nixfiles/hosts/hetzner-arm/containers/vault/profiles/restic.nix

{
  self,
  config,
  ...
}: let
  backupSchedules = import "${self}/data/backupSchedules.nix";
  inherit (config.services.secrets) secrets;
in {
  services.restic.backups.vault = {
    user = "root";
    paths = [
      "/var/lib/vault"
      "/var/lib/private/step-ca"
    ];
    timerConfig = backupSchedules.restic.high;

    repository = "s3:s3.eu-central-003.backblazeb2.com/Chaos-Backups/Restic/Vault";
    passwordFile = "${secrets.restic_password.path}";
    environmentFile = "${secrets.restic_env.path}";
    createWrapper = true;
  };
}
migrate away from hetzner storagebox and get rid of some gaming and media stuff 2024-07-06 17:20:28 +01:00			`{`
			`self,`
			`config,`
			`...`
			`}: let`
			`backupSchedules = import "${self}/data/backupSchedules.nix";`
			`inherit (config.services.secrets) secrets;`
			`in {`
			`services.restic.backups.vault = {`
			`user = "root";`
			`paths = [`
			`"/var/lib/vault"`
			`"/var/lib/private/step-ca"`
			`];`
			`timerConfig = backupSchedules.restic.high;`

			`repository = "s3:s3.eu-central-003.backblazeb2.com/Chaos-Backups/Restic/Vault";`
			`passwordFile = "${secrets.restic_password.path}";`
			`environmentFile = "${secrets.restic_env.path}";`
			`createWrapper = true;`
			`};`
			`}`