Next.jsMục tiêu: image nhỏ, build cache tốt, không kéo theo devDependencies vào runtime.
Cách chuẩn là multi-stage build kết hợp output: 'standalone'.
# 1. deps
FROM node:20-alpine AS deps
WORKDIR /app
COPY package.json pnpm-lock.yaml ./
RUN corepack enable && pnpm i --frozen-lockfile
# 2. build
FROM node:20-alpine AS builder
WORKDIR /app
COPY --from=deps /app/node_modules ./node_modules
COPY . .
RUN corepack enable && pnpm build
# 3. runner — chỉ chứa output standalone
FROM node:20-alpine AS runner
WORKDIR /app
ENV NODE_ENV=production
COPY --from=builder /app/.next/standalone ./
COPY --from=builder /app/.next/static ./.next/static
COPY --from=builder /app/public ./public
EXPOSE 3000
CMD ["node", "server.js"]Tại sao multi-stage: stage cuối chỉ lấy standalone (đã trace dependency) → image chỉ vài chục MB, không có source code hay devDeps.
Lưu ý: ENV NEXT_PUBLIC_* được inline lúc build, không phải runtime — nếu cần đổi theo môi trường, phải build lại hoặc dùng runtime config riêng.
Goal: small image, good build cache, no devDependencies in runtime.
The standard is a multi-stage build combined with output: 'standalone'.
# 1. deps
FROM node:20-alpine AS deps
WORKDIR /app
COPY package.json pnpm-lock.yaml ./
RUN corepack enable && pnpm i --frozen-lockfile
# 2. build
FROM node:20-alpine AS builder
WORKDIR /app
COPY --from=deps /app/node_modules ./node_modules
COPY . .
RUN corepack enable && pnpm build
# 3. runner — only standalone output
FROM node:20-alpine AS runner
WORKDIR /app
ENV NODE_ENV=production
COPY --from=builder /app/.next/standalone ./
COPY --from=builder /app/.next/static ./.next/static
COPY --from=builder /app/public ./public
EXPOSE 3000
CMD ["node", "server.js"]Why multi-stage: the final stage takes only standalone (already dependency-traced) → image is a few dozen MB, no source code or devDeps.
Note: NEXT_PUBLIC_* env vars are inlined at build time, not runtime — to change per environment you must rebuild or use a separate runtime config.