tacticalrmm/backup.sh

#!/usr/bin/env bash

SCRIPT_VERSION="32"

export DEBIAN_FRONTEND=noninteractive

GREEN='\033[0;32m'
YELLOW='\033[1;33m'
BLUE='\033[0;34m'
RED='\033[0;31m'
NC='\033[0m'

if [ $EUID -eq 0 ]; then
    echo -ne "\033[0;31mDo NOT run this script as root. Exiting.\e[0m\n"
    exit 1
fi

if [[ $* == *--schedule* ]]; then
    if ! sudo -n true 2>/dev/null; then
        echo -ne "${RED}Error: Passwordless sudo is required for scheduling.${NC}\n"
        exit 1
    fi
    
    (
        crontab -l 2>/dev/null
        echo "0 0 * * * /rmm/backup.sh --auto > /dev/null 2>&1"
    ) | crontab -

    if [ ! -d /rmmbackups ]; then
        sudo mkdir /rmmbackups
    fi

    if [ ! -d /rmmbackups/daily ]; then
        sudo mkdir /rmmbackups/daily
    fi

    if [ ! -d /rmmbackups/weekly ]; then
        sudo mkdir /rmmbackups/weekly
    fi

    if [ ! -d /rmmbackups/monthly ]; then
        sudo mkdir /rmmbackups/monthly
    fi
    sudo chown ${USER}:${USER} -R /rmmbackups

    printf >&2 "${GREEN}Backups setup to run at midnight and rotate.${NC}\n"
    exit 0
fi

if [ ! -d /rmmbackups ]; then
    sudo mkdir /rmmbackups
    sudo chown ${USER}:${USER} /rmmbackups
fi

if [ -d /meshcentral/meshcentral-backup ]; then
    rm -rf /meshcentral/meshcentral-backup/*
fi

if [ -d /meshcentral/meshcentral-backups ]; then
    rm -rf /meshcentral/meshcentral-backups/*
fi

if [ -d /meshcentral/meshcentral-coredumps ]; then
    rm -f /meshcentral/meshcentral-coredumps/*
fi

dt_now=$(date '+%Y_%m_%d__%H_%M_%S')
tmp_dir=$(mktemp -d -t tacticalrmm-XXXXXXXXXXXXXXXXXXXXX)
sysd="/etc/systemd/system"

mkdir -p ${tmp_dir}/meshcentral/mongo
mkdir ${tmp_dir}/postgres
mkdir ${tmp_dir}/certs
mkdir ${tmp_dir}/nginx
mkdir ${tmp_dir}/systemd
mkdir ${tmp_dir}/rmm
mkdir ${tmp_dir}/confd
mkdir ${tmp_dir}/opt

POSTGRES_USER=$(/rmm/api/env/bin/python /rmm/api/tacticalrmm/manage.py get_config dbuser)
POSTGRES_PW=$(/rmm/api/env/bin/python /rmm/api/tacticalrmm/manage.py get_config dbpw)

pg_dump --no-privileges --no-owner --dbname=postgresql://"${POSTGRES_USER}":"${POSTGRES_PW}"@localhost:5432/tacticalrmm | gzip -9 >${tmp_dir}/postgres/db-${dt_now}.psql.gz

node /meshcentral/node_modules/meshcentral --dbexport # for import to postgres

if grep -q postgres "/meshcentral/meshcentral-data/config.json"; then
    if ! which jq >/dev/null; then
        sudo apt-get install -y jq >/dev/null
    fi
    MESH_POSTGRES_USER=$(jq '.settings.postgres.user' /meshcentral/meshcentral-data/config.json -r)
    MESH_POSTGRES_PW=$(jq '.settings.postgres.password' /meshcentral/meshcentral-data/config.json -r)
    pg_dump --no-privileges --no-owner --dbname=postgresql://"${MESH_POSTGRES_USER}":"${MESH_POSTGRES_PW}"@localhost:5432/meshcentral | gzip -9 >${tmp_dir}/postgres/mesh-db-${dt_now}.psql.gz
else
    mongodump --gzip --out=${tmp_dir}/meshcentral/mongo
fi

