initial commit
This commit is contained in:
Ludovic Cartier
parent
554e08edb5
commit
9ea5639efa
4
defaults/main.yml
Normal file
4
defaults/main.yml
Normal file
@ -0,0 +1,4 @@
|
|||||||
|
---
|
||||||
|
pbs_debian_release_name: "bookworm"
|
||||||
|
pbs_repo_key: "https://enterprise.proxmox.com/debian/proxmox-release-bookworm.gpg"
|
||||||
|
pbs_repo_no_subscription: "deb http://download.proxmox.com/debian/pbs-client {{ pbs_debian_release_name }} main"
|
||||||
9
meta/main.yml
Normal file
9
meta/main.yml
Normal file
@ -0,0 +1,9 @@
|
|||||||
|
---
|
||||||
|
galaxy_info:
|
||||||
|
author: Ludovic Cartier
|
||||||
|
description: Custom bash backup script which send data to Proxmox Backup Server
|
||||||
|
company: brainsys
|
||||||
|
license: MIT
|
||||||
|
min_ansible_version: 2.8
|
||||||
|
issue_tracker_url: https://git.brainsys.io/ansible-roles/prometheus/issues
|
||||||
|
github_branch: main
|
||||||
11
tasks/asserts.yml
Normal file
11
tasks/asserts.yml
Normal file
@ -0,0 +1,11 @@
|
|||||||
|
---
|
||||||
|
- name: assert | check OS
|
||||||
|
assert:
|
||||||
|
that:
|
||||||
|
- ansible_distribution == 'Debian'
|
||||||
|
|
||||||
|
- name: assert | check vars
|
||||||
|
assert:
|
||||||
|
that:
|
||||||
|
- backup_dir is defined
|
||||||
|
- backup_retention is defined
|
||||||
37
tasks/install.yml
Normal file
37
tasks/install.yml
Normal file
@ -0,0 +1,37 @@
|
|||||||
|
---
|
||||||
|
- name: proxmox backup client | get GPG key
|
||||||
|
apt_key:
|
||||||
|
url: "{{ pbs_repo_key }}"
|
||||||
|
|
||||||
|
- name: proxmox backup client | add repository
|
||||||
|
become: yes
|
||||||
|
apt_repository:
|
||||||
|
repo: "{{ pbs_repo_no_subscription }}"
|
||||||
|
filename: pbs-client.list
|
||||||
|
|
||||||
|
- name: proxmox backup client | update APT Cache
|
||||||
|
apt:
|
||||||
|
update_cache: yes
|
||||||
|
cache_valid_time: 3600
|
||||||
|
|
||||||
|
- name: proxmox backup client | install
|
||||||
|
apt:
|
||||||
|
name:
|
||||||
|
- proxmox-backup-client
|
||||||
|
state: present
|
||||||
|
|
||||||
|
- name: proxmox backup client | copy backup script
|
||||||
|
template:
|
||||||
|
src: brain_backup.j2
|
||||||
|
dest: /usr/local/bin/brain_backup
|
||||||
|
owner: root
|
||||||
|
group: root
|
||||||
|
mode: 0755
|
||||||
|
|
||||||
|
- name: proxmox backup client | install crontab
|
||||||
|
cron:
|
||||||
|
name: brain backup
|
||||||
|
minute: "{{ backup_cron_minute | default('0') }}"
|
||||||
|
hour: "{{ backup_cron_hour | default('2') }}"
|
||||||
|
user: root
|
||||||
|
job: "/usr/local/bin/brain_backup"
|
||||||
6
tasks/main.yml
Normal file
6
tasks/main.yml
Normal file
@ -0,0 +1,6 @@
|
|||||||
|
---
|
||||||
|
- name: asserts
|
||||||
|
include_tasks: asserts.yml
|
||||||
|
|
||||||
|
- name: install
|
||||||
|
include_tasks: install.yml
|
||||||
100
templates/brain_backup.j2
Normal file
100
templates/brain_backup.j2
Normal file
@ -0,0 +1,100 @@
|
|||||||
|
# {{ ansible_managed }}
|
||||||
|
#!/bin/bash
|
||||||
|
|
||||||
|
[ ! -f /usr/bin/proxmox-backup-client ] && echo "proxmox-backup-client is not installed: exiting." && exit 1
|
||||||
|
|
||||||
|
today=`date +%Y-%m-%d`
|
||||||
|
backup_dir={{ backup_dir | default('/backup') }}
|
||||||
|
backup_retention={{ backup_retention | default('7') }}
|
||||||
|
|
||||||
|
### PBS ####
|
||||||
|
PBS_RATE={{ pbs_rate | default('60000000') }}
|
||||||
|
|
||||||
|
export PBS_FINGERPRINT="{{ pbs_fingerprint }}"
|
||||||
|
export PBS_PASSWORD="{{ pbs_password }}"
|
||||||
|
export PBS_USER="{{ pbs_user }}"
|
||||||
|
export PBS_SERVER="{{ pbs_server }}"
|
||||||
|
export PBS_DATASTORE="{{ pbs_datastore }}"
|
||||||
|
export PBS_REPOSITORY="${PBS_USER}@${PBS_SERVER}:${PBS_DATASTORE}"
|
||||||
|
export PBS_LOG="{{ PBS_LOG_LEVEL | default('error') }}"
|
||||||
|
|
||||||
|
## PBS login ##
|
||||||
|
/usr/bin/proxmox-backup-client login
|
||||||
|
if [ $? -ne 0 ]; then
|
||||||
|
echo "Error on PBS login - exiting."
