production build and entrypoints optimizations

Author: codeyourweb

.gitignore

@@ -22,8 +22,13 @@
 /sentinel-kit_server_frontend/node_modules/*
 /sentinel-kit_server_frontend/dist/*
 /sentinel-kit_server_frontend/package-lock.json
+/sentinel-kit_server_frontend/.production_build_complete
+/sentinel-kit_server_frontend/.source_hash
 /sentinel-kit_server_backend/composer.lock
 /sentinel-kit_server_backend/.initial_setup_done
+/sentinel-kit_server_backend/.cache_ready
+/sentinel-kit_server_backend/.composer_hash
+/sentinel-kit_server_backend/.source_hash
 /sentinel-kit_server_backend/migrations/*
 /sentinel-kit_server_backend/var/*
 /sentinel-kit_server_backend/vendor/*

config/docker-config/Dockerfile.backend

@@ -34,8 +34,15 @@ COPY sentinel-kit_server_backend/composer.lock* /var/www/html/
 
 WORKDIR /var/www/html
 
-RUN composer install --no-scripts --no-autoloader && \
-    composer dump-autoload --no-scripts --optimize
+# Pre-install Composer dependencies for production optimization
+ARG APP_ENV=prod
+RUN if [ "$APP_ENV" = "prod" ]; then \
+        composer install --no-scripts --no-autoloader --no-dev --optimize-autoloader && \
+        composer dump-autoload --no-scripts --optimize; \
+    else \
+        composer install --no-scripts --no-autoloader && \
+        composer dump-autoload --no-scripts --optimize; \
+    fi
 
 COPY config/docker-config/backend-entrypoint.sh /opt/server-backend/backend-entrypoint.sh
 RUN chmod +x /opt/server-backend/backend-entrypoint.sh

config/docker-config/Dockerfile.frontend

@@ -12,4 +12,13 @@ RUN chmod +x /usr/local/bin/frontend-entrypoint.sh
 
 WORKDIR /app
 
+COPY sentinel-kit_server_frontend/package*.json ./
+
+ARG APP_ENV=prod
+RUN if [ "$APP_ENV" = "prod" ]; then \
+        npm install --silent; \
+    fi
+
+COPY sentinel-kit_server_frontend/ ./
+
 ENTRYPOINT ["/usr/local/bin/frontend-entrypoint.sh"]

config/docker-config/backend-entrypoint.sh

@@ -6,19 +6,42 @@ echo "Environment: $APP_ENV"
 chown -R www-data:www-data /var/www/html
 chown -R www-data:www-data /detection-rules
 
+calculate_source_hash() {
+    find /var/www/html/src /var/www/html/config -type f \( -name "*.php" -o -name "*.yaml" -o -name "*.yml" \) 2>/dev/null | \
+    sort | xargs cat | sha256sum | cut -d' ' -f1
+}
+
+
+check_composer_changes() {
+    if [ ! -f "/var/www/html/.composer_hash" ]; then
+        return 1
+    fi
+    local current_hash
+    current_hash=$(cat /var/www/html/composer.json /var/www/html/composer.lock 2>/dev/null | sha256sum | cut -d' ' -f1)
+    local stored_hash
+    stored_hash=$(cat /var/www/html/.composer_hash 2>/dev/null)
+    [ "$current_hash" = "$stored_hash" ]
+}
+
 su -s /bin/bash www-data << 'EOF'
 setup_symfony() {
     MARKER_FILE="/var/www/html/.initial_setup_done"
+    CACHE_MARKER="/var/www/html/.cache_ready"
+    
     rm -rf /var/www/html/var/cache
     rm -rf /var/www/html/public/bundles
     rm -rf /detection-rules/elastalert/*
     
