meissa/dda-backup
7
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

role missing

Browse source
This commit is contained in:
jem 2020-12-12 21:01:33 +01:00
parent 1be64b6fd6
commit d6b3110e39
3 changed files with 19 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
infrastrucure/docker/image/resources/backup.sh
View file

@ -13,17 +13,23 @@ function main() {
file_env RESTIC_PASSWORD file_env RESTIC_PASSWORD
file_env RESTIC_DAYS_TO_KEEP 14 file_env RESTIC_DAYS_TO_KEEP 14
# TODO: add a restic unlock stmt.
# backup roles
pg_dumpall -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U${POSTGRES_USER} --no-password --roles-only > roles.sql
# TODO: remove all without oc_
restic -v -r ${RESTIC_REPOSITORY}/db-role backup --stdin
# backup database dump # backup database dump
pg_dump -d ${POSTGRES_DB} -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} \ pg_dump -d ${POSTGRES_DB} -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} \
-U ${POSTGRES_USER_FILE} --no-password --serializable-deferrable | \ -U ${POSTGRES_USER} --no-password --serializable-deferrable | \
restic -r ${RESTIC_REPOSITORY}/db backup --stdin restic -v -r ${RESTIC_REPOSITORY}/db backup --stdin
restic -r ${RESTIC_REPOSITORY}/db forget --keep-last 1 --keep-within ${RESTIC_DAYS_TO_KEEP}d --prune restic -r ${RESTIC_REPOSITORY}/db forget --keep-last 1 --keep-within ${RESTIC_DAYS_TO_KEEP}d --prune
# backup nextcloud filesystem # backup nextcloud filesystem
cd /var/backups/ && restic -r ${RESTIC_REPOSITORY}/files backup . cd /var/backups/ && restic -r ${RESTIC_REPOSITORY}/files backup .
restic -r ${RESTIC_REPOSITORY}/files forget --keep-last 1 --keep-within ${RESTIC_DAYS_TO_KEEP}d --prune restic -v -r ${RESTIC_REPOSITORY}/files forget --keep-last 1 --keep-within ${RESTIC_DAYS_TO_KEEP}d --prune
} }
source /usr/local/lib/functions.sh source /usr/local/lib/functions.sh

1
infrastrucure/docker/image/resources/init.sh
View file

@ -7,6 +7,7 @@ function main() {
file_env RESTIC_PASSWORD_FILE file_env RESTIC_PASSWORD_FILE
restic -r ${RESTIC_REPOSITORY}/db --verbose init restic -r ${RESTIC_REPOSITORY}/db --verbose init
restic -r ${RESTIC_REPOSITORY}/db-role --verbose init
restic -r ${RESTIC_REPOSITORY}/files --verbose init restic -r ${RESTIC_REPOSITORY}/files --verbose init
} }

11
infrastrucure/docker/image/resources/restore.sh
View file

@ -14,14 +14,21 @@ function main() {
# files # files
rm -rf /var/backups/* rm -rf /var/backups/*
restic -r $RESTIC_REPOSITORY/files restore latest --target /var/backups/ restic -v -r $RESTIC_REPOSITORY/files restore latest --target /var/backups/
# db # db
psql -d template1 -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U ${POSTGRES_USER} \ psql -d template1 -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U ${POSTGRES_USER} \
--no-password -c "DROP DATABASE \"${POSTGRES_DB}\";" --no-password -c "DROP DATABASE \"${POSTGRES_DB}\";"
psql -d template1 -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U ${POSTGRES_USER} \ psql -d template1 -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U ${POSTGRES_USER} \
--no-password -c "CREATE DATABASE \"${POSTGRES_DB}\";" --no-password -c "CREATE DATABASE \"${POSTGRES_DB}\";"
restic -r ${RESTIC_REPOSITORY}/db restore latest --target test-stdin
# TODO: restore roles
psql -d template1 -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U ${POSTGRES_USER} \
--no-password -c "CREATE ROLE oc_...;"
psql -d template1 -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U ${POSTGRES_USER} \
--no-password -c "ALTER ROLE oc_... WITH NOSUPERUSER INHERIT NOCREATEROLE CREATEDB LOGIN NOREPLICATION NOBYPASSRLS PASSWORD 'md5...';"
restic -v -r ${RESTIC_REPOSITORY}/db restore latest --target test-stdin
psql -d ${POSTGRES_DB} -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U ${POSTGRES_USER} \ psql -d ${POSTGRES_DB} -h ${POSTGRES_SERVICE} -p ${POSTGRES_PORT} -U ${POSTGRES_USER} \
--no-password < test-stdin/stdin --no-password < test-stdin/stdin