Home Explore Help
Register Sign In
cisti
/
infra
4
0
Fork 1
Files Issues 0 Pull Requests 0
Tree: ebeaf6f533
Branches Tags
infra
/
roles
/
stable
/
restic
/
tasks
/
main.yml

main.yml 1.9 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. ---
    2. 

  2. - name: Check if restic is installed
    3. 

  3.   stat:
    4. 

  4.     path: '{{ restic_path }}'
    5. 

  5.   register: restic_binary
    6. 

  6. 

  7. - include_tasks: install.yml
    8. 

  8.   when: not restic_binary.stat.exists or restic_install
    9. 

  9. 

  10.   # TODO: check if exists?
    11. 

  11. - name: Overwrite SSH config for backup server
    12. 

  12.   become: yes
    13. 

  13.   template:
    14. 

  14.     src: ssh_config.j2
    15. 

  15.     dest: '{{ restic_user_home }}/.ssh/config'
    16. 

  16.     owner: root
    17. 

  17.     group: root
    18. 

  18.     mode: '0600'
    19. 

  19.   when: restic_ssh_enabled
    20. 

  20. 

  21. - name: Add SSH private key
    22. 

  22.   become: yes
    23. 

  23.   template:
    24. 

  24.     src: ssh_private_key.j2
    25. 

  25.     dest: '{{ restic_ssh_private_key_path }}'
    26. 

  26.     mode: '0600'
    27. 

  27.   when: restic_ssh_private_key is defined and restic_ssh_enabled
    28. 

  28. 

  29. - name: Add restic_env in home folder
    30. 

  30.   become: yes
    31. 

  31.   template:
    32. 

  32.     src: restic_env.j2
    33. 

  33.     dest: '{{ restic_user_home }}/.restic_env'
    34. 

  34.     owner: root
    35. 

  35.     group: root
    36. 

  36.     mode: '0600'
    37. 

  37. 

  38. - name: Add systemd service for restic
    39. 

  39.   become: yes
    40. 

  40.   template:
    41. 

  41.     src: restic-backup.service.j2
    42. 

  42.     dest: /etc/systemd/system/restic-backup.service
    43. 

  43.     mode: '0644'
    44. 

  44.   vars:
    45. 

  45.     restic_folders_combined: '{{ restic_default_folders + restic_folders }}'
    46. 

  46.   notify: systemd reload
    47. 

  47. 

  48. - name: Add systemd timer for restic
    49. 

  49.   become: yes
    50. 

  50.   template:
    51. 

  51.     src: restic-backup.timer.j2
    52. 

  52.     dest: /etc/systemd/system/restic-backup.timer
    53. 

  53.     mode: '0644'
    54. 

  54.   notify: systemd reload
    55. 

  55. 

  56. - name: Enable and start restic timer
    57. 

  57.   become: yes
    58. 

  58.   systemd:
    59. 

  59.     name: restic-backup.timer
    60. 

  60.     enabled: true
    61. 

  61.     state: started
    62. 

  62. 

  63. - name: Initialize restic repo if needed
    64. 

  64.   become: yes
    65. 

  65.   command: "{{restic_path}} init"
    66. 

  66.   environment:
    67. 

  67.     RESTIC_REPOSITORY: "sftp:{{ restic_ssh_host }}:{{ restic_repository_name }}"
    68. 

  68.     RESTIC_PASSWORD: "{{restic_password}}"
    69. 

  69.   no_log: true
    70. 

  70.   register: restic_init
    71. 

  71.   changed_when: "'created restic repository' in restic_init.stdout"
    72. 

  72.   failed_when:
    73. 

  73.     - restic_init.rc != 0
    74. 

  74.     - not 'config file already exists' in restic_init.stderr
    75. 

  75.     - not 'config already initialized' in restic_init.stderr
    76. 

  76.     - not 'config already exists' in restic_init.stderr
    77.