2023-04-23 22:11:24 +02:00
|
|
|
#!/bin/bash
|
|
|
|
# Backup script for Vaultwarden in a kubernetes cluster
|
|
|
|
|
2023-06-15 23:24:56 +02:00
|
|
|
BACKUP_DEST='/mnt/PRIVATE_DOCS/BACKUPS/vaultwarden'
|
|
|
|
PASSFILE='./vaultwarden_pass.txt'
|
2023-06-15 13:08:05 +02:00
|
|
|
|
2023-06-15 23:24:56 +02:00
|
|
|
# Create filename for database
|
|
|
|
database_backupfile="vaultwarden-sqlbkp_$(date +'%Y%m%d').bak"
|
2023-04-23 22:11:24 +02:00
|
|
|
|
|
|
|
# Retrieve container names
|
2023-06-15 23:24:56 +02:00
|
|
|
base_container="$( docker ps --format '{{.Names}}' | grep vaultwarden_vaultwarden )"
|
|
|
|
database_container="$( docker ps --format '{{.Names}}' | grep vaultwarden-postgresql_vaultwarden-postgresql )"
|
2023-04-23 22:11:24 +02:00
|
|
|
|
|
|
|
# Abort entire script if any command fails
|
|
|
|
set -e
|
|
|
|
|
|
|
|
# Database backup
|
2023-06-15 23:24:56 +02:00
|
|
|
>&2 echo 'Backing up database'
|
|
|
|
internal_database_backupfile="/tmp/${database_backupfile}"
|
|
|
|
# Create backup file in docker container
|
|
|
|
docker exec --env-file "${PASSFILE}" "${database_container}" pg_dump 'vaultwarden' -cwv -h 'localhost' -U 'vaultwarden' -f "${internal_database_backupfile}"
|
|
|
|
# Copy backup outside container
|
|
|
|
docker cp "${database_container}":"${internal_database_backupfile}" "${BACKUP_DEST}"
|
2023-04-23 22:11:24 +02:00
|
|
|
|
|
|
|
# Files backup
|
2023-06-15 23:24:56 +02:00
|
|
|
files=('attachments' 'sends' 'config.json' 'rsa_key.pem' 'rsa_key.pub.pem')
|
2023-04-23 22:11:24 +02:00
|
|
|
for file in "${files[@]}"; do
|
|
|
|
>&2 echo "Copying ${file}"
|
|
|
|
docker cp -a "${base_container}":"/data/${file}" "${BACKUP_DEST}"
|
|
|
|
done
|
|
|
|
|
2023-06-15 13:08:05 +02:00
|
|
|
# Backup cleanup
|
|
|
|
# Only keep the 30 most recent backups => probably a month worth of backups, seems about right.
|
2023-06-15 23:24:56 +02:00
|
|
|
>&2 echo 'Cleaning up old database backups'
|
2023-06-15 13:08:05 +02:00
|
|
|
pushd "${BACKUP_DEST}"
|
2023-06-15 23:24:56 +02:00
|
|
|
excess="$( ls -1 | grep sqlbkp | head -n -30 )"
|
|
|
|
if [ -n "${excess}" ]; then
|
|
|
|
>&2 echo "Removing ${excess}"
|
|
|
|
rm "${excess}"
|
|
|
|
else
|
|
|
|
>&2 echo 'Skipping: nothing to remove'
|
|
|
|
fi
|
2023-06-15 13:08:05 +02:00
|
|
|
popd
|
|
|
|
|
2023-06-15 23:24:56 +02:00
|
|
|
>&2 echo 'Done'
|