nixos/modules/restic-server-client/default.nix

{ custom
, path
, tag ? "home-dir"
, time
}: { config, pkgs, ... }:
{
  imports = [
    (import "${custom.inputs.self}/modules/telegram-notifications" { inherit custom; })
  ];

  age.secrets.resticKey.file = "${custom.inputs.self}/scrts/restic.key.age";

  systemd.timers."restic-backups" = {
    wantedBy = [ "timers.target" ];
    partOf = [ "restic-backups.service" ];
    timerConfig = {
      OnCalendar = time;
    };
  };

  systemd.services."restic-backups" = {
    serviceConfig = {
      User = "root";
      Type = "oneshot";
    };
    environment = {
      RESTIC_PASSWORD_FILE = config.age.secrets.resticKey.path;
      RESTIC_REPOSITORY = "rest:http://10.7.89.30:8000";
    };
    onFailure = [ "unit-status-telegram@%n.service" ];
    script = ''
      ${pkgs.restic}/bin/restic backup \
        --exclude-file=${custom.inputs.self}/modules/restic/excludes.txt \
        --tag ${tag} ${path}

      ${pkgs.restic}/bin/restic forget \
        --tag home-dir \
        --host ${config.networking.hostName} \
        --keep-daily 7 \
        --keep-weekly 5 \
        --keep-monthly 12 \
        --keep-yearly 75
    '';
  };
}
Integrate inputs into custom 2022-11-04 19:35:57 +01:00			`{ custom`
Encrypt restic secrets 2022-11-04 16:49:46 +01:00			`, path`
Add a path and tag parameter to the restic client 2022-11-02 23:17:37 +01:00			`, tag ? "home-dir"`
			`, time`
Encrypt restic secrets 2022-11-04 16:49:46 +01:00			`}: { config, pkgs, ... }:`
try to add a restic config for servers 2022-01-29 15:31:42 +01:00			`{`
Enable Telegram notifications on all restic services 2022-08-27 17:17:38 +02:00			`imports = [`
Integrate inputs into custom 2022-11-04 19:35:57 +01:00			`(import "${custom.inputs.self}/modules/telegram-notifications" { inherit custom; })`
Enable Telegram notifications on all restic services 2022-08-27 17:17:38 +02:00			`];`
Encrypt restic secrets 2022-11-04 16:49:46 +01:00
Integrate inputs into custom 2022-11-04 19:35:57 +01:00			`age.secrets.resticKey.file = "${custom.inputs.self}/scrts/restic.key.age";`
Encrypt restic secrets 2022-11-04 16:49:46 +01:00
			`systemd.timers."restic-backups" = {`
rewrite the restic-server-client 2022-02-28 18:19:50 +01:00			`wantedBy = [ "timers.target" ];`
Encrypt restic secrets 2022-11-04 16:49:46 +01:00			`partOf = [ "restic-backups.service" ];`
rewrite the restic-server-client 2022-02-28 18:19:50 +01:00			`timerConfig = {`
			`OnCalendar = time;`
			`};`
move the prune tasks into seperate services 2022-02-28 16:23:03 +01:00			`};`

Encrypt restic secrets 2022-11-04 16:49:46 +01:00			`systemd.services."restic-backups" = {`
extend the prune service 2022-02-28 17:14:57 +01:00			`serviceConfig = {`
correct username 2022-02-28 18:30:59 +01:00			`User = "root";`
extend the prune service 2022-02-28 17:14:57 +01:00			`Type = "oneshot";`
			`};`
rewrite the restic-server-client 2022-02-28 18:19:50 +01:00			`environment = {`
Encrypt restic secrets 2022-11-04 16:49:46 +01:00			`RESTIC_PASSWORD_FILE = config.age.secrets.resticKey.path;`
rewrite the restic-server-client 2022-02-28 18:19:50 +01:00			`RESTIC_REPOSITORY = "rest:http://10.7.89.30:8000";`
			`};`
Enable Telegram notifications on all restic services 2022-08-27 17:17:38 +02:00			`onFailure = [ "unit-status-telegram@%n.service" ];`
move the prune tasks into seperate services 2022-02-28 16:23:03 +01:00			`script = ''`
Add tags to restic backups 2022-05-31 22:23:38 +02:00			`${pkgs.restic}/bin/restic backup \`
Integrate inputs into custom 2022-11-04 19:35:57 +01:00			`--exclude-file=${custom.inputs.self}/modules/restic/excludes.txt \`
Add a path and tag parameter to the restic client 2022-11-02 23:17:37 +01:00			`--tag ${tag} ${path}`
rewrite the restic-server-client 2022-02-28 18:19:50 +01:00
Clean up the restic-server-client config 2022-08-17 22:22:21 +02:00			`${pkgs.restic}/bin/restic forget \`
Use the short tags again 2022-08-23 21:29:45 +02:00			`--tag home-dir \`
Encrypt restic secrets 2022-11-04 16:49:46 +01:00			`--host ${config.networking.hostName} \`
move the prune tasks into seperate services 2022-02-28 16:23:03 +01:00			`--keep-daily 7 \`
			`--keep-weekly 5 \`
			`--keep-monthly 12 \`
Clean up the restic-server-client config 2022-08-17 22:22:21 +02:00			`--keep-yearly 75`
move the prune tasks into seperate services 2022-02-28 16:23:03 +01:00			`'';`
try to add a restic config for servers 2022-01-29 15:31:42 +01:00			`};`
			`}`