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
## end of PBS login ##
|
||||||
|
|
||||||
|
## system ##
|
||||||
|
mkdir -p $backup_dir/$today/system
|
||||||
|
|
||||||
|
/usr/bin/tar cfz $backup_dir/$today/system/crontab.tgz -C /var/spool/cron/ crontabs/
|
||||||
|
/usr/bin/dpkg -l > $backup_dir/$today/system/dpkg.txt
|
||||||
|
[ -f /sbin/iptables ] && /sbin/iptables -L -n > $backup_dir/$today/system/firewall.txt
|
||||||
|
[ -f /sbin/iptables ] && /sbin/iptables -L -n -t nat > $backup_dir/$today/system/firewall_nat.txt
|
||||||
|
[ -f /sbin/ip6tables ] && /sbin/ip6tables -L -n > $backup_dir/$today/system/firewall6.txt
|
||||||
|
[ -f /sbin/ip6tables ] && /sbin/ip6tables -L -n -t nat > $backup_dir/$today/system/firewall6_nat.txt
|
||||||
|
[ -f /usr/bin/pstree ] && /usr/bin/pstree > $backup_dir/$today/system/pstree.txt
|
||||||
|
/bin/ps faux > $backup_dir/$today/system/ps.txt
|
||||||
|
/bin/systemctl list-units > $backup_dir/$today/system/systemctl_unit.txt
|
||||||
|
/usr/bin/getent passwd > $backup_dir/$today/system/users.txt
|
||||||
|
[ -f /usr/bin/pvs ] && /usr/sbin/pvs > $backup_dir/$today/system/pvs.txt
|
||||||
|
[ -f /usr/bin/vgs ] && /usr/sbin/vgs > $backup_dir/$today/system/vgs.txt
|
||||||
|
[ -f /usr/bin/lvs ] &&/ usr/sbin/lvs > $backup_dir/$today/system/lvs.txt
|
||||||
|
|
||||||
|
for dev in /sys/block/*; do
|
||||||
|
dev=$(basename $dev)
|
||||||
|
if test -b /dev/$dev && file -s /dev/$dev | egrep -q 'partition table|boot sector'; then
|
||||||
|
/usr/sbin/sfdisk -d /dev/$dev >> $backup_dir/$today/system/partition-table_$dev.txt
|
||||||
|
fi
|
||||||
|
done
|
||||||
|
## end of system ##
|
||||||
|
|
||||||
|
{% if backup_mysql_enabled is sameas true %}
|
||||||
|
## mysql ##
|
||||||
|
mysql_databases=`/usr/bin/mysql -e "SHOW DATABASES;" | grep -Ev "(Database|information_schema|performance_schema)"`
|
||||||
|
|
||||||
|
mkdir -p $backup_dir/$today/mysql
|
||||||
|
|
||||||
|
for db in $mysql_databases;
|
||||||
|
do mysqldump -e -q -Q --lock-tables $db | gzip -c > $backup_dir/$today/mysql/dump_$db.sql.gz;
|
||||||
|
done
|
||||||
|
|
||||||
|
## end of mysql ##
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
|
{% if backup_pgsql_enabled is sameas true %}
|
||||||
|
## postgresql ##
|
||||||
|
pg_port={{ backup_pg_port | default('5432') }}
|
||||||
|
pg_databases=`sudo su - postgres -c "/usr/bin/psql -p $pg_port -t -c 'SELECT datname FROM pg_database'"|grep -v "template0"`
|
||||||
|
|
||||||
|
mkdir -p $backup_dir/$today/postgresql
|
||||||
|
chown -R postgres: $backup_dir/$today/postgresql
|
||||||
|
|
||||||
|
for db in $pg_databases;
|
||||||
|
do sudo su - postgres -c "/usr/bin/pg_dump -p $pg_port -Z9 -Fc -b -f $backup_dir/$today/postgresql/dump_$db.sql $db";
|
||||||
|
done
|
||||||
|
|
||||||
|
sudo su - postgres -c "/usr/bin/pg_dumpall --roles-only > $backup_dir/$today/postgresql/role.sql"
|
||||||
|
## end of postresql ##
|
||||||
|
{% endif %}
|
||||||
|
|
||||||
|
# purge old backups
|
||||||
|
find $backup_dir -type d -ctime +$backup_retention -exec rm -rf {} \;
|
||||||
|
|
||||||
|
## send to PBS ##
|
||||||
|
# TODO : this need to be templified !
|
||||||
|
/usr/bin/proxmox-backup-client backup system.pxar:$backup_dir/$today/system --rate ${PBS_RATE}
|
||||||
|
/usr/bin/proxmox-backup-client backup etc.pxar:/etc/ --rate ${PBS_RATE}
|
||||||
|
/usr/bin/proxmox-backup-client backup var_www.pxar:/var/www/ --rate ${PBS_RATE} --exclude 'html' --exclude 'lost+found' --exclude='*.sock' --exclude='*.log' --exclude='.cache/'
|
||||||
|
/usr/bin/proxmox-backup-client backup opt.pxar:/opt/ --rate ${PBS_RATE}
|
||||||
|
/usr/bin/proxmox-backup-client backup mysql.pxar:$backup_dir/$today/mysql --rate ${PBS_RATE}
|
||||||
|
/usr/bin/proxmox-backup-client backup postgresql.pxar:$backup_dir/$today/postgresql --rate ${PBS_RATE}
|
||||||
|
/usr/bin/proxmox-backup-client backup slash.pxar:/ --rate ${PBS_RATE} --include-dev /opt/docker-compose --include-dev /home
|
||||||
|
## end of send to PBS ##
|
||||||
|
|
||||||
|
## PBS logout ##
|
||||||
|
/usr/bin/proxmox-backup-client logout
|
||||||
|
## end of PBS logout ##
|
||||||
|
|
||||||
Loading…
x
Reference in New Issue
Block a user