-    if [ ! -d "/var/www/html/vendor" ] || [ ! -f "/var/www/html/vendor/autoload.php" ]; then
-        echo "Installing Composer dependencies..."
-        composer install --no-scripts
+
+    if ! check_composer_changes || [ ! -d "/var/www/html/vendor" ] || [ ! -f "/var/www/html/vendor/autoload.php" ]; then
+        echo "Installing/updating Composer dependencies..."
+        composer install --no-scripts --optimize-autoloader
         composer dump-autoload --optimize
+        
+        # Save composer hash
+        cat /var/www/html/composer.json /var/www/html/composer.lock 2>/dev/null | sha256sum | cut -d' ' -f1 > /var/www/html/.composer_hash
     else
-        echo "Composer dependencies already installed."
+        echo "Composer dependencies are up-to-date - using cached vendor/."
     fi
     
     echo "Waiting for database to be ready..."
@@ -60,7 +83,7 @@ setup_symfony() {
         fi
         
         echo "Generating JWT keypair..."
-        if ! php /var/www/html/bin/console lexik:jwt:generate-keypair; then
+        if ! php /var/www/html/bin/console lexik:jwt:generate-keypair --overwrite; then
             echo "ERROR: Failed to generate JWT keypair"
             exit 1
         fi
@@ -91,13 +114,30 @@ setup_symfony() {
         fi
     fi
     
+    current_hash=$(calculate_source_hash)
     if [ "$APP_ENV" = "prod" ]; then
-        echo "Warming up production cache..."
-        php /var/www/html/bin/console cache:clear --env=prod --no-debug
-        php /var/www/html/bin/console cache:warmup --env=prod --no-debug
+        if [ -f "$CACHE_MARKER" ] && [ -f "/var/www/html/.source_hash" ]; then
+            stored_hash=$(cat /var/www/html/.source_hash 2>/dev/null)
+            if [ "$current_hash" = "$stored_hash" ]; then
+                echo "Source code unchanged - production cache is up-to-date, skipping rebuild."
+            else
+                echo "Source code changed - warming up production cache..."
+                php /var/www/html/bin/console cache:clear --env=prod --no-debug
+                php /var/www/html/bin/console cache:warmup --env=prod --no-debug
+                echo "$current_hash" > /var/www/html/.source_hash
+                touch "$CACHE_MARKER"
+            fi
+        else
+            echo "Initial cache warmup for production..."
+            php /var/www/html/bin/console cache:clear --env=prod --no-debug
+            php /var/www/html/bin/console cache:warmup --env=prod --no-debug
+            echo "$current_hash" > /var/www/html/.source_hash
+            touch "$CACHE_MARKER"
+        fi
     else
-        echo "Clearing development cache..."
+        echo "Development mode - clearing cache..."
         php /var/www/html/bin/console cache:clear
+        echo "$current_hash" > /var/www/html/.source_hash
     fi
 }
 

config/docker-config/frontend-entrypoint.sh

@@ -3,28 +3,70 @@
 echo "=== Sentinel Kit Frontend Entrypoint ==="
 echo "Environment: $APP_ENV"
 
-echo "Installing npm dependencies..."
-
 if [ "$APP_ENV" = "prod" ]; then
     echo "Starting frontend in PRODUCTION mode"
 
-    if [ ! -d "/app/dist" ]; then
-        npm install
-        echo "Building application for production..."
-        npm run build
+    MARKER_FILE="/app/.production_build_complete"
+    SOURCE_HASH_FILE="/app/.source_hash"
+    
+    if [ -d "/app/src" ]; then
+        CURRENT_HASH=$(find /app/src -type f \( -name "*.vue" -o -name "*.js" -o -name "*.ts" -o -name "*.json" \) -exec md5sum {} \; 2>/dev/null | md5sum | cut -d' ' -f1)
+    else
+        CURRENT_HASH=""
     fi
 
-    if [ ! -d "/app/dist" ]; then
-        echo "ERROR: Build failed - dist directory not found!"
-        exit 1
+    NEED_BUILD=false
+    
+    if [ ! -f "$MARKER_FILE" ] || [ ! -d "/app/dist" ] || [ ! -f "/app/dist/index.html" ]; then
+        echo "Production build not found or incomplete."
+        NEED_BUILD=true
+    elif [ -n "$CURRENT_HASH" ] && [ -f "$SOURCE_HASH_FILE" ]; then
+        STORED_HASH=$(cat "$SOURCE_HASH_FILE")
+        if [ "$CURRENT_HASH" != "$STORED_HASH" ]; then
+            echo "Source code changes detected - rebuild required."
+            NEED_BUILD=true
+        fi
+    elif [ -n "$CURRENT_HASH" ] && [ ! -f "$SOURCE_HASH_FILE" ]; then
+        echo "No source hash found - rebuild to establish baseline."
+        NEED_BUILD=true
+    fi
+    
+    if [ "$NEED_BUILD" = true ]; then
+        echo "Building application for production..."
+        
+        if [ ! -d "/app/node_modules" ] || [ ! -f "/app/package-lock.json" ]; then
+            echo "Installing npm dependencies..."
+            npm install
+        else
+            echo "Dependencies already installed - using cached node_modules."
+        fi
+        
+        echo "Compiling application..."
+        npm run build
+        
+        if [ ! -d "/app/dist" ] || [ ! -f "/app/dist/index.html" ]; then
+            echo "ERROR: Build failed - dist directory or index.html not found!"
+            exit 1
+        fi
+        
+        if [ -n "$CURRENT_HASH" ]; then
+            echo "$CURRENT_HASH" > "$SOURCE_HASH_FILE"
+        fi
+        touch "$MARKER_FILE"
+        echo "Production build completed and marked."
+    else
+        echo "Production build is up-to-date - skipping build for faster startup."
     fi
 
