mirror of
https://github.com/tiredofit/docker-db-backup.git
synced 2025-12-21 21:33:28 +01:00
Compare commits
12 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
|
53760fbe4d | ||
|
|
a72b562c70 | ||
|
|
fc586c204f | ||
|
|
e9ed8d1a72 | ||
|
|
78ac4a4a81 | ||
|
|
949aafdbe1 | ||
|
|
7a94472055 | ||
|
|
23aeaf58a2 | ||
|
|
b88816337f | ||
|
|
ac8181b3b5 | ||
|
|
c75c41a34d | ||
|
|
244e411e76 |
38
CHANGELOG.md
38
CHANGELOG.md
@@ -1,3 +1,41 @@
|
||||
## 4.1.16 2025-02-21 <dave at tiredofit dot ca>
|
||||
|
||||
### Added
|
||||
- Update to tiredofit/alpine:7.10.28
|
||||
- Support TLS connectivity with restore script (credit fermion2020@github)
|
||||
|
||||
|
||||
## 4.1.15 2025-01-29 <dave at tiredofit dot ca>
|
||||
|
||||
### Added
|
||||
- Add support for username and password support when checking for connectivity to couchdb (credit: JvSomeren)
|
||||
|
||||
### Changed
|
||||
- Fix issue with couchdb compression routines
|
||||
|
||||
|
||||
## 4.1.14 2025-01-21 <dave at tiredofit dot ca>
|
||||
|
||||
### Changed
|
||||
- Downgrade AWS Client to 1.36.40 due to incompatibilities with providers with 1.37x. for time being
|
||||
|
||||
|
||||
## 4.1.13 2025-01-21 <dave at tiredofit dot ca>
|
||||
|
||||
### Added
|
||||
- Update MySQL client to 8.4.4
|
||||
- Update AWS Client to 1.37.2
|
||||
|
||||
### Changed
|
||||
- Seperate MySQL and MariaDB TLS Configurationf for arguments that have deviated
|
||||
|
||||
|
||||
## 4.1.12 2024-12-13 <dave at tiredofit dot ca>
|
||||
|
||||
### Changed
|
||||
- Fix for 4.1.11
|
||||
|
||||
|
||||
## 4.1.11 2024-12-13 <dave at tiredofit dot ca>
|
||||
|
||||
### Changed
|
||||
|
||||
@@ -1,5 +1,5 @@
|
||||
ARG DISTRO=alpine
|
||||
ARG DISTRO_VARIANT=3.21-7.10.27
|
||||
ARG DISTRO_VARIANT=3.21-7.10.28
|
||||
|
||||
FROM docker.io/tiredofit/${DISTRO}:${DISTRO_VARIANT}
|
||||
LABEL maintainer="Dave Conroy (github.com/tiredofit)"
|
||||
@@ -8,9 +8,9 @@ ENV INFLUX1_CLIENT_VERSION=1.8.0 \
|
||||
INFLUX2_CLIENT_VERSION=2.7.5 \
|
||||
MSODBC_VERSION=18.4.1.1-1 \
|
||||
MSSQL_VERSION=18.4.1.1-1 \
|
||||
MYSQL_VERSION=mysql-8.4.3 \
|
||||
MYSQL_VERSION=mysql-8.4.4 \
|
||||
MYSQL_REPO_URL=https://github.com/mysql/mysql-server \
|
||||
AWS_CLI_VERSION=1.35.13 \
|
||||
AWS_CLI_VERSION=1.36.40 \
|
||||
CONTAINER_ENABLE_MESSAGING=TRUE \
|
||||
CONTAINER_ENABLE_MONITORING=TRUE \
|
||||
IMAGE_NAME="tiredofit/db-backup" \
|
||||
|
||||
2
LICENSE
2
LICENSE
@@ -1,6 +1,6 @@
|
||||
The MIT License (MIT)
|
||||
|
||||
Copyright (c) 2023 Dave Conroy
|
||||
Copyright (c) 2025 Dave Conroy
|
||||
|
||||
Permission is hereby granted, free of charge, to any person obtaining a copy
|
||||
of this software and associated documentation files (the "Software"), to deal
|
||||
|
||||
@@ -429,6 +429,14 @@ EOF
|
||||
|
||||
if [ -n "${backup_job_db_pass}" ] ; then export MYSQL_PWD=${backup_job_db_pass} ; fi
|
||||
if var_true "${backup_job_mysql_enable_tls}" ; then
|
||||
case "${backup_job_mysql_client,,}" in
|
||||
mariadb )
|
||||
mysql_tls_args="--ssl"
|
||||
;;
|
||||
mysql )
|
||||
mysql_tls_args="--ssl-mode=REQUIRED"
|
||||
;;
|
||||
esac
|
||||
if [ -n "${backup_job_mysql_tls_ca_file}" ] ; then
|
||||
mysql_tls_args="--ssl_ca=${backup_job_mysql_tls_ca_file}"
|
||||
fi
|
||||
@@ -440,14 +448,28 @@ EOF
|
||||
fi
|
||||
|
||||
if var_true "${backup_job_mysql_tls_verify}" ; then
|
||||
mysql_tls_args="${mysql_tls_args} --sslverify-server-cert"
|
||||
case "${backup_job_mysql_client,,}" in
|
||||
mariadb )
|
||||
mysql_tls_args="${mysql_tls_args} --sslverify-server-cert"
|
||||
;;
|
||||
mysql )
|
||||
mysql_tls_args="${mysql_tls_args} --ssl-mode=VERIFY_CA"
|
||||
;;
|
||||
esac
|
||||
fi
|
||||
|
||||
if [ -n "${backup_job_mysql_tls_version}" ] ; then
|
||||
mysql_tls_args="${mysql_tls_args} --tls_version=${backup_job_mysql_tls_version}"
|
||||
fi
|
||||
else
|
||||
mysql_tls_args="--disable-ssl"
|
||||
case "${backup_job_mysql_client,,}" in
|
||||
mariadb )
|
||||
mysql_tls_args="--disable-ssl"
|
||||
;;
|
||||
mysql )
|
||||
mysql_tls_args="--ssl-mode=DISABLED"
|
||||
;;
|
||||
esac
|
||||
fi
|
||||
;;
|
||||
"mssql" | "microsoftsql" )
|
||||
@@ -510,7 +532,7 @@ backup_couch() {
|
||||
prepare_dbbackup
|
||||
backup_job_filename=couch_${backup_job_db_name}_${backup_job_db_host#*//}_${now}.txt
|
||||
backup_job_filename_base=couch_${backup_job_db_name}_${backup_job_db_host#*//}
|
||||
compressionzyclonite
|
||||
compression
|
||||
if var_true "${DEBUG_BACKUP_COUCH}" ; then debug off; fi
|
||||
check_exit_code backup "${backup_job_filename}"
|
||||
timer backup finish
|
||||
@@ -691,7 +713,7 @@ backup_mysql() {
|
||||
|
||||
if [ "${backup_job_db_name,,}" = "all" ] ; then
|
||||
write_log debug "Preparing to back up everything except for information_schema and _* prefixes"
|
||||
db_names=$(run_as_user ${_mysql_prefix}${_mysql_bin_prefix} -h ${backup_job_db_host} -P ${backup_job_db_port} -u${backup_job_db_user} ${mysql_tls_args} ${backup_job_extra_opts} ${backup_job_extra_enumeration_opts} --batch -e "SHOW DATABASES;" | grep -v Database | grep -v schema )
|
||||
db_names=$(run_as_user ${_mysql_prefix}${_mysql_bin_prefix/-/} -h ${backup_job_db_host} -P ${backup_job_db_port} -u${backup_job_db_user} ${mysql_tls_args} ${backup_job_extra_opts} ${backup_job_extra_enumeration_opts} --batch -e "SHOW DATABASES;" | grep -v Database | grep -v schema )
|
||||
if [ -n "${backup_job_db_name_exclude}" ] ; then
|
||||
db_names_exclusions=$(echo "${backup_job_db_name_exclude}" | tr ',' '\n')
|
||||
for db_exclude in ${db_names_exclusions} ; do
|
||||
@@ -921,14 +943,16 @@ backup_sqlite3() {
|
||||
|
||||
check_availability() {
|
||||
if var_true "${DEBUG_CHECK_AVAILABILITY}" ; then debug on; fi
|
||||
### Set the Database Type
|
||||
if var_false "${backup_job_skip_availability_check}" ; then
|
||||
case "${dbtype}" in
|
||||
"couch" )
|
||||
counter=0
|
||||
code_received=0
|
||||
if [ -n "${backup_job_db_user}" ] && [ -n ${backup_job_db_pass} ]; then
|
||||
_ca_couch_auth="-u ${backup_job_db_user}:${backup_job_db_pass}"
|
||||
fi
|
||||
while [ "${code_received}" != "200" ]; do
|
||||
code_received=$(run_as_user curl -XGET -sSL -o /dev/null -L -w ''%{http_code}'' ${backup_job_db_host}:${backup_job_db_port})
|
||||
code_received=$(run_as_user curl -XGET -sSL -o /dev/null -L -w ''%{http_code}'' ${_ca_couch_auth} ${backup_job_db_host}:${backup_job_db_port})
|
||||
if [ "${code_received}" = "200" ] ; then break ; fi
|
||||
sleep 5
|
||||
(( counter+=5 ))
|
||||
|
||||
@@ -912,6 +912,83 @@ get_filename() {
|
||||
r_filename=${opt}
|
||||
}
|
||||
|
||||
get_ssl() {
|
||||
if grep -q "^DB${detected_host_num}_MYSQL_ENABLE_TLS=" "${restore_vars}" ; then
|
||||
detected_ssl_value=$(grep "^DB${detected_host_num}_MYSQL_ENABLE_TLS=" "${restore_vars}" | head -n1 | cut -d '=' -f 2)
|
||||
fi
|
||||
|
||||
if [[ -z "${detected_ssl_value}" ]]; then
|
||||
print_debug "Parsed SSL Variant: 1 - No Env Variable Found"
|
||||
default_ssl="false" # Default if no env variable
|
||||
q_ssl_variant=1
|
||||
q_ssl_menu_opt_default="| (${cwh}N${cdgy}) * "
|
||||
q_ssl_menu="" #No menu option
|
||||
else
|
||||
print_debug "Parsed SSL Variant: 2 - Env Variable DB${detected_host_num}_MYSQL_ENABLE_TLS = '${detected_ssl_value}'"
|
||||
default_ssl="${detected_ssl_value,,}"
|
||||
q_ssl_variant=2
|
||||
q_ssl_menu="E ) Environment Variable DB${detected_host_num}_MYSQL_ENABLE_TLS: '${detected_ssl_value}'"
|
||||
q_ssl_menu_opt_default="| (${cwh}E${cdgy}) * "
|
||||
fi
|
||||
|
||||
cat <<EOF
|
||||
|
||||
Do you wish to use SSL for the connection?
