FROM alpine:latest AS perms

# This is a bit weird, but required to make sure the LND data can be accessed. 
RUN adduser --disabled-password \
            --home "/lndhub" \
            --gecos "" \
            "lndhub"

FROM node:16-bullseye-slim AS builder

# These packages are required for building LNDHub
RUN apt-get update && apt-get -y install python3

WORKDIR /lndhub

# Copy 'package-lock.json' and 'package.json'
COPY package.json package-lock.json ./

# Install dependencies
RUN npm i

# Copy project files and folders to the current working directory
COPY . .

# Delete git data as it's not needed inside the container
RUN rm -rf .git

FROM node:16-bullseye-slim

# Create a specific user so LNDHub doesn't run as root
COPY  --from=perms /etc/group /etc/passwd /etc/shadow  /etc/

# Copy LNDHub with installed modules from builder
COPY  --from=builder /lndhub /lndhub

# Create logs folder and ensure permissions are set correctly
RUN mkdir /lndhub/logs && chown -R lndhub:lndhub /lndhub
USER lndhub

ENV PORT=3000
EXPOSE 3000

CMD cp $LND_CERT_FILE /lndhub/ && cp $LND_ADMIN_MACAROON_FILE /lndhub/ && cd /lndhub && npm start