tar -czvf ${tmp_dir}/meshcentral/mesh.tar.gz --exclude=/meshcentral/node_modules /meshcentral

if [ -d /etc/letsencrypt ]; then
    sudo tar -czvf ${tmp_dir}/certs/etc-letsencrypt.tar.gz -C /etc/letsencrypt .
fi

if [ -d /opt/tactical ]; then
    sudo tar -czvf ${tmp_dir}/opt/opt-tactical.tar.gz -C /opt/tactical .
fi

local_settings='/rmm/api/tacticalrmm/tacticalrmm/local_settings.py'

if grep -q CERT_FILE "$local_settings"; then
    mkdir -p ${tmp_dir}/certs/custom
    CERT_FILE=$(grep "^CERT_FILE" "$local_settings" | awk -F'[= "]' '{print $5}')
    KEY_FILE=$(grep "^KEY_FILE" "$local_settings" | awk -F'[= "]' '{print $5}')
    cp -p $CERT_FILE ${tmp_dir}/certs/custom/cert
    cp -p $KEY_FILE ${tmp_dir}/certs/custom/key
elif grep -q TRMM_INSECURE "$local_settings"; then
    mkdir -p ${tmp_dir}/certs/selfsigned
    certdir='/etc/ssl/tactical'
    cp -p ${certdir}/key.pem ${tmp_dir}/certs/selfsigned/
    cp -p ${certdir}/cert.pem ${tmp_dir}/certs/selfsigned/
fi

for i in rmm frontend meshcentral; do
    sudo cp /etc/nginx/sites-available/${i}.conf ${tmp_dir}/nginx/
done

sudo tar -czvf ${tmp_dir}/confd/etc-confd.tar.gz -C /etc/conf.d .

sudo cp ${sysd}/rmm.service ${sysd}/celery.service ${sysd}/celerybeat.service ${sysd}/meshcentral.service ${sysd}/nats.service ${sysd}/daphne.service ${sysd}/nats-api.service ${tmp_dir}/systemd/

cp $local_settings ${tmp_dir}/rmm/

if [[ $* == *--auto* ]]; then

    month_day=$(date +"%d")
    week_day=$(date +"%u")

    if [ "$month_day" -eq 10 ]; then
        tar -cf /rmmbackups/monthly/rmm-backup-${dt_now}.tar -C ${tmp_dir} .
    else
        if [ "$week_day" -eq 5 ]; then
            tar -cf /rmmbackups/weekly/rmm-backup-${dt_now}.tar -C ${tmp_dir} .
        else
            tar -cf /rmmbackups/daily/rmm-backup-${dt_now}.tar -C ${tmp_dir} .
        fi
    fi

    rm -rf ${tmp_dir}

    find /rmmbackups/daily/ -type f -mtime +14 -name '*.tar' -execdir rm -- '{}' \;
    find /rmmbackups/weekly/ -type f -mtime +60 -name '*.tar' -execdir rm -- '{}' \;
    find /rmmbackups/monthly/ -type f -mtime +380 -name '*.tar' -execdir rm -- '{}' \;
    echo -ne "${GREEN}Backup Completed${NC}\n"
    exit

else
    tar -cf /rmmbackups/rmm-backup-${dt_now}.tar -C ${tmp_dir} .
    rm -rf ${tmp_dir}

    echo -ne "${GREEN}Backup saved to /rmmbackups/rmm-backup-${dt_now}.tar${NC}\n"
fi
Generify shell script interpreters. 2022-06-15 20:04:58 +00:00			`#!/usr/bin/env bash`
add backup script 2020-07-17 05:02:25 +00:00
Update backup.sh 2024-04-02 15:59:48 +00:00			`SCRIPT_VERSION="32"`
fix backup/restore 2020-10-18 23:45:21 +00:00
add noninteractive 2024-04-25 22:03:22 +00:00			`export DEBIAN_FRONTEND=noninteractive`

fix backup/restore 2020-10-18 23:45:21 +00:00			`GREEN='\033[0;32m'`
			`YELLOW='\033[1;33m'`
			`BLUE='\033[0;34m'`
			`RED='\033[0;31m'`
			`NC='\033[0m'`
remove natsapi from normal install 2021-03-27 20:00:47 +00:00
Update backup.sh 2023-05-11 18:45:41 +00:00			`if [ $EUID -eq 0 ]; then`
			`echo -ne "\033[0;31mDo NOT run this script as root. Exiting.\e[0m\n"`
			`exit 1`
			`fi`

