deletions .dockerignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,3 +11,7 @@ npm-debug.log*
Dockerfile
.dockerignore
README.md
.docker/
docker-data/
docker-compose.override.yml
*.tar
13 changes: 11 additions & 2 deletions Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
FROM node:20-alpine
FROM node:22-alpine

WORKDIR /app
ENV NODE_ENV=production

ENV NEXT_TELEMETRY_DISABLED=1

COPY package*.json ./
Expand All @@ -11,8 +11,17 @@ COPY prisma ./prisma
RUN npm run db:generate

COPY . .

ARG NEXT_PUBLIC_ENABLE_SERVER_SUBMISSION=false
ENV NEXT_PUBLIC_ENABLE_SERVER_SUBMISSION=${NEXT_PUBLIC_ENABLE_SERVER_SUBMISSION}

RUN npm run build

ENV NODE_ENV=production
ENV NEXT_TELEMETRY_DISABLED=1
ENV HOSTNAME=0.0.0.0
ENV PORT=3000

EXPOSE 3000

CMD ["npm", "run", "start"]
15 changes: 11 additions & 4 deletions docker-compose.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,24 +1,31 @@
services:
app:
build: .
build:
context: .
args:
# Public browser flag is embedded during `next build`; set it before building on the VPS.
NEXT_PUBLIC_ENABLE_SERVER_SUBMISSION: ${NEXT_PUBLIC_ENABLE_SERVER_SUBMISSION:-true}
env_file:
- path: .env
required: false
environment:
NODE_ENV: production
NEXT_TELEMETRY_DISABLED: "1"
APP_BASE_URL: ${APP_BASE_URL:-http://localhost:3000}
APP_BASE_URL: ${APP_BASE_URL:-http://127.0.0.1:3000}
DATABASE_URL: postgresql://${POSTGRES_USER:-hcg}:${POSTGRES_PASSWORD:-hcg_password_change_me}@postgres:5432/${POSTGRES_DB:-hidden_cost_game}?schema=public
ENABLE_SERVER_SUBMISSION: ${ENABLE_SERVER_SUBMISSION:-true}
NEXT_PUBLIC_ENABLE_SERVER_SUBMISSION: ${NEXT_PUBLIC_ENABLE_SERVER_SUBMISSION:-true}
ADMIN_EXPORT_TOKEN: ${ADMIN_EXPORT_TOKEN:-change-me-before-production}
ADMIN_DASHBOARD_PASSWORD: ${ADMIN_DASHBOARD_PASSWORD:-change-me-before-production}
SUBMISSION_RATE_LIMIT_WINDOW_MS: ${SUBMISSION_RATE_LIMIT_WINDOW_MS:-60000}
SUBMISSION_RATE_LIMIT_MAX: ${SUBMISSION_RATE_LIMIT_MAX:-20}
MAX_SUBMISSION_BODY_BYTES: ${MAX_SUBMISSION_BODY_BYTES:-250000}
GOOGLE_SHEETS_WEBHOOK_URL: ${GOOGLE_SHEETS_WEBHOOK_URL:-}
GOOGLE_SHEETS_WEBHOOK_SECRET: ${GOOGLE_SHEETS_WEBHOOK_SECRET:-}
CONSENT_VERSION: ${CONSENT_VERSION:-pilot-consent-v1}
SCHEMA_VERSION: ${SCHEMA_VERSION:-research-export-v1}
ports:
# VPS: app is reachable only on the host at http://127.0.0.1:3000.
# Public access should go through Caddy/Nginx with HTTPS termination.
- "127.0.0.1:3000:3000"
depends_on:
postgres:
Expand All @@ -39,7 +46,7 @@ services:
timeout: 5s
retries: 5
restart: unless-stopped
# Intentionally no ports: entry. Keep Postgres private to the Docker network in production.
# VPS: intentionally no `ports:` entry. Postgres stays private inside the Docker network.

volumes:
postgres_data: