A production next.config.mjs with security headers, image domain allowlisting, bundle analyser integration, standalone output mode for Docker, and environment variable validation.
This article explores strategies to optimize Netdata performance in a Docker setup, addressing CPU load issues experienced in a multi-machine configuration.
An optimised Elasticsearch index mapping for e-commerce product search: multi-language text fields, keyword facets, numeric ranges, synonym filters and ILM policy for index rollover.
Protect API endpoints from abuse using Nginx limit_req_zone. Defines separate zones for authenticated vs anonymous users with burst allowances and appropriate 429 error responses.
A hardened redis.conf for production use: disabled commands, maxmemory with LRU eviction, combined RDB + AOF persistence, bind to localhost, and requirepass authentication.
Tuned postgresql.conf settings for a dedicated 8-core / 32 GB RAM database server. Covers shared buffers, WAL, autovacuum, parallel query and connection settings - with explanations for each knob.
Complete Nginx server block that terminates HTTPS, enforces TLS 1.2+, sets HSTS and security headers, enables gzip compression, and proxies to an upstream application server.
A minimal, secure multi-stage Dockerfile for Node.js apps. The build stage installs devDependencies, the production stage copies only the compiled output - keeping the final image under 150 MB.
