aws-glacier-backup/backup.sh

#!/usr/bin/env bash

set -o nounset
set -o errexit
set -o xtrace

if [[ ! -e ./venv ]] ; then
    python3 -m venv venv
fi
source ./venv/bin/activate
command -v aws || pip install -r ./requirements.txt

export GNUPGHOME=./gpghome

bucket="${1}" ; shift
name="${1}" ; shift
backup_source="${1}" ; shift

install --directory --owner $(id -u) --group $(id -g) --mode 700 "${GNUPGHOME}"

cleanup() {
    rm -rf "${GNUPGHOME}"
}

trap cleanup EXIT

tmpgpg() {
    gpg \
        --batch \
        --no-default-keyring \
        --no-options \
        --trust-model always \
        "${@}"
}

tmpgpg --import ./pubkey.asc
tar \
        --create \
        --verbose \
        --gzip \
        --one-file-system \
        --file - \
        "${backup_source}" \
    | tmpgpg \
        --output - \
        --encrypt \
        --recipient 0x078A167A8741BD30 \
    | aws \
        s3 cp \
        --storage-class=DEEP_ARCHIVE \
        - \
        "s3://${bucket}/${name}-$(date --utc -Iseconds).tar.gz.gpg"
tmp 2019-04-13 20:40:37 +02:00			`#!/usr/bin/env bash`

			`set -o nounset`
			`set -o errexit`
tmp 2019-04-13 20:51:27 +02:00			`set -o xtrace`

Add dynamic venv setup 2019-04-13 22:04:29 +02:00			`if [[ ! -e ./venv ]] ; then`
			`python3 -m venv venv`
			`fi`
			`source ./venv/bin/activate`
			`command -v aws \|\| pip install -r ./requirements.txt`

tmp 2019-04-13 21:10:58 +02:00			`export GNUPGHOME=./gpghome`

tmp 2019-04-13 20:51:27 +02:00			`bucket="${1}" ; shift`
			`name="${1}" ; shift`
			`backup_source="${1}" ; shift`
tmp 2019-04-13 20:40:37 +02:00
tmp 2019-04-13 21:10:58 +02:00			`install --directory --owner $(id -u) --group $(id -g) --mode 700 "${GNUPGHOME}"`

tmp 2019-04-13 20:40:37 +02:00			`cleanup() {`
tmp 2019-04-13 21:10:58 +02:00			`rm -rf "${GNUPGHOME}"`
tmp 2019-04-13 20:40:37 +02:00			`}`

			`trap cleanup EXIT`

			`tmpgpg() {`
			`gpg \`
			`--batch \`
			`--no-default-keyring \`
			`--no-options \`
tmp 2019-04-13 21:10:58 +02:00			`--trust-model always \`
tmp 2019-04-13 20:40:37 +02:00			`"${@}"`
			`}`

			`tmpgpg --import ./pubkey.asc`
			`tar \`
			`--create \`
			`--verbose \`
xz -> gzip 2019-04-13 21:16:17 +02:00			`--gzip \`
tmp 2019-04-13 20:40:37 +02:00			`--one-file-system \`
			`--file - \`
tmp 2019-04-13 20:51:27 +02:00			`"${backup_source}" \`
tmp 2019-04-13 20:40:37 +02:00			`\| tmpgpg \`
			`--output - \`
			`--encrypt \`
tmp 2019-04-13 20:51:27 +02:00			`--recipient 0x078A167A8741BD30 \`
tmp 2019-04-13 21:10:58 +02:00			`\| aws \`
			`s3 cp \`
tmp 2019-04-13 20:40:37 +02:00			`--storage-class=DEEP_ARCHIVE \`
			`- \`
xz -> gzip 2019-04-13 21:16:17 +02:00			`"s3://${bucket}/${name}-$(date --utc -Iseconds).tar.gz.gpg"`