# git.limbosolutions.com

Welcome to public repository of my [Git Server](https://git.limbosolutions.com)

Using [gitea](https://git.limbosolutions.com/kb/gitea) as git server.

- [Setup](#setup)
  - [kubernetes Namespace](#kubernetes-namespace)
  - [Add Help Chart](#add-help-chart)
  - [Update Helm charts](#update-helm-charts)
  - [Install / Update](#install--update)
  - [ssh ingress](#ssh-ingress)
- [Backups](#backups)
  - [secrets](#secrets)
  - [Proxmox Backup Server (kubernetes cron job)](#proxmox-backup-server-kubernetes-cron-job)
  - [Borg and Offsite sync (kubernetes cron job)](#borg-and-offsite-sync-kubernetes-cron-job)
  - [borgbackup sidekick](#borgbackup-sidekick)
    - [Create borgbackup-sidekick pod](#create-borgbackup-sidekick-pod)
    - [Remove borgbackup-sidekick pod](#remove-borgbackup-sidekick-pod)

## Setup

### kubernetes Namespace

```yaml
apiVersion: v1
kind: Namespace
metadata:
  name: git-limbosolutions-com
  labels:
    name: git-limbosolutions-com

```

### Add Help Chart

```bash
helm repo add gitea-charts https://dl.gitea.com/charts/
```

### Update Helm charts

```bash
helm repo update
```

### Install / Update

```bash
helm upgrade --install gitea gitea-charts/gitea \
--values ./gitea/values.yaml \
--values ./gitea/values.private.yaml \
--namespace=git-limbosolutions-com
```

### ssh ingress

```bash
kubectl apply -f ./gitea/ssh-ingress.yaml
```

## Backups

### secrets

```bash
set -a
source ./backups/.env
set +a
envsubst < ./backups/gitea-backup-secrets.yaml | kubectl apply -n git-limbosolutions-com -f -

SSH_ID_RSA=$(echo -n "$SSH_ID_RSA" | base64 -w 0)
BORG_KEY=$(echo -n "$BORG_KEY" | base64 -w 0)

kubectl patch secret gitea-backup-secret --patch "{\"data\":{\"ssh_id_rsa\":\"$SSH_ID_RSA\"}}" -n git-limbosolutions-com 
kubectl patch secret gitea-backup-secret --patch "{\"data\":{\"borg_key\":\"$BORG_KEY\"}}" -n git-limbosolutions-com 
```

### Proxmox Backup Server (kubernetes cron job)

```bash
# deploy cronjon
kubectl apply -f ./backups/backup-cronjob.yaml -n git-limbosolutions-com
```

[kubernetes cron job](/backups/backup-cronjob.yaml)

### Borg and Offsite sync (kubernetes cron job)

```bash
# deploy cronjon
kubectl apply -f ./backups/borgbackup-offsite-cronjob.yaml
```

[kubernetes cron job](/backups/borgbackup-offsite-cronjob.yaml)

### borgbackup sidekick

```bash
# attach to borgbackup-sidekick
POD_NAME=$(kubectl get pod -l app=borgbackup-sidekick -n git-limbosolutions-com -o jsonpath='{.items[0].metadata.name}')
kubectl exec -it ${POD_NAME}  -- bash
```

```bash
# list borg repo
POD_NAME=$(kubectl get pod -l app=borgbackup-sidekick -n git-limbosolutions-com -o jsonpath='{.items[0].metadata.name}')
kubectl exec -it ${POD_NAME} -- bash -c "\
borg list ${BORG_REPO} \
"
```

```bash
# get borg info
POD_NAME=$(kubectl get pod -l app=borgbackup-sidekick -n git-limbosolutions-com -o jsonpath='{.items[0].metadata.name}')
kubectl exec -it ${POD_NAME} -- bash -c "\
borg info ${BORG_REPO}\
"
```

```bash
POD_NAME=$(kubectl get pod -l app=borgbackup-sidekick -n git-limbosolutions-com -o jsonpath='{.items[0].metadata.name}')
# Check if repository size is greater than 4GB
kubectl exec -it ${POD_NAME} -- bash -c "\
MAX_SIZE=\$((4 * 1024 * 1024 * 1024))
SIZE_IN_BYTES=\$(\${BORG_RSH} mf@backupsrv01.dev.lan \"du -b ~/borg-repos/git.limbosolutions.com --max-depth=0 | cut -f1 \") && \
echo \"Repository size: \$((SIZE_IN_BYTES / 1024 / 1024)) MB\" && \
if [ \$SIZE_IN_BYTES -gt \$MAX_SIZE ]; then \
   echo 'Repository size exceeds \$MAX_SIZE'; \
   exit 1; \
else \
   echo 'Repository size is within limits for offsite sync'; \
fi \

"
```

#### Create borgbackup-sidekick pod

```bash
kubectl apply -f ./backups/borgbackup-sidekick.yaml
```

#### Remove borgbackup-sidekick pod

```bash
# delete the sidekick pod after use
kubectl delete pod -l app=borgbackup-sidekick
```