diff --git a/.dockerignore b/.dockerignore
new file mode 100644
index 0000000..114dd7f
--- /dev/null
+++ b/.dockerignore
@@ -0,0 +1,3 @@
+frontend/node_modules
+backend/server/.env
+backend/server/node_modules
\ No newline at end of file
diff --git a/dockerfile b/dockerfile
new file mode 100644
index 0000000..548de44
--- /dev/null
+++ b/dockerfile
@@ -0,0 +1,41 @@
+# docker build -t myimage .
+# docker run --env-file backend/server/.env -p 3000:3000 -p 4000:4000 myimage
+
+FROM node:20
+
+# Security: Drop all capabilities
+USER root
+RUN apt-get update && apt-get install -y libcap2-bin
+RUN setcap cap_net_bind_service=+ep /usr/local/bin/node
+
+# Build backend
+WORKDIR /backend
+COPY backend/server/package*.json ./
+RUN npm install
+COPY backend/server/ .
+RUN npm run build
+
+# Build frontend
+WORKDIR /frontend
+COPY frontend/package*.json ./
+RUN npm install
+COPY frontend .
+RUN npm run build
+
+# Set working directory to the root directory
+WORKDIR /
+
+# Security: Create non-root user and assign ownership
+RUN useradd -m appuser
+RUN mkdir -p /backend/projects && chown -R appuser:appuser /backend/projects
+USER appuser
+
+# Start both backend and frontend
+ENV BACKEND_PORT=4000
+ENV FRONTEND_PORT=3000
+
+EXPOSE 5173
+EXPOSE $BACKEND_PORT
+EXPOSE $FRONTEND_PORT
+
+CMD ["sh", "-c", "cd /backend && PORT=$BACKEND_PORT npm run start & cd /frontend && PORT=$FRONTEND_PORT npm run start"]
\ No newline at end of file