hitechnix
diff --git a/‎.env.example
+15 b/‎.env.example
+15
diff --git a/‎.gitattributes
+9 b/‎.gitattributes
+9
diff --git a/‎.github/workflows/.github-ci.yml
+45 b/‎.github/workflows/.github-ci.yml
+45
diff --git a/‎.gitignore
+76 b/‎.gitignore
+76
diff --git a/‎Dockerfile
+31 b/‎Dockerfile
+31
diff --git a/‎LICENSE
+23 b/‎LICENSE
+23
diff --git a/‎README.md
+179 b/‎README.md
+179
@@ -0,0 +1,15 @@
+# Postgres
+POSTGRES_DATABASE=database
+POSTGRES_USER=user
+POSTGRES_PASSWORD=password
+
+# Backup
+SCHEDULE=@weekly
+BACKUP_KEEP_DAYS=7
+PASSPHRASE=wxHw26GJZQBDenA8
+S3_REGION=us-east-1
+S3_BUCKET=my-s3-bucket
+S3_PREFIX=prefix
+S3_ACCESS_KEY_ID=AKIA3M3ZKBJPQUBT2UK6
+S3_SECRET_ACCESS_KEY=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
+POSTGRES_HOST=postgres
@@ -0,0 +1,9 @@
+* text=auto
+*.sh text eol=lf
+
+/.gitattributes  export-ignore
+/.github         export-ignore
+/.gitignore      export-ignore
+/CHANGELOG.md    export-ignore
+/README.md       export-ignore
+/tests           export-ignore
@@ -0,0 +1,45 @@
+name: Docker Image CI
+
+on:
+  push:
+    branches:
+      - main
+
+jobs:
+  docker-build-release:
+    runs-on: ubuntu-latest
+
+    strategy:
+      matrix:
+        include:
+          - { postgres: 14, alpine: '3.16' }
+          - { postgres: 15, alpine: '3.17' }
+          - { postgres: 16, alpine: '3.19' }
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Setup QEMU
+        uses: docker/setup-qemu-action@v3
+
+      - name: Setup Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Login to Dockerhub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ secrets.CI_REGISTRY_USER }}
+          password: ${{ secrets.CI_REGISTRY_TOKEN }}
+
+      - name: Builds and pushes Docker image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          platforms: linux/amd64,linux/arm64
+          push: true
+          tags: ${{ secrets.DOCKER_IMAGE }}:${{ matrix.postgres }}
+          build-args: |
+            ALPINE_VERSION=${{ matrix.alpine }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
@@ -0,0 +1,76 @@
+### PhpStorm ###
+# Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio and Webstorm
+# Reference: https://intellij-support.jetbrains.com/hc/en-us/articles/206544839
+
+# User-specific stuff:
+.idea/**/tasks.xml
+.idea/**/workspace.xml
+
+# Sensitive or high-churn files:
+.idea/**/dataSources.ids
+.idea/**/dataSources.local.xml
+.idea/**/dataSources.xml
+.idea/**/dataSources/
+.idea/**/dynamic.xml
+.idea/**/sqlDataSources.xml
+.idea/**/uiDesigner.xml
+
+# Gradle:
+.idea/**/gradle.xml
+.idea/**/libraries
+
+# Mongo Explorer plugin:
+.idea/**/mongoSettings.xml
+
+## File-based project format:
+*.iws
+
+# mpeltonen/sbt-idea plugin
+.idea_modules/
+
+# JIRA plugin
+atlassian-ide-plugin.xml
+
+# Crashlytics plugin (for Android Studio and IntelliJ)
+com_crashlytics_export_strings.xml
+crashlytics-build.properties
+crashlytics.properties
+fabric.properties
+
+### MacOS System Files ###
+# Covers: MacOS
+# Reference: https://github.com/github/gitignore/blob/master/Global/macOS.gitignore
+
+# General
+.AppleDouble
+.DS_Store
+.idea
+.LSOverride
+
+# Icon must end with two \r
+Icon
+
+# Thumbnails
+._*
+
+# Files that might appear in the root of a volume
+.com.apple.timemachine.donotpresent
+.DocumentRevisions-V100
+.fseventsd
+.Spotlight-V100
+.TemporaryItems
+.Trashes
+.VolumeIcon.icns
+
+# Directories potentially created on remote AFP share
+.apdisk
+.AppleDB
+.AppleDesktop
+Network Trash Folder
+Temporary Items
+
+# Directories SSL
+.well-known
+
+# Environment's params
+.env
@@ -0,0 +1,31 @@
+FROM alpine:3
+LABEL maintainer="Hi-Technix, Inc. <[email protected]>"
+
+ARG TARGETARCH
+
+COPY ./src/install.sh install.sh
+RUN sh install.sh && rm install.sh
+
+ENV POSTGRES_DATABASE ''
+ENV POSTGRES_HOST ''
+ENV POSTGRES_PORT 5432
+ENV POSTGRES_USER ''
+ENV POSTGRES_PASSWORD ''
+ENV PGDUMP_EXTRA_OPTS ''
+ENV S3_ACCESS_KEY_ID ''
+ENV S3_SECRET_ACCESS_KEY ''
+ENV S3_BUCKET ''
+ENV S3_REGION 'us-west-1'
+ENV S3_PATH 'backup'
+ENV S3_ENDPOINT ''
+ENV S3_S3V4 'no'
+ENV SCHEDULE ''
+ENV PASSPHRASE ''
+ENV BACKUP_KEEP_DAYS ''
+
+COPY ./src/run.sh run.sh
+COPY ./src/env.sh env.sh
+COPY ./src/backup.sh backup.sh
+COPY ./src/restore.sh restore.sh
+
+CMD ["sh", "run.sh"]
@@ -0,0 +1,23 @@
+The BSD 3-Clause License
+Copyright (c) 2023, Hi-Technix, Inc.
