infrastructure/ansible/plays/templates/backup.sh.j2

70 lines
2.3 KiB
Plaintext
Raw Normal View History

#!/bin/sh
# Setting this, so the repo does not need to be given on the commandline:
PUSH_KEY={{ backup.pushkey }}
# See the section "Passphrase notes" for more infos.
2022-07-04 02:10:02 +02:00
export BORG_PASSPHRASE='{{ backup.password }}'
export BORG_REPO=ssh://{{ backup.remote.user }}@{{ backup.remote.url }}
export BORG_RSH='ssh -i /root/.ssh/storagebox'
# some helpers and error handling:
info() { printf "\n%s %s\n\n" "$( date )" "$*" >&2; }
trap 'echo $( date ) Backup interrupted >&2; exit 2' INT TERM
info "Initialize Repo"
2022-07-04 02:10:02 +02:00
borg init -e repokey
info "Starting backup"
# Backup the most important directories into an archive named after
# the machine this script is currently running on:
borg create \
--verbose \
--filter AME \
--list \
--stats \
--show-rc \
2022-09-05 19:11:25 +02:00
--compression lz4 \
--exclude-caches \
2022-07-13 23:48:54 +02:00
--one-file-system \
2022-10-01 18:28:25 +02:00
--exclude "re:^/var/lib/docker/volumes/nobackup_.*" \
::'{hostname}-{now}' \
2022-10-29 05:04:47 +02:00
/var/lib/docker
backup_exit=$?
info "Pruning repository"
# Use the `prune` subcommand to maintain 7 daily, 4 weekly and 6 monthly
# archives of THIS machine. The '{hostname}-' prefix is very important to
# limit prune's operation to this machine's archives and not apply to
# other machines' archives also:
borg prune \
--list \
2022-09-23 18:22:42 +02:00
--glob-archives '{hostname}-*' \
--show-rc \
--keep-daily 7 \
--keep-weekly 4 \
2022-07-13 23:48:54 +02:00
--keep-monthly 6
prune_exit=$?
# use highest exit code as global exit code
global_exit=$(( backup_exit > prune_exit ? backup_exit : prune_exit ))
if [ ${global_exit} -eq 0 ]; then
info "Backup and Prune finished successfully"
2022-09-05 19:13:28 +02:00
/usr/bin/curl -fsS -m 10 --retry 5 -o /dev/null "https://monitor.chaoswg.org/api/push/${PUSH_KEY}?msg=OK&ping="
elif [ ${global_exit} -eq 1 ]; then
info "Backup and/or Prune finished with warnings"
2022-09-05 19:13:28 +02:00
/usr/bin/curl -fsS -m 10 --retry 5 -o /dev/null "https://monitor.chaoswg.org/api/push/${PUSH_KEY}?msg=OK&ping="
exit 0 # We dont want to get notified about warnings as this would make the systemd unit fail.
else
info "Backup and/or Prune finished with errors"
fi
exit ${global_exit}