fix(docker-usage): single image setup

docker/Dockerfile

@@ -0,0 +1,93 @@
+# Multi-stage build for Perplexica
+# Stage 1: Build the backend
+FROM node:lts-alpine as backend-builder
+
+WORKDIR /app
+
+COPY src ./src
+COPY tsconfig.json drizzle.config.ts package.json yarn.lock ./
+
+RUN yarn install --frozen-lockfile --network-timeout 600000 && \
+    yarn build
+
+# Stage 2: Build the frontend
+FROM node:lts-alpine as frontend-builder
+
+WORKDIR /app
+
+COPY ui ./
+ARG NEXT_PUBLIC_API_URL=/api
+ARG NEXT_PUBLIC_WS_URL=auto
+ENV NEXT_PUBLIC_API_URL=${NEXT_PUBLIC_API_URL}
+ENV NEXT_PUBLIC_WS_URL=${NEXT_PUBLIC_WS_URL}
+
+RUN yarn install --frozen-lockfile && \
+    yarn build
+
+# Stage 3: Final image
+FROM node:lts-alpine
+
+# Install curl and jq for GitHub API access
+RUN apk add --no-cache curl jq
+
+# Determine latest S6 overlay version at build time
+RUN S6_OVERLAY_VERSION=$(curl -s https://api.github.com/repos/just-containers/s6-overlay/releases/latest | jq -r .tag_name | sed 's/^v//') && \
+    echo "Using S6 overlay version: $S6_OVERLAY_VERSION" && \
+    echo "$S6_OVERLAY_VERSION" > /tmp/s6-version
+
+# Use Docker's TARGETARCH for automatic architecture detection
+ARG TARGETARCH
+
+# Install additional required packages and create directory structure in one layer
+RUN apk add --no-cache \
+    nginx \
+    tzdata \
+    bash && \
+    mkdir -p /app/backend /app/frontend /app/data /app/uploads
+
+# Map Docker's architecture names to s6-overlay architecture names and download/install
+RUN S6_OVERLAY_VERSION=$(cat /tmp/s6-version) && \
+    case "${TARGETARCH}" in \
+      "amd64")  S6_OVERLAY_ARCH="x86_64"  ;; \
+      "arm64")  S6_OVERLAY_ARCH="aarch64" ;; \
+      "arm")    S6_OVERLAY_ARCH="arm"     ;; \
+      *) echo "Unsupported architecture: ${TARGETARCH}. Only amd64, arm64, and arm are supported." && exit 1 ;; \
+    esac && \
+    echo "Target architecture: ${TARGETARCH} -> S6 architecture: ${S6_OVERLAY_ARCH}" && \
+    echo "Downloading s6-overlay v${S6_OVERLAY_VERSION} for architecture: ${S6_OVERLAY_ARCH}" && \
+    curl -L -s -o /tmp/s6-overlay-noarch.tar.xz "https://github.com/just-containers/s6-overlay/releases/download/v${S6_OVERLAY_VERSION}/s6-overlay-noarch.tar.xz" && \
+    tar -C / -Jxpf /tmp/s6-overlay-noarch.tar.xz && \
+    curl -L -s -o /tmp/s6-overlay-arch.tar.xz "https://github.com/just-containers/s6-overlay/releases/download/v${S6_OVERLAY_VERSION}/s6-overlay-${S6_OVERLAY_ARCH}.tar.xz" && \
+    tar -C / -Jxpf /tmp/s6-overlay-arch.tar.xz && \
+    curl -L -s -o /tmp/s6-overlay-symlinks-noarch.tar.xz "https://github.com/just-containers/s6-overlay/releases/download/v${S6_OVERLAY_VERSION}/s6-overlay-symlinks-noarch.tar.xz" && \
+    tar -C / -Jxpf /tmp/s6-overlay-symlinks-noarch.tar.xz && \
+    rm -f /tmp/s6-overlay-*.tar.xz /tmp/s6-version
+
+# Copy configuration files
+COPY docker/etc/s6-overlay/services /etc/services.d/
+COPY docker/etc/nginx/nginx.conf /etc/nginx/nginx.conf
+
+# Make service scripts executable
+RUN chmod +x /etc/services.d/*/run /etc/services.d/*/finish
+
+# Copy application files from builders
+COPY --from=backend-builder /app/dist /app/backend/dist
+COPY --from=backend-builder /app/node_modules /app/backend/node_modules
+COPY --from=backend-builder /app/package.json /app/backend/package.json
+COPY --from=backend-builder /app/drizzle.config.ts /app/backend/drizzle.config.ts
+# Copy only the schema file for Drizzle migrations
+COPY --from=backend-builder /app/src/db/schema.ts /app/backend/src/db/schema.ts
+COPY --from=frontend-builder /app/.next /app/frontend/.next
+COPY --from=frontend-builder /app/node_modules /app/frontend/node_modules
+COPY --from=frontend-builder /app/package.json /app/frontend/package.json
+COPY --from=frontend-builder /app/public /app/frontend/public
+
+# Configure volumes and ports
+VOLUME ["/app/backend/data", "/app/backend/uploads"]
+EXPOSE 8080
+
+# Set up healthcheck
+HEALTHCHECK --interval=30s --timeout=10s --start-period=5s --retries=3 \
+    CMD curl -f http://localhost:8080/ || exit 1
+
+ENTRYPOINT ["/init"]

