commit 5b0ea759a7ad6fe745391e2d3a041f26417a8fcb · pyrox.dev/nixpkgs

+11 -7

nixos/modules/services/security/vaultwarden/backup.sh

···

       1
       1
        
       #!/usr/bin/env bash

     

       2
       2
        
       

     

       3
       3
       +
       # Allow use of !() when copying to not copy certain files

     

       4
       4
       +
       shopt -s extglob

     

       5
       5
       +
       

     

       3
       6
        
       # Based on: https://github.com/dani-garcia/vaultwarden/wiki/Backing-up-your-vault

     

       4
       7
        
       if [ ! -d "$BACKUP_FOLDER" ]; then

     

       5
       8
        
         echo "Backup folder '$BACKUP_FOLDER' does not exist" >&2

     

       6
       9
        
         exit 1

     

       7
       10
        
       fi

     

       8
       11
        
       

     

       9
       9
       -
       if [[ ! -f "$DATA_FOLDER"/db.sqlite3 ]]; then

     

       10
       10
       -
         echo "Could not find SQLite database file '$DATA_FOLDER/db.sqlite3'" >&2

     

       11
       11
       -
         exit 1

     

       12
       12
       +
       if [[ -f "$DATA_FOLDER"/db.sqlite3 ]]; then

     

       13
       13
       +
         sqlite3 "$DATA_FOLDER"/db.sqlite3 ".backup '$BACKUP_FOLDER/db.sqlite3'"

     

       12
       14
        
       fi

     

       13
       15
        
       

     

       14
       14
       -
       sqlite3 "$DATA_FOLDER"/db.sqlite3 ".backup '$BACKUP_FOLDER/db.sqlite3'"

     

       15
       15
       -
       cp "$DATA_FOLDER"/rsa_key.{der,pem,pub.der} "$BACKUP_FOLDER"

     

       16
       16
       -
       cp -r "$DATA_FOLDER"/attachments "$BACKUP_FOLDER"

     

       17
       17
       -
       cp -r "$DATA_FOLDER"/icon_cache "$BACKUP_FOLDER"

     

       16
       16
       +
       if [ ! -d "$DATA_FOLDER" ]; then

     

       17
       17
       +
         echo "No data folder (yet). This will happen on first launch if backup is triggered before vaultwarden has started."

     

       18
       18
       +
         exit 0

     

       19
       19
       +
       fi

     

       20
       20
       +
       

     

       21
       21
       +
       cp -r "$DATA_FOLDER"/!(db.*) "$BACKUP_FOLDER"/

nixos/tests/vaultwarden.nix

···

       208
       208
        
                 server.succeed('[ -d "/var/lib/vaultwarden/backups" ]')

     

       209
       209
        
                 server.succeed('[ -f "/var/lib/vaultwarden/backups/db.sqlite3" ]')

     

       210
       210
        
                 server.succeed('[ -d "/var/lib/vaultwarden/backups/attachments" ]')

     

       211
       211
       +
                 server.succeed('[ -f "/var/lib/vaultwarden/backups/rsa_key.pem" ]')

     

       212
       212
       +
                 server.succeed('[ -f "/var/lib/vaultwarden/backups/rsa_key.pub.pem" ]')

     

       213
       213
       +
                 # Ensure only the db backed up with the backup command exists and not the other db files.

     

       214
       214
       +
                 server.succeed('[ ! -f "/var/lib/vaultwarden/backups/db.sqlite3-shm" ]')

     

       211
       215
        
           '';

     

       212
       216
        
         };

     

       213
       217
        
       }