modules/nixos: add backup
This commit is contained in:
zowoq
parent
29335253b4
commit
c05b406fb8
5 changed files with 96 additions and 69 deletions
modules/nixos
|
|
@ -7,6 +7,10 @@
|
|||
{
|
||||
# 100GB storagebox is attached to the build02 server
|
||||
|
||||
imports = [
|
||||
inputs.self.nixosModules.backup
|
||||
];
|
||||
|
||||
# upstream docs show how to restore these backups
|
||||
# https://github.com/gabrie30/ghorg/blob/92965c8b25ca423223888e1138d175bfc2f4b39b/README.md#creating-backups
|
||||
systemd.services.github-org-backup = {
|
||||
|
|
@ -31,37 +35,11 @@
|
|||
serviceConfig.Type = "oneshot";
|
||||
};
|
||||
|
||||
age.secrets.hetzner-borgbackup-ssh = {
|
||||
file = "${inputs.self}/secrets/hetzner-borgbackup-ssh.age";
|
||||
};
|
||||
|
||||
systemd.services.borgbackup-job-github-org = {
|
||||
after = [ "github-org-backup.service" ];
|
||||
serviceConfig.ReadWritePaths = [ "/var/log/telegraf" ];
|
||||
};
|
||||
|
||||
services.borgbackup.jobs.github-org = {
|
||||
paths = [ "/var/lib/github-org-backup" ];
|
||||
repo = "u416406@u416406.your-storagebox.de:/./github-org";
|
||||
encryption.mode = "none";
|
||||
compression = "auto,zstd";
|
||||
startAt = "daily";
|
||||
environment.BORG_RSH = "ssh -oPort=23 -i ${config.age.secrets.hetzner-borgbackup-ssh.path}";
|
||||
preHook = ''
|
||||
set -x
|
||||
'';
|
||||
|
||||
postHook = ''
|
||||
cat > /var/log/telegraf/borgbackup-job-github-org.service <<EOF
|
||||
task,frequency=daily last_run=$(date +%s)i,state="$([[ $exitStatus == 0 ]] && echo ok || echo fail)"
|
||||
EOF
|
||||
'';
|
||||
|
||||
prune.keep = {
|
||||
within = "1d"; # Keep all archives from the last day
|
||||
daily = 7;
|
||||
weekly = 4;
|
||||
monthly = 0;
|
||||
};
|
||||
};
|
||||
nixCommunity.backup = [
|
||||
{
|
||||
name = "github-org";
|
||||
after = [ config.systemd.services.github-org-backup.name ];
|
||||
paths = [ "/var/lib/github-org-backup" ];
|
||||
}
|
||||
];
|
||||
}
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue