kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-11-04 04:08:15 +00:00
Code Issues Packages Projects Releases Wiki Activity

Optimized svc-bkp-rmt-2-loc and moved conf into role config

Browse Source
This commit is contained in:
Kevin Veen-Birkenbach
2025-07-15 17:25:19 +02:00
parent 8ac88475d5
commit 4627d9031c
9 changed files with 13 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docs/analysis/Features.md
View File

@@ -15,7 +15,7 @@ Every business is unique, and so is CyMaIS! With a modular architecture, it adap
With automated updates, system health checks, and security audits, CyMaIS ensures your infrastructure is always up-to-date and running smoothly. Roles such as `sys-hlth-docker-container`, `sys-hlth-btrfs`, and `sys-hlth-webserver` help monitor system integrity.
## Uncompromised Security 🔒
Security is a top priority! CyMaIS includes robust security features like full-disk encryption recommendations, 2FA enforcement, encrypted server deployments (`web-app-keycloak`, `svc-db-openldap`), and secure backup solutions (`sys-bkp-remote-to-local`, `svc-bkp-loc-2-usb`).
Security is a top priority! CyMaIS includes robust security features like full-disk encryption recommendations, 2FA enforcement, encrypted server deployments (`web-app-keycloak`, `svc-db-openldap`), and secure backup solutions (`sys-bkp-rmt-2-loc`, `svc-bkp-loc-2-usb`).
## User-Friendly with Expert Support 👩‍💻
No need to be a Linux or Docker expert! CyMaIS simplifies deployment with intuitive role-based automation. Documentation and community support make IT administration accessible to all experience levels.

2
docs/guides/administrator/Readme.md
View File

@@ -10,7 +10,7 @@ Follow these guides to install and configure CyMaIS:
## Key Responsibilities 🔧
- **User Management** - Configure LDAP, Keycloak, and user permissions.
- **Security & Backups** - Set up `sys-bkp-remote-to-local`, `svc-bkp-loc-2-usb`, and `core-security` roles.
- **Security & Backups** - Set up `sys-bkp-rmt-2-loc`, `svc-bkp-loc-2-usb`, and `core-security` roles.
- **Application Hosting** - Deploy services like `Nextcloud`, `Matrix`, `Gitea`, and more.
- **Networking & VPN** - Configure `WireGuard`, `OpenVPN`, and `Nginx Reverse Proxy`.

6
roles/svc-bkp-rmt-2-loc/Administration.md
View File

@@ -9,17 +9,17 @@ To track what the service is doing, execute one of the following commands:
#### Using systemctl
```bash
watch -n2 "systemctl status sys-bkp-remote-to-local.cymais.service"
watch -n2 "systemctl status sys-bkp-rmt-2-loc.cymais.service"
```
#### Using journalctl
```bash
journalctl -fu sys-bkp-remote-to-local.cymais.service
journalctl -fu sys-bkp-rmt-2-loc.cymais.service
```
### Viewing History
```bash
sudo journalctl -u sys-bkp-remote-to-local.cymais.service
sudo journalctl -u sys-bkp-rmt-2-loc.cymais.service
```

1
roles/svc-bkp-rmt-2-loc/config/main.yml Normal file
View File

@@ -0,0 +1 @@
backup_providers: [] # List of providers to pull the backups from

0
roles/svc-bkp-rmt-2-loc/files/sys-bkp-remote-to-local.sh → roles/svc-bkp-rmt-2-loc/files/sys-bkp-rmt-2-loc.sh
View File

6
roles/svc-bkp-rmt-2-loc/tasks/main.yml
View File

@@ -16,10 +16,10 @@
dest: /etc/systemd/system/svc-bkp-rmt-2-loc.cymais.service
notify: reload svc-bkp-rmt-2-loc service
- name: create backups-remote-to-local.sh
- name: create sys-bkp-rmt-2-loc-multi-provider.sh
template:
src: backups-remote-to-local.sh.j2
dest: "{{docker_backup_remote_to_local_folder}}backups-remote-to-local.sh"
src: sys-bkp-rmt-2-loc-multi-provider.sh.j2
dest: "{{docker_backup_remote_to_local_folder}}sys-bkp-rmt-2-loc-multi-provider.sh"
mode: 0755
- name: "set 'service_name' to '{{ role_name }}'"

2
roles/svc-bkp-rmt-2-loc/templates/backups-remote-to-local.sh.j2 → roles/svc-bkp-rmt-2-loc/templates/sys-bkp-rmt-2-loc-multi-provider.sh.j2
View File

@@ -1,6 +1,6 @@
#!/bin/bash
# Pulls the remote backups from multiple hosts
hosts="{{ pull_remote_backups | join(' ') }}";
hosts="{{ rmt2loc_backup_providers | join(' ') }}";
errors=0
for host in $hosts; do
bash {{ docker_backup_remote_to_local_folder }}svc-bkp-rmt-2-loc.sh $host || ((errors+=1));

2
roles/svc-bkp-rmt-2-loc/templates/sys-bkp-remote-to-local.service.j2 → roles/svc-bkp-rmt-2-loc/templates/sys-bkp-rmt-2-loc.service.j2
View File

@@ -5,4 +5,4 @@ OnFailure=sys-alm-compose.cymais@%n.service sys-cln-faild-bkps.cymais.service
[Service]
Type=oneshot
ExecStartPre=/bin/sh -c '/usr/bin/python {{ path_system_lock_script }} {{ system_maintenance_services | join(' ') }} --ignore {{system_maintenance_backup_services| join(' ') }} --timeout "{{system_maintenance_lock_timeout_backup_services}}"'
ExecStart=/bin/sh -c '/usr/bin/bash {{docker_backup_remote_to_local_folder}}backups-remote-to-local.sh'
ExecStart=/bin/sh -c '/usr/bin/bash {{docker_backup_remote_to_local_folder}}sys-bkp-rmt-2-loc-multi-provider.sh'

3
roles/svc-bkp-rmt-2-loc/vars/main.yml
View File

@@ -1,2 +1,3 @@
docker_backup_remote_to_local_folder: '{{path_administrator_scripts}}svc-bkp-rmt-2-loc/'
application_id: svc-bkp-rmt-2-loc
docker_backup_remote_to_local_folder: '{{ path_administrator_scripts }}{{ application_id }}/'
rmt2loc_backup_providers: "{{ applications | get_app_conf(application_id, 'backup_providers') }}"