Update backup.sh 2022-12-31 23:25:46 +00:00			`if [[ $* == --schedule ]]; then`
Update backup.sh 2024-04-02 15:59:48 +00:00			`if ! sudo -n true 2>/dev/null; then`
			`echo -ne "${RED}Error: Passwordless sudo is required for scheduling.${NC}\n"`
			`exit 1`
			`fi`

fix formatting 2023-03-21 05:57:24 +00:00			`(`
			`crontab -l 2>/dev/null`
syntax fix [skip ci] 2023-08-11 23:05:14 +00:00			`echo "0 0 * * * /rmm/backup.sh --auto > /dev/null 2>&1"`
fix formatting 2023-03-21 05:57:24 +00:00			`) \| crontab -`
arm64/deb12/ubuntu22 support, remove mongo, postgres 15 and node 18 2023-07-04 08:53:06 +00:00
			`if [ ! -d /rmmbackups ]; then`
Update backup.sh 2023-05-11 18:58:29 +00:00			`sudo mkdir /rmmbackups`
			`fi`
arm64/deb12/ubuntu22 support, remove mongo, postgres 15 and node 18 2023-07-04 08:53:06 +00:00
Update backup.sh 2023-05-11 18:58:29 +00:00			`if [ ! -d /rmmbackups/daily ]; then`
Update backup.sh 2023-05-11 18:54:07 +00:00			`sudo mkdir /rmmbackups/daily`
			`fi`

			`if [ ! -d /rmmbackups/weekly ]; then`
			`sudo mkdir /rmmbackups/weekly`
			`fi`

			`if [ ! -d /rmmbackups/monthly ]; then`
			`sudo mkdir /rmmbackups/monthly`
			`fi`
Update backup.sh 2023-05-11 19:00:49 +00:00			`sudo chown ${USER}:${USER} -R /rmmbackups`
arm64/deb12/ubuntu22 support, remove mongo, postgres 15 and node 18 2023-07-04 08:53:06 +00:00
fix formatting 2023-03-21 05:57:24 +00:00			`printf >&2 "${GREEN}Backups setup to run at midnight and rotate.${NC}\n"`
remove overwrite backup script #1363 [skip ci] 2023-03-21 18:42:25 +00:00			`exit 0`
Update backup.sh 2022-12-31 23:25:46 +00:00			`fi`

add backup script 2020-07-17 05:02:25 +00:00			`if [ ! -d /rmmbackups ]; then`
			`sudo mkdir /rmmbackups`
			`sudo chown ${USER}:${USER} /rmmbackups`
			`fi`

update scripts and bump version 2020-11-26 03:42:27 +00:00			`if [ -d /meshcentral/meshcentral-backup ]; then`
fix backup 2021-02-06 00:38:29 +00:00			`rm -rf /meshcentral/meshcentral-backup/*`
update scripts and bump version 2020-11-26 03:42:27 +00:00			`fi`

handle new dir 2023-07-07 03:59:48 +00:00			`if [ -d /meshcentral/meshcentral-backups ]; then`
			`rm -rf /meshcentral/meshcentral-backups/*`
			`fi`

update scripts and bump version 2020-11-26 03:42:27 +00:00			`if [ -d /meshcentral/meshcentral-coredumps ]; then`
			`rm -f /meshcentral/meshcentral-coredumps/*`
			`fi`

add backup script 2020-07-17 05:02:25 +00:00			`dt_now=$(date '+%Y_%m_%d__%H_%M_%S')`
			`tmp_dir=$(mktemp -d -t tacticalrmm-XXXXXXXXXXXXXXXXXXXXX)`
			`sysd="/etc/systemd/system"`

