Home Explore Help
Register Sign In
jhb2345
/
server
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: dadd05a339
Branches Tags
server
/
backup
/
velero_restore_new.py

velero_restore_new.py 2.5 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. import datetime
    2. 

  2. import os
    3. 

  3. import json
    4. 

  4. import subprocess
    5. 

  5. import sys
    6. 

  6. 

  7. namespaces = ["vaultwarden", "postgres"]
    8. 

  8. k3s_env = {"KUBECONFIG": "/etc/rancher/k3s/k3s.yaml"}
    9. 

  9. ntfy_topic = "https://ntfy.jibby.org/velero-restore"
    10. 

  10. ntfy_auth = os.environ["NTFY_AUTH"]
    11. 

  11. restart_deployments_in = ["vaultwarden"]
    12. 

  12. 

  13. 

  14. def main():
    15. 

  15.     if sys.version_info.major < 3 or sys.version_info.minor < 11:
    16. 

  16.         raise RuntimeError("Python 3.11 or greater required")
    17. 

  17. 

  18.     velero_str = subprocess.run(
    19. 

  19.         ["/usr/local/bin/velero", "backup", "get", "-o", "json"],
    20. 

  20.         env=k3s_env,
    21. 

  21.         check=True,
    22. 

  22.         capture_output=True,
    23. 

  23.     ).stdout
    24. 

  24. 

  25.     velero = json.loads(velero_str)
    26. 

  26. 

  27.     backups_by_timestamp = {
    28. 

  28.         backup['metadata']['creationTimestamp']: backup
    29. 

  29.         for backup in velero['items']
    30. 

  30.     }
    31. 

  31.     if not backups_by_timestamp:
    32. 

  32.         raise ValueError("no backups?")
    33. 

  33. 

  34.     newest_backup_timestamp = max(backups_by_timestamp.keys())
    35. 

  35.     one_week_ago = datetime.datetime.now(datetime.timezone.utc) - datetime.timedelta(days=7)
    36. 

  36.     if datetime.datetime.fromisoformat(newest_backup_timestamp) < one_week_ago:
    37. 

  37.         raise ValueError(f"no backups < 1 week old? {newest_backup_timestamp=}")
    38. 

  38. 

  39.     newest_backup = backups_by_timestamp[newest_backup_timestamp]
    40. 

  40.     print(f"Using newest backup {newest_backup['metadata']['name']}, taken at {newest_backup['metadata']['creationTimestamp']}")
    41. 

  41. 

  42.     # delete namespaces
    43. 

  43.     for namespace in namespaces:
    44. 

  44.         subprocess.run(
    45. 

  45.             ["/usr/local/bin/kubectl", "delete", "namespace", namespace],
    46. 

  46.             env=k3s_env,
    47. 

  47.             check=True,
    48. 

  48.         )
    49. 

  49. 

  50.     subprocess.run(
    51. 

  51.         ["/usr/local/bin/velero", "restore", "create", "--from-backup", newest_backup['metadata']['name'], "--include-namespaces", ",".join(namespaces), "--wait"],
    52. 

  52.         env=k3s_env,
    53. 

  53.         check=True,
    54. 

  54.     )
    55. 

  55. 

  56.     for namespace in restart_deployments_in:
    57. 

  57.         subprocess.run(
    58. 

  58.             ["/usr/local/bin/kubectl", "-n", namespace, "rollout", "restart", "deployment"],
    59. 

  59.             env=k3s_env,
    60. 

  60.             check=True,
    61. 

  61.         )
    62. 

  62.     ntfy_send(
    63. 

  63.         f"Successfully ran velero restore for backup {newest_backup['metadata']['name']}, "
    64. 

  64.         f"{newest_backup['metadata']['creationTimestamp']}"
    65. 

  65.     )
    66. 

  66. 

  67. def ntfy_send(data):
    68. 

  68.     # auth & payload formatting is awful in urllib. just use curl
    69. 

  69.     subprocess.run(["curl", "-u", ntfy_auth, "-d", data, ntfy_topic], check=True)
    70. 

  70. 

  71. if __name__ == '__main__':
    72. 

  72.     try:
    73. 

  73.         main()
    74. 

  74.     except Exception as e:
    75. 

  75.         ntfy_send(f"Error running velero restore: {str(e)}")
    76. 

  76.         raise
    77.