|
||||
${q_ssl_menu}
|
||||
|
||||
Y ) Yes
|
||||
N ) No
|
||||
Q ) Quit
|
||||
|
||||
EOF
|
||||
|
||||
r_ssl=""
|
||||
case "${q_ssl_variant}" in
|
||||
1) # No env variable, ask directly
|
||||
while true; do
|
||||
read -r -p "$(echo -e ${clg}** ${cdgy}Enter Value \(${cwh}Y${cdgy}\) \| \(${cwh}N\*${cdgy}\) : ${cwh}${coff}) " q_ssl
|
||||
case "${q_ssl,,}" in
|
||||
y*)
|
||||
r_ssl="true"
|
||||
break
|
||||
;;
|
||||
n* | "")
|
||||
r_ssl="false"
|
||||
break
|
||||
;;
|
||||
q*)
|
||||
print_info "Quitting Script"
|
||||
exit 1
|
||||
;;
|
||||
esac
|
||||
done
|
||||
;;
|
||||
2) # Env variable exists, offer it as an option
|
||||
while true; do
|
||||
read -r -p "$(echo -e ${clg}** ${cdgy}Enter Value \(${cwh}E\*${cdgy}\) \| \(${cwh}Y${cdgy}\) \| \(${cwh}N${cdgy}\) : ${cwh}${coff}) " q_ssl
|
||||
case "${q_ssl,,}" in
|
||||
e* | "") # Default to env variable if just enter is pressed.
|
||||
r_ssl="${detected_ssl_value}"
|
||||
break
|
||||
;;
|
||||
y*)
|
||||
r_ssl="true"
|
||||
break
|
||||
;;
|
||||
n*)
|
||||
r_ssl="false"
|
||||
break
|
||||
;;
|
||||
q*)
|
||||
print_info "Quitting Script"
|
||||
exit 1
|
||||
;;
|
||||
esac
|
||||
done
|
||||
;;
|
||||
esac
|
||||
}
|
||||
|
||||
#### SCRIPT START
|
||||
trap control_c INT
|
||||
bootstrap_variables restore_init
|
||||
@@ -984,6 +1061,20 @@ else
|
||||
fi
|
||||
print_debug "Database Port '${r_dbport}'"
|
||||
|
||||
## Question SSL connection
|
||||
if [[ "${r_dbtype,,}" == "mariadb" || "${r_dbtype,,}" == "mysql" ]]; then
|
||||
if [ -n "${8}" ]; then
|
||||
r_ssl="${8}"
|
||||
else
|
||||
get_ssl
|
||||
fi
|
||||
print_debug "SSL enable: '${r_ssl}'"
|
||||
else
|
||||
r_ssl="false"
|
||||
print_debug "SSL disabled for ${r_dbtype}"
|
||||
fi
|
||||
|
||||
|
||||
## Parse Extension
|
||||
case "${r_filename##*.}" in
|
||||
bz* )
|
||||
@@ -1013,8 +1104,13 @@ esac
|
||||
## Perform a restore
|
||||
case "${r_dbtype}" in
|
||||
mariadb | mysql )
|
||||
if [[ "${r_ssl,,}" == "false" ]]; then
|
||||
mysql_ssl_option="--disable-ssl"
|
||||
else
|
||||
mysql_ssl_option=""
|
||||
fi
|
||||
print_info "Restoring '${r_filename}' into '${r_dbhost}'/'${r_dbname}'"
|
||||
pv ${r_filename} | ${decompress_cmd}cat | mysql -u${r_dbuser} -p${r_dbpass} -P${r_dbport} -h${r_dbhost} ${r_dbname}
|
||||
pv ${r_filename} | ${decompress_cmd}cat | mariadb -u${r_dbuser} -p${r_dbpass} -P${r_dbport} -h${r_dbhost} ${mysql_ssl_option} ${r_dbname}
|
||||
exit_code=$?
|
||||
;;
|
||||
pgsql | postgres* )
|
||||
|
||||
Reference in New Issue
Block a user