aws-glacier-backup/backup.sh

#!/usr/bin/env bash

set -o nounset
set -o errexit
set -o xtrace

dir="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"

if [[ ! -e "${dir}/venv" ]] ; then
    python3 -m venv "${dir}/venv"
fi
source "${dir}/venv/bin/activate"
command -v aws || pip install -r "${dir}/requirements.txt"

export GNUPGHOME="$(mktemp -d)"

bucket="${1}" ; shift
name="${1}" ; shift
backup_source="${1}" ; shift

install --directory --owner $(id -u) --group $(id -g) --mode 700 "${GNUPGHOME}"

cleanup() {
    rm -rf "${GNUPGHOME}"
}

trap cleanup EXIT

tmpgpg() {
    gpg \
        --batch \
        --no-default-keyring \
        --no-options \
        --trust-model always \
        "${@}"
}

tmpgpg --import "${dir}/pubkey.asc"
find \
        "${backup_source}" \
        \( \
            -regex "${backup_source}.*nextcloud/.*/files_trashbin" \
            -o \
            -regex "${backup_source}.*nextcloud/nextcloud.log" \
            -o \
            -regex "${backup_source}.*registry/docker/registry" \
            -o \
            -regex "${backup_source}.*gogs/.*/gogs.log.*" \
            -o \
            -regex "${backup_source}.*gogs/gogs/data/sessions/.*" \
            -o \
            -regex "${backup_source}.*/cache/.*" \
        \) \
        -prune \
        -o \
        -print0 \
    | tar \
        --create \
        --verbose \
        --gzip \
        --one-file-system \
        --null \
        --no-recursion \
        --files-from - \
        --file - \
    | tmpgpg \
        --output - \
        --encrypt \
        --recipient 0x078A167A8741BD30 \
    | aws \
        s3 cp \
        --storage-class=DEEP_ARCHIVE \
        - \
        "s3://${bucket}/${name}-$(date --utc -Iseconds).tar.gz.gpg"
tmp 2019-04-13 20:40:37 +02:00			`#!/usr/bin/env bash`

			`set -o nounset`
			`set -o errexit`
tmp 2019-04-13 20:51:27 +02:00			`set -o xtrace`

Handle project root correctly 2019-04-13 22:10:45 +02:00			`dir="$( cd "$( dirname "${BASH_SOURCE[0]}" )" >/dev/null 2>&1 && pwd )"`

			`if [[ ! -e "${dir}/venv" ]] ; then`
			`python3 -m venv "${dir}/venv"`
Add dynamic venv setup 2019-04-13 22:04:29 +02:00			`fi`
Handle project root correctly 2019-04-13 22:10:45 +02:00			`source "${dir}/venv/bin/activate"`
			`command -v aws \|\| pip install -r "${dir}/requirements.txt"`
Add dynamic venv setup 2019-04-13 22:04:29 +02:00
Handle project root correctly 2019-04-13 22:10:45 +02:00			`export GNUPGHOME="$(mktemp -d)"`
tmp 2019-04-13 21:10:58 +02:00
tmp 2019-04-13 20:51:27 +02:00			`bucket="${1}" ; shift`
			`name="${1}" ; shift`
			`backup_source="${1}" ; shift`
tmp 2019-04-13 20:40:37 +02:00
tmp 2019-04-13 21:10:58 +02:00			`install --directory --owner $(id -u) --group $(id -g) --mode 700 "${GNUPGHOME}"`

tmp 2019-04-13 20:40:37 +02:00			`cleanup() {`
tmp 2019-04-13 21:10:58 +02:00			`rm -rf "${GNUPGHOME}"`
tmp 2019-04-13 20:40:37 +02:00			`}`

			`trap cleanup EXIT`

			`tmpgpg() {`
			`gpg \`
			`--batch \`
			`--no-default-keyring \`
			`--no-options \`
tmp 2019-04-13 21:10:58 +02:00			`--trust-model always \`
tmp 2019-04-13 20:40:37 +02:00			`"${@}"`
			`}`

Handle project root correctly 2019-04-13 22:10:45 +02:00			`tmpgpg --import "${dir}/pubkey.asc"`
Add filtering 2019-04-13 23:07:11 +02:00			`find \`
			`"${backup_source}" \`
			`\( \`
			`-regex "${backup_source}.nextcloud/./files_trashbin" \`
			`-o \`
			`-regex "${backup_source}.*nextcloud/nextcloud.log" \`
			`-o \`
Update filters 2019-04-13 23:18:28 +02:00			`-regex "${backup_source}.*registry/docker/registry" \`
Add filtering 2019-04-13 23:07:11 +02:00			`-o \`
			`-regex "${backup_source}.gogs/./gogs.log.*" \`
			`-o \`
			`-regex "${backup_source}.gogs/gogs/data/sessions/." \`
Update filters 2019-04-13 23:18:28 +02:00			`-o \`
			`-regex "${backup_source}./cache/." \`
Add filtering 2019-04-13 23:07:11 +02:00			`\) \`
			`-prune \`
			`-o \`
			`-print0 \`
			`\| tar \`
tmp 2019-04-13 20:40:37 +02:00			`--create \`
			`--verbose \`
xz -> gzip 2019-04-13 21:16:17 +02:00			`--gzip \`
tmp 2019-04-13 20:40:37 +02:00			`--one-file-system \`
Add filtering 2019-04-13 23:07:11 +02:00			`--null \`
			`--no-recursion \`
			`--files-from - \`
tmp 2019-04-13 20:40:37 +02:00			`--file - \`
			`\| tmpgpg \`
			`--output - \`
			`--encrypt \`
tmp 2019-04-13 20:51:27 +02:00			`--recipient 0x078A167A8741BD30 \`
tmp 2019-04-13 21:10:58 +02:00			`\| aws \`
			`s3 cp \`
tmp 2019-04-13 20:40:37 +02:00			`--storage-class=DEEP_ARCHIVE \`
			`- \`
xz -> gzip 2019-04-13 21:16:17 +02:00			`"s3://${bucket}/${name}-$(date --utc -Iseconds).tar.gz.gpg"`