yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Inventory/borgbackup: fixup structure

Browse Source
This commit is contained in:
Johannes Kirschbauer
2024-10-01 16:13:09 +02:00
parent 0819562a0b
commit c6cbfcca42
1 changed files with 32 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

59
clanModules/borgbackup/roles/client.nix
View File

@@ -87,7 +87,21 @@ in
''; '';
}; };
config = lib.mkIf (cfg.destinations != { }) { config = {
# Destinations
clan.borgbackup.destinations =
let
destinations = builtins.map (serverName: {
name = serverName;
value = {
repo = "borg@${serverName}:/var/lib/borgbackup/${machineName}";
};
}) allServers;
in
(builtins.listToAttrs destinations);
# Derived from the destinations
systemd.services = lib.mapAttrs' ( systemd.services = lib.mapAttrs' (
_: dest: _: dest:
lib.nameValuePair "borgbackup-job-${dest.name}" { lib.nameValuePair "borgbackup-job-${dest.name}" {
@@ -122,22 +136,6 @@ in
}; };
}) cfg.destinations; }) cfg.destinations;
clan.core.facts.services.borgbackup = {
public."borgbackup.ssh.pub" = { };
secret."borgbackup.ssh" = { };
secret."borgbackup.repokey" = { };
generator.path = [
pkgs.openssh
pkgs.coreutils
pkgs.xkcdpass
];
generator.script = ''
ssh-keygen -t ed25519 -N "" -f "$secrets"/borgbackup.ssh
mv "$secrets"/borgbackup.ssh.pub "$facts"/borgbackup.ssh.pub
xkcdpass -n 4 -d - > "$secrets"/borgbackup.repokey
'';
};
environment.systemPackages = [ environment.systemPackages = [
(pkgs.writeShellScriptBin "borgbackup-create" '' (pkgs.writeShellScriptBin "borgbackup-create" ''
set -efu -o pipefail set -efu -o pipefail
@@ -169,20 +167,27 @@ in
'') '')
]; ];
# Facts generation. So the client can authenticate to the server
clan.core.facts.services.borgbackup = {
public."borgbackup.ssh.pub" = { };
secret."borgbackup.ssh" = { };
secret."borgbackup.repokey" = { };
generator.path = [
pkgs.openssh
pkgs.coreutils
pkgs.xkcdpass
];
generator.script = ''
ssh-keygen -t ed25519 -N "" -f "$secrets"/borgbackup.ssh
mv "$secrets"/borgbackup.ssh.pub "$facts"/borgbackup.ssh.pub
xkcdpass -n 4 -d - > "$secrets"/borgbackup.repokey
'';
};
clan.core.backups.providers.borgbackup = { clan.core.backups.providers.borgbackup = {
list = "borgbackup-list"; list = "borgbackup-list";
create = "borgbackup-create"; create = "borgbackup-create";
restore = "borgbackup-restore"; restore = "borgbackup-restore";
}; };
clan.borgbackup.destinations =
let
destinations = builtins.map (serverName: {
name = serverName;
value = {
repo = "borg@${serverName}:/var/lib/borgbackup/${machineName}";
};
}) allServers;
in
(builtins.listToAttrs destinations);
}; };
} }