docker/etc/nginx/nginx.conf

@@ -0,0 +1,55 @@
+events {
+    worker_connections 1024;
+}
+
+http {
+    port_in_redirect on;
+    absolute_redirect off;
+
+    server {
+        listen 8080;
+        server_name localhost;
+
+        # Global timeout settings for all locations
+        proxy_read_timeout 86400s;    # 24 hours
+        proxy_send_timeout 86400s;    # 24 hours
+        proxy_connect_timeout 60s;    # Connection establishment timeout
+
+        # API requests
+        location /api {
+            proxy_pass http://localhost:3001;
+            proxy_set_header Host $host;
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+            proxy_set_header X-Forwarded-Proto $scheme;
+        }
+
+        # WebSocket requests
+        location /ws {
+            proxy_pass http://localhost:3001;
+            proxy_http_version 1.1;
+            proxy_set_header Upgrade $http_upgrade;
+            proxy_set_header Connection "upgrade";
+            proxy_set_header Host $host;
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+            proxy_set_header X-Forwarded-Proto $scheme;
+        }
+
+        # Frontend requests
+        location / {
+            proxy_pass http://localhost:3000;
+            proxy_set_header Host $host;
+            proxy_set_header X-Real-IP $remote_addr;
+            proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+            proxy_set_header X-Forwarded-Proto $scheme;
+        }
+
+        # Security headers
+        add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
+        add_header X-XSS-Protection "1; mode=block" always;
+        add_header X-Content-Type-Options "nosniff" always;
+        add_header X-Frame-Options "SAMEORIGIN" always;
+        server_tokens off;
+    }
+}

docker/etc/s6-overlay/services/backend/finish

@@ -0,0 +1,3 @@
+#!/usr/bin/with-contenv bash
+s6-svc -d /var/run/s6/services/frontend
+s6-svc -d /var/run/s6/services/nginx

docker/etc/s6-overlay/services/backend/run

@@ -0,0 +1,8 @@
+#!/usr/bin/with-contenv bash
+cd /app/backend
+
+# Run database migrations before starting the app
+yarn db:push
+
+# Start the application
+exec node dist/app.js

docker/etc/s6-overlay/services/frontend/finish

@@ -0,0 +1,2 @@
+#!/usr/bin/with-contenv bash
+s6-svc -d /var/run/s6/services/nginx

docker/etc/s6-overlay/services/frontend/run

@@ -0,0 +1,3 @@
+#!/usr/bin/with-contenv bash
+cd /app/frontend
+exec node_modules/.bin/next start

docker/etc/s6-overlay/services/nginx/run

@@ -0,0 +1,2 @@
+#!/usr/bin/with-contenv bash
+exec nginx -g "daemon off;"