Skip to content
This repository has been archived by the owner on Sep 4, 2021. It is now read-only.

Backup system #1244

Closed
titanous opened this issue Mar 13, 2015 · 4 comments
Closed

Backup system #1244

titanous opened this issue Mar 13, 2015 · 4 comments
Assignees
@titanous
Labels
kind/enhancement

Comments

@titanous
Copy link
Contributor

Currently we have a basic backup command that pulls a logical backup of a postgres db using the flynn CLI, but we should have a more robust system.

Some things to think about:

  • WAL logs allow point-in-time-recovery, which would be nice (see: WAL-E).
  • Not all environments have a blobstore like S3 available, support for some of NFS/CIFS/FTP/SCP, etc. would be useful.
  • Scheduling of backups.
  • Encryption is necessary for storing data on external systems.
  • The system should be generic enough to handle other data appliances.
@temujin9 temujin9 mentioned this issue Apr 22, 2015
Closed
@KernCheh
Copy link

KernCheh commented Jun 8, 2015

👍 Would love to see the scheduled backups feature :)

@titanous titanous added the P1 label Oct 15, 2015
@titanous titanous self-assigned this Oct 30, 2015
@titanous titanous mentioned this issue Nov 2, 2015
Merged
@philiplb
Copy link
Contributor

philiplb commented Nov 3, 2015

May I throw in Amazon S3 as backup storage? This would be exactly what I would love to use here. :)

@titanous titanous removed the P1 label Nov 4, 2015
@titanous titanous mentioned this issue Jul 25, 2016
Closed
10 tasks
@titanous titanous mentioned this issue Jan 19, 2017
Closed
@onnimonni
Copy link
Contributor

I'm developing a solution for this which would just encrypt the results of $ flynn cluster backup and throw them to s3. If the spec later sounds okay I will create PR later into flynn. This doesn't implement everything but it would be a start.

Implementation

The backup process is called backy and it will implement the same style envs as blobstore:

$ flynn -a backy env
BACKEND_S3MAIN=backend=s3 region=eu-west-1 bucket=flynn-backup access_key_id=XXXXXX secret_access_key=YYYYYYYYY
DEFAULT_BACKEND=s3main
BACKUP_SCHEDULE='* */8 * * *'
BACKUP_ENCRYPTION=type=symmetric symmetric=ZZZZZZZZZZZ

BACKUP_SCHEDULE will use cron time format.
BACKUP_ENCRYPTION is one of none, symmetric, public-key. And it needs to include either symmetric or private_key parameter
BACKUP_ADMINS is the list of extra gpg public keys which can open the backup when public-key option is used.

I would recommend us to use same permissions as in https://flynn.io/docs/production#amazon-s3 but without "s3:DeleteObject" permission. This way the process can only read and write backups but not delete them. This helps if the cluster gets hacked so backups won't have to be compromised.

We can add versioning and expiration into the requirements so that backups will get deleted automatically eventually. User needs to set these details in the bucket.

Only s3 implements this append-only permission so I wouldn't recommend Google or Azure for now but they will get implemented too.

I will use gpg from https://github.com/maxwellhealth/go-gpg for encryption. Symmetric key (password) will be the default option but list of sysadmin public gpg keys can be used too.

I hoping to use the storage functions from blobstore:

import (
       ...
	"github.com/flynn/flynn/blobstore/backend"
)

@titanous titanous mentioned this issue Mar 9, 2017
Closed
@titanous
Copy link
Contributor Author

Flynn is unmaintained and our infrastructure will shut down on June 1, 2021. See the README for details.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@titanous titanous

Labels
kind/enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@titanous @philiplb @onnimonni @KernCheh