     echo "Starting nginx on port 3000..."
     nginx -g 'daemon off;'
 
 else
     echo "Starting in DEVELOPMENT mode"
+    
+    echo "Installing npm dependencies..."
     npm install
+    
     echo "Starting Vite dev server on port 3000..."
     npm run dev -- --host '0.0.0.0' --port 3000
 fi

docker-compose.yml

@@ -26,6 +26,9 @@ services:
     restart: on-failure
     networks:
       - sentinel-kit-network
+    depends_on:
+      sentinel-kit-app-backend:
+        condition: service_healthy
 
   sentinel-kit-app-backend:
     container_name: sentinel-kit-app-backend
@@ -65,7 +68,8 @@ services:
     networks:
       - sentinel-kit-network
     depends_on:
-      - sentinel-kit-db-mysql
+      sentinel-kit-db-mysql:
+        condition: service_healthy
 
   sentinel-kit-server-rules-scanner:
     container_name: sentinel-kit-server-rules-scanner

launcher.ps1

@@ -1,5 +1,5 @@
 param(
-    [ValidateSet("run", "stop", "build", "clean-data", "console", "logs", "status", "help")]
+    [ValidateSet("start", "stop", "build", "clean-data", "console", "logs", "status", "help")]
     [string]$Command = "help",
     [string]$ServiceName = "",
     [switch]$Follow,
@@ -23,7 +23,7 @@ function Show-Help {
     Write-Host "  .\launcher.ps1 <command>" -ForegroundColor White
     Write-Host ""
     Write-Host "COMMANDS:" -ForegroundColor $InfoColor
-    Write-Host "  run         Start the Docker stack" -ForegroundColor White
+    Write-Host "  start       Start the Docker stack" -ForegroundColor White
     Write-Host "  stop        Stop the running Docker stack" -ForegroundColor White  
     Write-Host "  build       Build and start the Docker stack" -ForegroundColor White
     Write-Host "  clean-data  Clean all user data and stop containers" -ForegroundColor White
@@ -86,6 +86,55 @@ function Convert-ShellScriptsToLF {
     }
 }
 
+function Wait-ForHealthyServices {
+    Write-Host "Waiting for backend and frontend to be healthy..." -ForegroundColor $InfoColor
+    
+    $maxAttempts = 60
+    $attempt = 0
+    $backendHealthy = $false
+    $frontendHealthy = $false
+    
+    while ($attempt -lt $maxAttempts) {
+        $attempt++
+        
+        if (-not $backendHealthy) {
+            $backendHealth = Invoke-Expression "docker compose ps --format json sentinel-kit-app-backend" -ErrorAction SilentlyContinue
+            if ($LASTEXITCODE -eq 0 -and $backendHealth) {
+                $healthStatus = ($backendHealth | ConvertFrom-Json).Health
+                if ($healthStatus -eq "healthy") {
+                    Write-Host "  Backend is healthy!" -ForegroundColor $SuccessColor
+                    $backendHealthy = $true
+                }
+            }
+        }
+        
+        if (-not $frontendHealthy) {
+            $frontendHealth = Invoke-Expression "docker compose ps --format json sentinel-kit-app-frontend" -ErrorAction SilentlyContinue
+            if ($LASTEXITCODE -eq 0 -and $frontendHealth) {
+                $healthStatus = ($frontendHealth | ConvertFrom-Json).Health
+                if ($healthStatus -eq "healthy") {
+                    Write-Host "  Frontend is healthy!" -ForegroundColor $SuccessColor
+                    $frontendHealthy = $true
+                }
+            }
+        }
+        
+        if ($backendHealthy -and $frontendHealthy) {
+            Write-Host "All critical services are healthy and ready!" -ForegroundColor $SuccessColor
+            return $true
+        }
+        
+        if ($attempt % 10 -eq 0) {
+            Write-Host "  Still waiting... (attempt $attempt/$maxAttempts)" -ForegroundColor $WarningColor
+        }
+        
+        Start-Sleep -Seconds 10
+    }
+    
+    Write-Host "Timeout: Services did not become healthy within the expected time." -ForegroundColor $ErrorColor
+    return $false
+}
+
 if ($Help) {
     Show-Help
     exit 0
@@ -95,7 +144,7 @@ switch ($Command.ToLower()) {
     "help" { 
         Show-Help 
     }
-    "run" { 
+    "start" { 
         Write-Host ""
         Write-Host "========== STARTING SENTINELKIT ==========" -ForegroundColor $HeaderColor
 
