在 Dockerfile 中编写 composer install 命令的最佳实践

FROM php:8.3-cli AS composer
<h1>安装系统依赖（如 zip, git）</h1><p>RUN apt-get update && apt-get install -y \
zip \
git \
&& rm -rf /var/lib/apt/lists/*</p><p>COPY composer.json composer.lock ./
RUN pecl install redis && docker-php-ext-enable redis</p><h1>使用非 root 用户提高安全性</h1><p>RUN useradd -m -u 1000 app
USER app</p><h1>安装依赖，禁用开发工具（除非需要）</h1><p>RUN composer install --no-dev --no-scripts --no-progress --no-interaction --optimize-autoloader</p><h1>运行脚本类命令（可选）</h1><p>RUN composer run-script --list | grep -q post-install-cmd && composer run-script post-install-cmd || exit 0</p><h1>第二阶段：精简运行环境</h1><p>FROM php:8.3-cli-alpine</p><h1>复用扩展安装逻辑或使用已编译版本</h1><p>RUN apk add --no-cache libzip-dev icu-dev freetype-dev libjpeg-turbo-dev libpng-dev && \
docker-php-ext-configure gd --with-freetype --with-jpeg && \
docker-php-ext-install -j$(nproc) gd zip intl && \
pecl install redis && docker-php-ext-enable redis</p><h1>创建应用用户</h1><p>RUN adduser -D -s /bin/sh -u 1000 app
USER app</p><h1>复制构建结果</h1><p>COPY --from=composer --chown=app:app /var/www/html/vendor ./vendor
COPY . .</p><p>CMD ["php", "index.php"]

COPY composer.json composer.lock ./
RUN composer install --no-dev --optimize-autoloader --no-interaction
COPY . .

RUN composer run-script post-install-cmd

# Docker BuildKit 必须启用
DOCKER_BUILDKIT=1 docker build --secret id=composer-auth,src=./auth.json -t myapp .

# syntax=docker/dockerfile:1.4
FROM php:8.3-cli
<p>COPY --from=composer --chown=www-data:www-data /composer /usr/bin/composer</p><p>COPY composer.json composer.lock ./
RUN --mount=type=secret,id=composer-auth,dst=/root/.config/composer/auth.json \
composer install --no-dev --no-scripts --no-progress --no-interaction