limbosolutions.com/git.limbosolutions.com
1
0
Fork 0
Code Issues Pull Requests Actions Projects Releases Wiki Activity

backups: git.limbosolutions.com/kb/borg-backup:latest alpine revision

Browse Source
This commit is contained in:
Márcio Fernandes
2025-09-14 01:29:26 +00:00
parent 192e1df7c5
commit 944caaa545
5 changed files with 54 additions and 49 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
backups/backup-cronjob.yaml
View File

@@ -41,6 +41,7 @@ spec:
containers:
- name: gitea-pbs-client
image: git.limbosolutions.com/kb/pbsclient
imagePullPolicy: Always
env:
- name: MODE
value: shell
@@ -48,17 +49,17 @@ spec:
valueFrom:
secretKeyRef:
name: gitea-backup-secret
key: PBS_REPOSITORY
key: pbs_repository
- name: PBS_PASSWORD
valueFrom:
secretKeyRef:
name: gitea-backup-secret
key: PBS_PASSWORD
key: pbs_password
- name: PBS_FINGERPRINT
valueFrom:
secretKeyRef:
name: gitea-backup-secret
key: PBS_FINGERPRINT
key: pbs_fingerprint
command: ["bash", "-c"]
args:

33
backups/borgbackup-offsite-cronjob.yaml
View File

@@ -33,9 +33,12 @@ spec:
mountPath: /root/.gitea-inline-config
readOnly: true
containers:
- name: borg-client
image: git.limbosolutions.com/kb/borg-backup:latest
imagePullPolicy: Always
resources:
limits:
memory: "512Mi"
@@ -48,35 +51,33 @@ spec:
valueFrom:
secretKeyRef:
name: gitea-backup-secret
key: BORG_REPO
key: borg_repo
- name: BORG_PASSPHRASE
valueFrom:
secretKeyRef:
name: gitea-backup-secret
key: BORG_PASSPHRASE
key: borg_passphrase
- name: BORG_RSH
value: ssh -o StrictHostKeyChecking=no -o LogLevel=ERROR
value: ssh -p 2222 -o StrictHostKeyChecking=no -o LogLevel=ERROR
- name: REPO_SYNC_MAX_SIZE
value: "6442450944" # 6GB
- name: BORG_KEY_FILE
value: /root/.borg/key
command: ["sh", "-c"]
command: ["bash", "-c"]
args:
- |
set -e
source loadenv
SCRIPT_START_TIME=$(date +%s)
# while true; do
# sleep 5
# done
borg create ${BORG_REPO}::postgresql-export-$(date +%Y%m%d%H%M%S) /data/postgresql-export
borg create ${BORG_REPO}::gitea-data-$(date +%Y%m%d%H%M%S) /data/gitea-data
@@ -87,7 +88,7 @@ spec:
borg compact ${BORG_REPO}
# check repo size
REPO_SIZE_IN_BYTES=$(${BORG_RSH} mf@backupsrv01.dev.lan -p 2222 "du -b ~/borg-repos/git.limbosolutions.com -d 0 | cut -f1 ")
REPO_SIZE_IN_BYTES=$(remote-connect du -b "$SSH_FOLDER" -d 0 | awk '{print $1}')
echo "Repository size: $((REPO_SIZE_IN_BYTES / 1024 / 1024)) MB"
if [ $REPO_SIZE_IN_BYTES -gt $REPO_SYNC_MAX_SIZE ]; then \
@@ -96,8 +97,7 @@ spec:
else
# Repository size is within limits for offsite sync
# ssh to backup server and enforce rclone to onedrive
${BORG_RSH} mf@backupsrv01.dev.lan -p 2222 \
"rclone sync ~/borg-repos/git.limbosolutions.com mf_onedrive:.backups/git.limbosolutions.com/borg" && \
remote-connect "rclone sync ~/borg-repos/git.limbosolutions.com mf_onedrive:.backups/git.limbosolutions.com/borg" && \
SCRIPT_DURATION=$(($(date +%s) - SCRIPT_START_TIME)) && \
echo "INFO: Finished Backup of git.limbosolutions.com (offsite) ($((SCRIPT_DURATION / 60 / 60)):$((SCRIPT_DURATION / 60)):$((SCRIPT_DURATION % 60))) "
fi
@@ -105,6 +105,7 @@ spec:
#outputs info
borg info ${BORG_REPO}
#borg info ${BORG_REPO} --json
volumeMounts:
- name: gitea-data
mountPath: /data/gitea-data
@@ -114,15 +115,17 @@ spec:
subPath: postgresql-export
- name: gitea-backup-secret
mountPath: /root/.borg/key
subPath: BORG_KEY_FILE
mountPath: /root/.ssh/id_rsa
subPath: ssh_id_rsa
readOnly: true
- name: gitea-backup-secret
mountPath: /root/.ssh/id_rsa
subPath: SSH_ID_RSA
mountPath: /app/borg/key
subPath: borg_key
volumes:
- name: gitea-data
persistentVolumeClaim:
claimName: gitea-shared-storage
@@ -130,7 +133,7 @@ spec:
- name: gitea-inline-config
secret:
secretName: gitea-inline-config
- name: gitea-backup-secret
secret:
secretName: gitea-backup-secret

22
backups/borgbackup-sidekick.yaml
View File

@@ -9,6 +9,7 @@ spec:
containers:
- name: borgbackup-sidekick
image: git.limbosolutions.com/kb/borg-backup:latest
imagePullPolicy: Always
resources:
limits:
memory: "512Mi"
@@ -21,18 +22,18 @@ spec:
valueFrom:
secretKeyRef:
name: gitea-backup-secret
key: BORG_REPO
key: borg_repo
- name: BORG_PASSPHRASE
valueFrom:
secretKeyRef:
name: gitea-backup-secret
key: BORG_PASSPHRASE
key: borg_passphrase
- name: BORG_RSH
value: ssh -o StrictHostKeyChecking=no
value: ssh -p 2222 -o StrictHostKeyChecking=no -o LogLevel=ERROR
- name: BORG_KEY_FILE
- name: borg_key_file
value: /root/.borg/key
command: ["sh", "-c"]
@@ -44,13 +45,14 @@ spec:
volumeMounts:
- name: gitea-backup-secret
mountPath: /root/.borg/key
subPath: BORG_KEY_FILE
- name: gitea-backup-secret
mountPath: /root/.ssh/id_rsa
subPath: ssh_id_rsa
readOnly: true
- name: gitea-backup-secret
mountPath: /root/.ssh/id_rsa
subPath: SSH_ID_RSA
- name: gitea-backup-secret
mountPath: /app/borg/key
subPath: borg_key
volumes:
- name: gitea-backup-secret
secret:

12
backups/gitea-backup-secrets.yaml
View File

@@ -6,11 +6,11 @@ metadata:
namespace: git-limbosolutions-com
type: Opaque
stringData:
PBS_REPOSITORY: ${PBS_REPOSITORY}
PBS_PASSWORD: ${PBS_PASSWORD}
PBS_FINGERPRINT: ${PBS_FINGERPRINT}
BORG_REPO: ${BORG_REPO}
BORG_PASSPHRASE: ${BORG_PASSPHRASE}
pbs_repository: ${PBS_REPOSITORY}
pbs_password: ${PBS_PASSWORD}
pbs_fingerprint: ${PBS_FINGERPRINT}
borg_repo: ${BORG_REPO}
borg_passphrase: ${BORG_PASSPHRASE}
#SSH_ID_RSA: ""
#BORG_KEY_FILE: ""
#BORG_KEY: ""