feat: create Docker images for api-server (#51142)

docker/api/Dockerfile

@@ -1,35 +1,61 @@
-FROM node:16-buster AS builder
-# Install doppler CLI
-RUN (curl -Ls --tlsv1.2 --proto "=https" --retry 3 https://cli.doppler.com/install.sh) | sh -s -- --verify-signature
+# bookworm was only released on 10-6-2023, so is a little too new.
+FROM node:18-bullseye AS builder
+ENV PNPM_HOME="/pnpm"
+ENV PATH="$PNPM_HOME:$PATH"
+# global installs need root permissions, so have to happen before we switch to
+# the node user
+RUN npm i -g pnpm@8
 # node images create a non-root user that we can use
 USER node
 WORKDIR /home/node/build
 COPY --chown=node:node . .
-# Pass `DOPPLER_TOKEN` at build time to create an encrypted snapshot for high-availability
-ARG DOPPLER_TOKEN
-RUN \
-  doppler secrets download doppler.encrypted.json &&\
-  pnpm install --no-progress --ignore-scripts &&\
-  doppler run --fallback=doppler.encrypted.json --command="npm run create:config" &&\
-  doppler run --fallback=doppler.encrypted.json --command="npm run build:curriculum" &&\
-  doppler run --fallback=doppler.encrypted.json --command="npm run build:server"
 
-FROM node:16-alpine as depends
-USER node
-WORKDIR /home/node/depends
-COPY --chown=node:node . .
-RUN pnpm install --production --workspace=api-server --no-progress --ignore-scripts
+# TODO: figure out why the cache is getting invalidated. Is it in part because
+# we're not ignoring THIS file? Or do we need corepack?
 
-FROM node:16-alpine
+# We have to prevent pnpm from deduping peer dependencies because otherwise it
+# will install all of the packages, not just api-server. Also, pnpm deploy is
+# not useful since we need to install more than one package.
+
+RUN pnpm config set dedupe-peer-dependents false
+RUN pnpm -F=api-server -F=tools/scripts/build -F=challenge-parser -F=curriculum -F=shared \
+  install --frozen-lockfile --ignore-scripts
+
+# The api needs to source curriculum.json and build:curriculum relies on the
+# following env vars.
+ARG SHOW_UPCOMING_CHANGES=false
+ENV SHOW_UPCOMING_CHANGES=$SHOW_UPCOMING_CHANGES
+ARG SHOW_NEW_CURRICULUM=true
+ENV SHOW_NEW_CURRICULUM=$SHOW_NEW_CURRICULUM
+RUN pnpm build:curriculum
+
+RUN pnpm build:server
+
+FROM node:18-bullseye AS deps
+
+WORKDIR /home/node/build
+COPY --chown=node:node pnpm*.yaml .
+COPY --chown=node:node api-server/package.json api-server/package.json
+COPY --chown=node:node shared/package.json shared/package.json
+
+RUN npm i -g pnpm@8
+# Prevent pnpm installing unnecessary packages (see above)
+RUN pnpm config set dedupe-peer-dependents false
+RUN pnpm -F=api-server -F=shared install --prod --ignore-scripts
+
+FROM node:18-alpine
 RUN npm i -g pm2@4
 USER node
-WORKDIR /home/node/api
+WORKDIR /home/node/fcc
+COPY --from=builder --chown=node:node /home/node/build/api-server/config/ api-server/config/
 COPY --from=builder --chown=node:node /home/node/build/api-server/lib/ api-server/lib/
-COPY --from=builder --chown=node:node /home/node/build/utils/ utils/
-COPY --from=builder --chown=node:node /home/node/build/config/ config/
-COPY --from=depends --chown=node:node /home/node/depends/api-server/node_modules/ api-server/node_modules/
-COPY --from=depends --chown=node:node /home/node/depends/node_modules/ node_modules/
-WORKDIR /home/node/api/api-server
-CMD ["pm2-runtime", "./lib/production-start.js"]
+COPY --from=builder --chown=node:node /home/node/build/api-server/ecosystem.config.js api-server/ecosystem.config.js
+COPY --from=builder --chown=node:node /home/node/build/api-server/package.json api-server/package.json
+COPY --from=builder --chown=node:node /home/node/build/shared/ shared/
+COPY --from=builder --chown=node:node /home/node/build/package.json package.json
+COPY --from=deps --chown=node:node /home/node/build/node_modules/ node_modules/
+COPY --from=deps --chown=node:node /home/node/build/api-server/node_modules/ api-server/node_modules/
+COPY --from=deps --chown=node:node /home/node/build/shared/node_modules/ shared/node_modules/
+
+CMD ["pm2-runtime", "start", "api-server/ecosystem.config.js"]
 
-# TODO: don't copy mocks/fixtures