scripted_reality/cloud_backup
1
0
Fork 0
Code Issues 2 Pull Requests 1 Packages Projects Releases Wiki Activity
Files
issue2/lastlink
cloud_backup/README.md

55 lines
2.2 KiB
Markdown
Raw Permalink Blame History

# Cloud Backup
The script automates the backup of your nextcloud installation. It dumps the mariadb database and uses rsync to backup that and the cloud files.
This script uses three files:
* the actual script cloud_backup.sh,
* the configuration file .cloud_backup.conf and
* the file exlusion file for excluding files from rsync, 'cloud_backup.exclude' by default.
A log file is created in the backup process. It is visible in the clouds folder of a user specified in `CONFIG_NC_LOGPATH`.
## setup
### user
Create a user that shall backup the nextclouds database and files. Therefor add him to the group www-data.
Put all values into the `cloud_backup.conf`, in best case put it into the home of your backup user, possibly the folder `.config/`. Leave it readable only to the user.
To run the script unattended generate a ssh key and push it to the remote server:
```
$ ssh-key-gen -t rsa -b 4096
```
Leave the passphrase empty, then copy it to the remote server.
```
$ ssh-copy-id remoteuser@remoteserver
```
### Logfile
The script throws out a log file of its activities. It is meant to be visible in the cloud. Choose your daily user, where you check back on regular basis. In the root folder of that user create a folder named `System` and set the path in `cloud_backup.conf` the value of `CONFIG_NC_LOGPATH`.
### Elevated rights
To give unrestricted access to everything via sudo is not a good idea. I'd choose to restrict elevated permissions to the specific commands needed.
In the sudoers file add the following lines.
```
# Cmnd alias specification
Cmnd_Alias OCC_NC = /usr/bin/php /var/www/nextcloud/occ files?scan --path=*
Cmnd_Alias RSYNC = /usr/bin/rsync *
Cmnd_Alias MAINTENANCE_ON = /usr/bin/php /var/www/nextcloud/occ maintenance?mode --on
Cmnd_Alias MAINTENANCE_OFF = /usr/bin/php /var/www/nextcloud/occ maintenance?mode --off
# User privilege specification
cloudbackup ALL=(www-data) NOPASSWD: OCC_NC, RSYNC
cloudbackup ALL=(www-data) NOPASSWD: MAINTENANCE_ON, MAINTENANCE_OFF
```
### cronjob
in crontab create an entry for the `cloud_backup.sh`. Replace `user` with yours doing the backup.
```
# Nextcloud backup
12 1 * * 1 user /home/cloudbackup/cloud_backup.sh
```
Reference in New Issue View Git Blame Copy Permalink