# Multi-stage build: First stage builds Angular frontend
FROM node:20.11-alpine3.19 AS frontend-build

# Accept npm registry as build argument
ARG NPM_REGISTRY=https://registry.npmjs.org/

WORKDIR /frontend

# Copy package files
COPY frontend/package*.json ./

# Configure npm registry if custom registry is provided
RUN if [ "$NPM_REGISTRY" != "https://registry.npmjs.org/" ]; then \
        echo "Using custom npm registry: $NPM_REGISTRY"; \
        npm config set registry "$NPM_REGISTRY"; \
    fi

# Install dependencies (ignore package-lock.json if using custom registry)
RUN npm install

# Copy source code
COPY frontend/ ./

# Build for production
RUN npm run build:prod

# Second stage: Python backend with Angular frontend
FROM python:3.11-alpine

WORKDIR /app

# Install system dependencies for Alpine
# Alpine uses apk instead of apt-get and is lighter/faster
RUN apk add --no-cache \
    gcc \
    musl-dev \
    postgresql-dev \
    postgresql-client \
    linux-headers

# Copy requirements and install Python dependencies
COPY requirements.txt .
RUN pip install --no-cache-dir -r requirements.txt

# Copy application code
COPY app/ ./app/
COPY utils/ ./utils/
COPY alembic/ ./alembic/
COPY alembic.ini .

# Copy built Angular frontend from first stage to static directory
COPY --from=frontend-build /frontend/dist/frontend/browser ./static/

# Create non-root user (Alpine uses adduser instead of useradd)
RUN adduser -D -u 1000 appuser && chown -R appuser:appuser /app
USER appuser

# Expose port
EXPOSE 8000

# Health check
HEALTHCHECK --interval=30s --timeout=10s --start-period=5s --retries=3 \
    CMD python -c "import requests; requests.get('http://localhost:8000/health')"

# Run the application
CMD ["uvicorn", "app.main:app", "--host", "0.0.0.0", "--port", "8000"]