			`mkdir -p ${tmp_dir}/meshcentral/mongo`
			`mkdir ${tmp_dir}/postgres`
			`mkdir ${tmp_dir}/certs`
			`mkdir ${tmp_dir}/nginx`
			`mkdir ${tmp_dir}/systemd`
			`mkdir ${tmp_dir}/rmm`
add new celery service to backup script 2020-09-10 17:09:26 +00:00			`mkdir ${tmp_dir}/confd`
add assets 2023-10-20 20:25:43 +00:00			`mkdir ${tmp_dir}/opt`
add backup script 2020-07-17 05:02:25 +00:00
fix backup/restore when OS are different 2022-12-01 06:33:27 +00:00			`POSTGRES_USER=$(/rmm/api/env/bin/python /rmm/api/tacticalrmm/manage.py get_config dbuser)`
			`POSTGRES_PW=$(/rmm/api/env/bin/python /rmm/api/tacticalrmm/manage.py get_config dbpw)`
add backup script 2020-07-17 05:02:25 +00:00
no-owner for pg_dump 2024-04-19 20:36:11 +00:00			`pg_dump --no-privileges --no-owner --dbname=postgresql://"${POSTGRES_USER}":"${POSTGRES_PW}"@localhost:5432/tacticalrmm \| gzip -9 >${tmp_dir}/postgres/db-${dt_now}.psql.gz`
add backup script 2020-07-17 05:02:25 +00:00
arm64/deb12/ubuntu22 support, remove mongo, postgres 15 and node 18 2023-07-04 08:53:06 +00:00			`node /meshcentral/node_modules/meshcentral --dbexport # for import to postgres`
Update backup.sh 2023-01-01 01:06:41 +00:00
			`if grep -q postgres "/meshcentral/meshcentral-data/config.json"; then`
fix formatting 2023-03-21 05:57:24 +00:00			`if ! which jq >/dev/null; then`
syntax fix [skip ci] 2023-08-11 23:05:14 +00:00			`sudo apt-get install -y jq >/dev/null`
fix formatting 2023-03-21 05:57:24 +00:00			`fi`
			`MESH_POSTGRES_USER=$(jq '.settings.postgres.user' /meshcentral/meshcentral-data/config.json -r)`
			`MESH_POSTGRES_PW=$(jq '.settings.postgres.password' /meshcentral/meshcentral-data/config.json -r)`
no-owner for pg_dump 2024-04-19 20:36:11 +00:00			`pg_dump --no-privileges --no-owner --dbname=postgresql://"${MESH_POSTGRES_USER}":"${MESH_POSTGRES_PW}"@localhost:5432/meshcentral \| gzip -9 >${tmp_dir}/postgres/mesh-db-${dt_now}.psql.gz`
Update backup.sh 2023-01-01 01:06:41 +00:00			`else`
fix formatting 2023-03-21 05:57:24 +00:00			`mongodump --gzip --out=${tmp_dir}/meshcentral/mongo`
Update backup.sh 2023-01-01 01:06:41 +00:00			`fi`
add backup script 2020-07-17 05:02:25 +00:00
arm64/deb12/ubuntu22 support, remove mongo, postgres 15 and node 18 2023-07-04 08:53:06 +00:00			`tar -czvf ${tmp_dir}/meshcentral/mesh.tar.gz --exclude=/meshcentral/node_modules /meshcentral`

handle custom certs in backup/restore 2023-07-30 07:14:44 +00:00			`if [ -d /etc/letsencrypt ]; then`
			`sudo tar -czvf ${tmp_dir}/certs/etc-letsencrypt.tar.gz -C /etc/letsencrypt .`
			`fi`

add assets 2023-10-20 20:25:43 +00:00			`if [ -d /opt/tactical ]; then`
			`sudo tar -czvf ${tmp_dir}/opt/opt-tactical.tar.gz -C /opt/tactical .`
			`fi`

handle custom certs in backup/restore 2023-07-30 07:14:44 +00:00			`local_settings='/rmm/api/tacticalrmm/tacticalrmm/local_settings.py'`