@@ -109,12 +158,21 @@ switch ($Command.ToLower()) {
 
         if ($RunningContainers) {
             Write-Host "Docker stack is already running." -ForegroundColor $InfoColor
+            if (Wait-ForHealthyServices) {
+                Write-Host "Success! The Docker stack is running and healthy." -ForegroundColor $SuccessColor
+            } else {
+                Write-Host "Warning: Some services may not be fully healthy yet." -ForegroundColor $WarningColor
+            }
         } else {
             Write-Host "Starting the Docker stack..." -ForegroundColor $InfoColor
             Invoke-Expression "docker compose up -d"
 
             if ($LASTEXITCODE -eq 0) {
-                Write-Host "Success! The Docker stack has been launched." -ForegroundColor $SuccessColor
+                if (Wait-ForHealthyServices) {
+                    Write-Host "Success! The Docker stack has been launched and is healthy." -ForegroundColor $SuccessColor
+                } else {
+                    Write-Host "Warning: Docker stack started but some services are not healthy." -ForegroundColor $WarningColor
+                }
             } else {
                 Write-Host "Error starting containers." -ForegroundColor $ErrorColor
             }
@@ -157,7 +215,11 @@ switch ($Command.ToLower()) {
         Invoke-Expression "docker compose up -d --build --force-recreate"
 
         if ($LASTEXITCODE -eq 0) {
-            Write-Host "Success! The Docker stack has been built and started." -ForegroundColor $SuccessColor
+            if (Wait-ForHealthyServices) {
+                Write-Host "Success! The Docker stack has been built, started and is healthy." -ForegroundColor $SuccessColor
+            } else {
+                Write-Host "Warning: Docker stack built and started but some services are not healthy." -ForegroundColor $WarningColor
+            }
         } else {
             Write-Host "Error building containers." -ForegroundColor $ErrorColor
         }
@@ -174,7 +236,7 @@ switch ($Command.ToLower()) {
 
         if (-not $backendContainer) {
             Write-Host "Backend container is not running." -ForegroundColor $ErrorColor
-            Write-Host "Please start the stack first using: .\launcher.ps1 run" -ForegroundColor $WarningColor
+            Write-Host "Please start the stack first using: .\launcher.ps1 start" -ForegroundColor $WarningColor
             exit 1
         }
 
@@ -311,9 +373,14 @@ switch ($Command.ToLower()) {
             Write-Host "Starting cleanup process..." -ForegroundColor $WarningColor
 
             $itemsToRemove = @(
+                "./sentinel-kit_server_frontend/.production_build_complete",
+                "./sentinel-kit_server_frontend/.source_hash",
                 "./sentinel-kit_server_frontend/node_modules",
                 "./sentinel-kit_server_frontend/package-lock.json",
                 "./sentinel-kit_server_frontend/dist",
+                "./sentinel-kit_server_backend/.cache_ready",
+                "./sentinel-kit_server_backend/.composer_hash",
+                "./sentinel-kit_server_backend/.source_hash",
                 "./sentinel-kit_server_backend/.initial_setup_done",
                 "./sentinel-kit_server_backend/composer.lock",
                 "./sentinel-kit_server_backend/symfony.lock",