]> git.immae.eu Git - perso/Immae/Projets/Puppet.git/blob - modules/role/manifests/backup.pp
projects / perso / Immae / Projets / Puppet.git / blob
? search:


6b8d00c00d93b10af27ba96724931eadbecaa5ac
[perso/Immae/Projets/Puppet.git] / modules / role / manifests / backup.pp
1 class role::backup (
2 String $user,
3 String $group,
4 String $mailto,
5 Optional[Array] $backups = [],
6 Optional[String] $mountpoint = "/backup1",
7 Optional[String] $backup_script = "/usr/local/bin/backup.sh",
8 ) {
9 include "base_installation"
10
11 include "profile::fstab"
12 include "profile::mail"
13 include "profile::tools"
14 include "profile::xmr_stak"
15 include "profile::known_hosts"
16 include "profile::boinc"
17 include "profile::monitoring"
18
19 include "role::backup::postgresql"
20
21 ensure_packages(["rsync"])
22
23 ssh_keygen { $user:
24 notify => Notify_refresh["notify-backup-sshkey-change"]
25 }
26
27 $hosts = $backups.map |$backup| { $backup["host"] }
28
29 notify_refresh { "notify-backup-sshkey-change":
30 message => template("role/backup/ssh_key_changed.info.erb"),
31 refreshonly => true
32 }
33
34 $hosts.each |$host| {
35 notify_refresh { "notify-backup-sshhost-$host-changed":
36 message => template("role/backup/ssh_host_changed.info.erb"),
37 refreshonly => true,
38 subscribe => Sshkey[$host],
39 }
40 }
41
42 concat { $backup_script:
43 ensure => "present",
44 ensure_newline => true,
45 mode => "0755",
46 }
47
48 cron::job { "backup":
49 ensure => present,
50 command => $backup_script,
51 user => $user,
52 minute => 25,
53 hour => "3,15",
54 require => Concat[$backup_script],
55 }
56
57 concat::fragment { "backup_head":
58 target => $backup_script,
59 content => template("role/backup/backup_head.sh.erb"),
60 order => "01-50",
61 }
62
63 concat::fragment { "backup_tail":
64 target => $backup_script,
65 content => template("role/backup/backup_tail.sh.erb"),
66 order => "99-50",
67 }
68
69 $backups.each |$infos| {
70 $dirname = $infos["name"]
71 $login = $infos["login"]
72 $host = $infos["host"]
73 $dest = "$login@$host"
74 $base = "$mountpoint/$dirname"
75 $nbr = $infos["nbr"]
76 $order_dirname = $infos["order"]
77
78 file { $base:
79 ensure => "directory",
80 owner => $user,
81 group => $group,
82 require => Mount[$mountpoint],
83 } ->
84 file { "$base/older":
85 ensure => "directory",
86 owner => $user,
87 group => $group,
88 } ->
89 file { "$base/rsync_output":
90 ensure => "directory",
91 owner => $user,
92 group => $group,
93 }
94
95 concat::fragment { "backup_${dirname}_head":
96 target => $backup_script,
97 content => template("role/backup/backup_dirname_head.sh.erb"),
98 order => "$order_dirname-01",
99 }
100
101 concat::fragment { "backup_${dirname}_tail":
102 target => $backup_script,
103 content => template("role/backup/backup_dirname_tail.sh.erb"),
104 order => "$order_dirname-99",
105 }
106
107 $infos["parts"].each |$part| {
108 $local_folder = $part["local_folder"]
109 $remote_folder = $part["remote_folder"]
110 $exclude_from = $part["exclude_from"]
111 $files_from = $part["files_from"]
112 $args = $part["args"]
113 $order_part = $part["order"]
114
115 file { "$base/$local_folder":
116 ensure => "directory",
117 owner => $user,
118 group => $group,
119 require => File[$base],
120 }
121
122 concat::fragment { "backup_${dirname}_${local_folder}":
123 target => $backup_script,
124 content => template("role/backup/backup_dirname_part.sh.erb"),
125 order => "$order_dirname-$order_part",
126 }
127 }
128
129 @profile::monitoring::local_service { "Last backup in $base is not too old":
130 local => {
131 check_command => "check_last_file_date!$base!14",
132 }
133 }
134 }
135 }
My infrastructure configuration - Deprecated, replaced with Nix