Home Explore Help
Sign In
ffdo-infrastruktur
/
ffdo-ansible
mirror of https://github.com/ffdo/ffdo-ansible.git
5
0
Fork 0
Files
Tree: 55d97e124c
Branches Tags
ffdo-ansible
/
roles
/
common-restic
/
tasks
/
main.yml

main.yml 2.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 
  1. - name: Ensure restic binary is in place
    2. 

  2.   copy:
    3. 

  3.     src: restic_linux_amd64
    4. 

  4.     dest: /usr/local/bin/restic
    5. 

  5.     mode: 0777
    6. 

  6. 

  7. - name: Ensure restic password file exists
    8. 

  8.   copy:
    9. 

  9.     dest: /root/.restic.password
    10. 

  10.     content: "{{ restic_repo_password }}"
    11. 

  11.     mode: 0600
    12. 

  12. 

  13. - name: Check repository
    14. 

  14.   register: restic_repo_check
    15. 

  15.   shell: /usr/local/bin/restic -p /root/.restic.password -r {{ restic_repo }} check
    16. 

  16.   environment: "{{ restic_repo_environment }}"
    17. 

  17.   ignore_errors: yes
    18. 

  18. 

  19. - name: Init restic repository
    20. 

  20.   when: restic_repo_check.rc != 0
    21. 

  21.   shell: /usr/local/bin/restic -p /root/.restic.password -r {{ restic_repo }} init
    22. 

  22.   environment: "{{ restic_repo_environment }}"
    23. 

  23. 

  24. - name: Ensure restic cron jobs exist
    25. 

  25.   cron:
    26. 

  26.     name: Restic backups for {{ item.dir }}
    27. 

  27.     job: /usr/local/bin/restic -p /root/.restic.password -r {{ restic_repo }} backup {{ item.dir }}
    28. 

  28.     hour: 2
    29. 

  29.     minute: 35
    30. 

  30.     cron_file: restic
    31. 

  31.     user: root
    32. 

  32.   with_items: "{{ restic_stateful_dirs }}"
    33. 

  33. 

  34. # TODO find a more elegant way to set environment variables here
    35. 

  35. - name: Set restic environment variables
    36. 

  36.   cron:
    37. 

  37.     cron_file: restic
    38. 

  38.     name: "{{ item.name }}"
    39. 

  39.     value: "{{ item.value }}"
    40. 

  40.     env: yes
    41. 

  41.     user: root
    42. 

  42.   with_items:
    43. 

  43.     - name: "AWS_ACCESS_KEY_ID"
    44. 

  44.       value: "{{ restic_repo_environment.AWS_ACCESS_KEY_ID }}"
    45. 

  45.     - name: "AWS_SECRET_ACCESS_KEY"
    46. 

  46.       value: "{{ restic_repo_environment.AWS_SECRET_ACCESS_KEY }}"
    47. 

  47. 

  48. # The target directory shall not already exist on the host
    49. 

  49. - name: Restore previous backup of stateful data
    50. 

  50.   when: not restic_backup_now and restic_restore
    51. 

  51.   shell: /usr/local/bin/restic -p /root/.restic.password -r {{ restic_repo }} restore --path {{ item }} -t {{ item }} latest
    52. 

  52.   environment: "{{ restic_repo_environment }}"
    53. 

  53.   with_items: "{{ restic_stateful_dirs }}"
    54. 

  54. 

  55. - name: Create initial backup of statefule dirs
    56. 

  56.   when: restic_backup_now and not restic_restore
    57. 

  57.   shell: /usr/local/bin/restic -p /root/.restic.password -r {{ restic_repo }} backup {{ item.dir }}
    58. 

  58.   environment: "{{ restic_repo_environment }}"
    59. 

  59.   with_items: "{{ restic_stateful_dirs }}"
    60.