tidaldb/docker/cluster/Dockerfile

# LEGACY: This file was originally a simulated multi-region cluster image.
# The cluster mode has been removed from tidal-server. This Dockerfile now
# builds an identical standalone image and is preserved only to avoid breaking
# existing CI references.
#
# For new deployments use docker/standalone/Dockerfile instead.
FROM rust:1.91 as builder
WORKDIR /app

# Copy workspace manifests first for caching.
COPY Cargo.toml Cargo.lock ./
COPY tidal/Cargo.toml tidal/Cargo.toml
COPY tidalctl/Cargo.toml tidalctl/Cargo.toml
COPY tidal-server/Cargo.toml tidal-server/Cargo.toml
COPY applications/forage/engine/Cargo.toml applications/forage/engine/Cargo.toml
COPY applications/forage/server/Cargo.toml applications/forage/server/Cargo.toml
COPY applications/forage/embedder/Cargo.toml applications/forage/embedder/Cargo.toml
COPY applications/iknowyou/engine/Cargo.toml applications/iknowyou/engine/Cargo.toml

# Copy full workspace.
COPY . .

RUN cargo build -p tidal-server --release

FROM debian:bookworm-slim
WORKDIR /srv
RUN useradd --system --home /srv tidal && \
    apt-get update && apt-get install -y ca-certificates curl && \
    rm -rf /var/lib/apt/lists/*

COPY --from=builder /app/target/release/tidal-server /usr/local/bin/tidal-server
COPY tidal-server/config /etc/tidal-server

USER tidal
EXPOSE 9400

HEALTHCHECK --interval=30s --timeout=5s --start-period=15s --retries=3 \
    CMD curl -f -H "Authorization: Bearer ${TIDAL_API_KEY:-}" http://localhost:9400/health || exit 1

ENTRYPOINT ["tidal-server", "standalone", "--listen", "0.0.0.0:9400"]