Majic Projects ~ [CLOSED] MAR-44 - Roles for setting-up backup server/client

Majic Projects

Majic Ansible Roles

Projects
Wiki
- Quick links
- Wiki
- Project wikis
- Conntrackt
- Django Pydenticon
- Gimmecert
- Majic Ansible Roles
- Pydenticon
- Scripts
- Global content

You are not logged in

Majic Ansible Roles / Closed Feature request MAR-44 Roles for setting-up backup server/client

Votes

This issue has been closed with status "Closed" and resolution "RESOLVED".

- No additional actions available

Issue basics

Type of issue

Feature request Unknown issue type
Issue label

No label set
Category

Not determined
Targetted for

1.0.0 Not determined
Status

Closed

Status not determined
Progress
Priority

Not determined

Affected by this issue (0)

There are no items

People involved

Posted by
branko (@branko)

Branko Majic
@branko

Last seen online at Apr 24, 2024 - 20:11

Show user details
Owned by

Not owned by anyone
Assigned to
branko (@branko)

Branko Majic
@branko

Last seen online at Apr 24, 2024 - 20:11

Show user details
Not assigned to anyone
Subscribers

0 subscriber(s)

Click here to show the list of subscribers

Times and dates

Posted at

Oct 31, 2015
Last updated

Jan 20, 2016
Estimated time

1 week Not estimated
Time spent

1 week No time spent

Click here to see time logged against this issue

Issue details

Resolution

RESOLVED Not determined
Reproducability

Not determined
Severity

Not determined

Attachments (0)

There is nothing attached to this issue

Child issues (0)

This issue does not have any child issues

Duplicate issues (0)

This issue does not have any duplicates

Show / hide more details »

Description

In order to have properly functioning infrastructure, it would be useful to have a proper set of roles for managing the backup servers and clients.

The solution should be based on Duplicity (http://duplicity.nongnu.org/) and Duply (http://duply.net/) - as convenient wrapper around duplicity.

There are two roles that should be implemented:
* backup_server
* backup_client

The '''backup_server''' role should be implemented as follows:
* Deploy Duplicity and Duply.
* Create users, based on a list servers, that will be allowed to backup to the server.
* Set-up authorized_keys for the backup users. Public keys should be provided locally.
* The backup users should be allowed sftp only, and should also be confined via chroot.

The '''backup_client''' role should be implemented as follows:
* Deploy Duplicity and Duply.
* Deploy a private key for logging-in into the backup server.
* Configure Duply, having it read exclude patterns from a single file.
* Design it so that exclude pattern file should be constructed using assemble module. Roles that want to create backups can simply deploy their exclude pattern file in this directory. Handler should be provided for reassembling this file.
* known_hosts should be populated appropriately from Ansible facts (check how) so the backups could be run automatically. This should be put into global known_hosts file.
* Configures cron-job for running backups (make this configurable).

Todos (0 / 0)

Options

Issue created

Welcome to The Bug Genie

Log in with your username and password