feat(servers): make backups from snapshots so shutting down services isnt needed
All checks were successful
Discord / discord commits (push) Successful in 1m1s
All checks were successful
Discord / discord commits (push) Successful in 1m1s
This commit is contained in:
parent
bd5216cc87
commit
63e0ca56cb
2 changed files with 36 additions and 16 deletions
|
@ -7,6 +7,7 @@
|
|||
with lib;
|
||||
with builtins; let
|
||||
user = config.vars.user;
|
||||
configPath = "/var/lib/arion";
|
||||
in {
|
||||
imports = [arion.nixosModules.arion];
|
||||
|
||||
|
@ -15,6 +16,11 @@ in {
|
|||
podman = "sudo podman";
|
||||
};
|
||||
|
||||
services.borgbackup.configs.arion = {
|
||||
paths = [configPath];
|
||||
exclude = ["**/lineageos*"];
|
||||
};
|
||||
|
||||
virtualisation = {
|
||||
podman = {
|
||||
enable = true;
|
||||
|
@ -26,8 +32,6 @@ in {
|
|||
backend = "podman-socket";
|
||||
|
||||
projects = let
|
||||
configPath = "/var/lib/arion";
|
||||
|
||||
composeFiles =
|
||||
filter (n: hasSuffix "compose.nix" (toString n))
|
||||
(filesystem.listFilesRecursive ./.);
|
||||
|
@ -37,7 +41,10 @@ in {
|
|||
|
||||
value = import p (inputs
|
||||
// {
|
||||
rwPath = configPath + "/" + elemAt (match "[^-]*-(.*)" "${dirOf p}") 0;
|
||||
rwPath =
|
||||
configPath
|
||||
+ "/"
|
||||
+ elemAt (match "[^-]*-(.*)" "${dirOf p}") 0;
|
||||
});
|
||||
})
|
||||
composeFiles));
|
||||
|
|
|
@ -19,23 +19,12 @@ in {
|
|||
};
|
||||
|
||||
config = {
|
||||
users.groups.borg = {};
|
||||
users.users.borg = {
|
||||
isSystemUser = true;
|
||||
# https://mynixos.com/nixpkgs/option/services.borgbackup.jobs.%3Cname%3E.readWritePaths
|
||||
createHome = true;
|
||||
home = "/var/lib/borg";
|
||||
group = "borg";
|
||||
extraGroups = ["mc"];
|
||||
};
|
||||
|
||||
programs.ssh.knownHosts = {
|
||||
pve.publicKey = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG/4mrp8E4Ittwg8feRmPtDHSDR2+Pq4uZHeF5MweVcW";
|
||||
};
|
||||
|
||||
services.borgbackup = {
|
||||
defaults = {
|
||||
user = mkDefault "borg";
|
||||
environment = mkDefault {BORG_RSH = "ssh -i ${secrets.borg-ssh.path}";};
|
||||
|
||||
repo = mkDefault "ssh://matt@pve/data/backups/borg";
|
||||
|
@ -52,7 +41,31 @@ in {
|
|||
compression = mkDefault "auto,lzma";
|
||||
};
|
||||
|
||||
jobs = mapAttrs (_: v: cfg.defaults // v) cfg.configs;
|
||||
jobs = let
|
||||
tempJobs = mapAttrs (_: v: cfg.defaults // v) cfg.configs;
|
||||
in
|
||||
mapAttrs (n: v: let
|
||||
attrs = filterAttrs (n: _: n != "preHook" || n != "postHook" || n != "paths") v;
|
||||
pathPrefix = "/root/snaps";
|
||||
snapPath = "${pathPrefix}/${n}";
|
||||
in
|
||||
attrs
|
||||
// {
|
||||
paths = map (x: snapPath + x) v.paths;
|
||||
|
||||
preHook = v.preHook or "" + ''
|
||||
if [[ ! -d ${pathPrefix} ]]; then
|
||||
mkdir -p ${pathPrefix}
|
||||
fi
|
||||
|
||||
${pkgs.btrfs-progs}/bin/btrfs subvolume snapshot -r / ${snapPath}
|
||||
'';
|
||||
|
||||
postHook = ''
|
||||
${pkgs.btrfs-progs}/bin/btrfs subvolume delete ${snapPath}
|
||||
'' + v.postHook or "";
|
||||
})
|
||||
tempJobs;
|
||||
};
|
||||
};
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue