Felix Schröter
7799ef1131
Generating a list of paths for restic to backup introduces some issues: - restic matches incremental backups by paths, changing paths cause new backups - logs and a lot of restic commands print all the paths, which makes it basically unusable Thus I've reverted to using static `paths` and excluding patterns via the `--exclude-file` argument. To reduce files to backup from `~/dev`, a preStart job was added to the systemd service: It clones the directory via `rsync` with `.gitignore` files being respected.
46 lines
1.3 KiB
Nix
46 lines
1.3 KiB
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
# using the restic cli:
|
|
# load credentials into shell by adding B2 secrets to .env (see .env.example).
|
|
# useful commands for analysing restic stats [snapshot-id], restic diff [s1] [s2],
|
|
|
|
with lib;
|
|
with builtins;
|
|
let hasAnyAttr = flip (attrset: any (flip hasAttr attrset));
|
|
in {
|
|
resticConfig = args@{ name, paths ? [ ], ignorePatterns ? [ ]
|
|
, extraBackupArgs ? [ ], extraPruneOpts ? [ ], ... }:
|
|
assert !hasAnyAttr [
|
|
"initialize"
|
|
"repository"
|
|
"s3CredentialsFile"
|
|
"passwordFile"
|
|
"pruneOpts"
|
|
] args;
|
|
assert (args ? paths);
|
|
{
|
|
initialize = true;
|
|
repository = "b2:felschr-backups:/${name}";
|
|
environmentFile = config.age.secrets.restic-b2.path;
|
|
passwordFile = config.age.secrets.restic-password.path;
|
|
timerConfig.OnCalendar = "daily";
|
|
paths = paths;
|
|
extraBackupArgs = let
|
|
ignoreFile = builtins.toFile "ignore"
|
|
(foldl (a: b: a + "\n" + b) "" ignorePatterns);
|
|
in [ "--exclude-file=${ignoreFile}" ] ++ extraBackupArgs;
|
|
pruneOpts = [
|
|
"--keep-daily 7"
|
|
"--keep-weekly 4"
|
|
"--keep-monthly 3"
|
|
"--keep-yearly 1"
|
|
] ++ extraPruneOpts;
|
|
} // (removeAttrs args [
|
|
"name"
|
|
"paths"
|
|
"ignorePatterns"
|
|
"extraBackupArgs"
|
|
"extraPruneOpts"
|
|
]);
|
|
}
|