# Truth Semantic Service Dockerfile
# Bun-based Fastify application with GPU support for embeddings

# =============================================================================
# BUILD STAGE
# =============================================================================
FROM oven/bun:1-alpine AS builder

WORKDIR /app

# Copy package files
COPY package.json bun.lockb* ./

# Install dependencies
RUN bun install --frozen-lockfile

# Copy source
COPY . .

# Build TypeScript
RUN bun run build

# =============================================================================
# PRODUCTION STAGE
# =============================================================================
FROM oven/bun:1-alpine AS production

WORKDIR /app

# Create non-root user
RUN addgroup -g 1001 -S bunjs && \
    adduser -S semantic -u 1001

# Copy built application
COPY --from=builder --chown=semantic:bunjs /app/dist ./dist
COPY --from=builder --chown=semantic:bunjs /app/node_modules ./node_modules
COPY --from=builder --chown=semantic:bunjs /app/package.json ./

# Set user
USER semantic

# Environment defaults
ENV TRUTH_SEMANTIC_PORT=41233
ENV REDIS_URL=redis://localhost:6379
ENV DOCS_PATH=/docs

# Expose port
EXPOSE 41233

# Health check
HEALTHCHECK --interval=30s --timeout=3s --start-period=30s --retries=3 \
    CMD wget --no-verbose --tries=1 --spider http://localhost:41233/health || exit 1

# Start application
CMD ["bun", "run", "dist/index.js"]