			`if grep -q CERT_FILE "$local_settings"; then`
			`mkdir -p ${tmp_dir}/certs/custom`
			`CERT_FILE=$(grep "^CERT_FILE" "$local_settings" \| awk -F'[= "]' '{print $5}')`
			`KEY_FILE=$(grep "^KEY_FILE" "$local_settings" \| awk -F'[= "]' '{print $5}')`
			`cp -p $CERT_FILE ${tmp_dir}/certs/custom/cert`
			`cp -p $KEY_FILE ${tmp_dir}/certs/custom/key`
update scripts for self signed 2023-08-29 23:53:19 +00:00			`elif grep -q TRMM_INSECURE "$local_settings"; then`
			`mkdir -p ${tmp_dir}/certs/selfsigned`
			`certdir='/etc/ssl/tactical'`
			`cp -p ${certdir}/key.pem ${tmp_dir}/certs/selfsigned/`
			`cp -p ${certdir}/cert.pem ${tmp_dir}/certs/selfsigned/`
handle custom certs in backup/restore 2023-07-30 07:14:44 +00:00			`fi`
add backup script 2020-07-17 05:02:25 +00:00
fix backup/restore when OS are different 2022-12-01 06:33:27 +00:00			`for i in rmm frontend meshcentral; do`
			`sudo cp /etc/nginx/sites-available/${i}.conf ${tmp_dir}/nginx/`
			`done`
add backup script 2020-07-17 05:02:25 +00:00
add new celery service to backup script 2020-09-10 17:09:26 +00:00			`sudo tar -czvf ${tmp_dir}/confd/etc-confd.tar.gz -C /etc/conf.d .`

fix backup/restore when OS are different 2022-12-01 06:33:27 +00:00			`sudo cp ${sysd}/rmm.service ${sysd}/celery.service ${sysd}/celerybeat.service ${sysd}/meshcentral.service ${sysd}/nats.service ${sysd}/daphne.service ${sysd}/nats-api.service ${tmp_dir}/systemd/`
add backup script 2020-07-17 05:02:25 +00:00
handle custom certs in backup/restore 2023-07-30 07:14:44 +00:00			`cp $local_settings ${tmp_dir}/rmm/`
add backup script 2020-07-17 05:02:25 +00:00
Update backup.sh 2022-12-31 23:41:32 +00:00			`if [[ $* == --auto ]]; then`

fix formatting 2023-03-21 05:57:24 +00:00			`month_day=$(date +"%d")`
			`week_day=$(date +"%u")`

			`if [ "$month_day" -eq 10 ]; then`
			`tar -cf /rmmbackups/monthly/rmm-backup-${dt_now}.tar -C ${tmp_dir} .`
			`else`
			`if [ "$week_day" -eq 5 ]; then`
			`tar -cf /rmmbackups/weekly/rmm-backup-${dt_now}.tar -C ${tmp_dir} .`
			`else`
			`tar -cf /rmmbackups/daily/rmm-backup-${dt_now}.tar -C ${tmp_dir} .`
			`fi`
			`fi`
add backup script 2020-07-17 05:02:25 +00:00
fix formatting 2023-03-21 05:57:24 +00:00			`rm -rf ${tmp_dir}`
add backup/restore scripts with instructions 2020-10-17 04:41:47 +00:00
Update backup.sh 2023-07-05 21:38:30 +00:00			`find /rmmbackups/daily/ -type f -mtime +14 -name '*.tar' -execdir rm -- '{}' \;`
			`find /rmmbackups/weekly/ -type f -mtime +60 -name '*.tar' -execdir rm -- '{}' \;`
			`find /rmmbackups/monthly/ -type f -mtime +380 -name '*.tar' -execdir rm -- '{}' \;`
fix formatting 2023-03-21 05:57:24 +00:00			`echo -ne "${GREEN}Backup Completed${NC}\n"`
			`exit`
Update backup.sh 2022-12-31 23:41:32 +00:00
			`else`
			`tar -cf /rmmbackups/rmm-backup-${dt_now}.tar -C ${tmp_dir} .`
fix tempdir cleanup [skip ci] 2023-09-13 20:29:33 +00:00			`rm -rf ${tmp_dir}`
Update backup.sh 2022-12-31 23:25:46 +00:00
fix formatting 2023-03-21 05:57:24 +00:00			`echo -ne "${GREEN}Backup saved to /rmmbackups/rmm-backup-${dt_now}.tar${NC}\n"`
Update backup.sh 2022-12-31 23:41:32 +00:00			`fi`