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification, are permitted provided that the
+following conditions are met:
+
+Redistributions of source code must retain the above copyright notice, this list of conditions and the following
+disclaimer.
+
+Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following
+disclaimer in the documentation and/or other materials provided with the distribution.
+
+Neither the name of Hi-Technix, Inc. and its libraries nor the names of its contributors may be used to endorse or
+promote products derived from this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES,
+INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
+DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
+SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
+WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
+THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
@@ -0,0 +1,179 @@
+# PostgreSQL backup to AWS S3
+
+This project provides Docker images to periodically back up a PostgreSQL database to AWS S3, and to restore from the
+backup as needed.
+
+### 📦 Requirements
+
+The Docker & Docker Compose system requirements are Linux Ubuntu as the OS (other operating systems are supported as
+well), an absolute minimum 512MB RAM (2GB recommended)
+
+In order to install docker Ubuntu, you will need to meet the following requirements:
+
+- OS: Linux Ubuntu
+- Memory: 512MB RAM (2GB Recommended)
+- Disk: Sufficient amount to run the Docker containers you wish to use
+- CPU: Dependant on the applications you wish to run in the containers
+
+### 📋 Features
+
+- Images are tagged by the major Postgres version supported: `14`, `15` or `16`.
+- The `SCHEDULE` variable determines backup frequency. See go-cron schedules
+  documentation [here](http://godoc.org/github.com/robfig/cron#hdr-Predefined_schedules). Omit to run the backup
+  immediately and then exit.
+- If `PASSPHRASE` is provided, the backup will be encrypted using GPG.
+- Run `docker exec <container name> sh backup.sh` to trigger a backup ad-hoc.
+- If `BACKUP_KEEP_DAYS` is set, backups older than this many days will be deleted from S3.
+- Set `S3_ENDPOINT` if you're using a non-AWS S3-compatible storage provider.
+
+### 🔧 Installation
+
+1. Install Docker and Docker-Compose
+
+- [Docker Install documentation](https://docs.docker.com/install/)
+- [Docker-Compose Install documentation](https://docs.docker.com/compose/install/)
+
+2. Bring up your stack by running
+
+```shell
+git clone https://github.com/hitechnix/postgres-backup.git \
+    && cd postgres-backup \
+    && cp .env.example .env
+```
+
+3. Edit environment variable
+
+```dotenv
+# Postgres
+POSTGRES_DATABASE=database
+POSTGRES_USER=user
+POSTGRES_PASSWORD=password
+
+# Backup
+SCHEDULE=@weekly
+BACKUP_KEEP_DAYS=7
+PASSPHRASE=wxHw26GJZQBDenA8
+S3_REGION=us-east-1
+S3_BUCKET=my-s3-bucket
+S3_PREFIX=prefix
+S3_ACCESS_KEY_ID=AKIA3M3ZKBJPQUBT2UK6
+S3_SECRET_ACCESS_KEY=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
+POSTGRES_HOST=postgres
+```
+
+4. Start PostgreSQL backup to AWS S3
+
+```shell
+docker-compose up -d
+```
+
+### 📝 Usage
+
+Example `docker-compose.yml`
+
+```yaml
+version: "3.9"
+
+services:
+  postgres:
+    container_name: postgres
+    restart: unless-stopped
+    image: postgres:16
+    environment:
+      - POSTGRES_DATABASE=${POSTGRES_DATABASE:-database}
+      - POSTGRES_USER=${POSTGRES_USER:-user}
+      - POSTGRES_PASSWORD=${POSTGRES_PASSWORD:-password}
+    networks:
+      - network-bridge
+
+  backup:
+    container_name: postgres-backup
+    restart: unless-stopped
+    image: hitechnix/postgres-backup:16
+    environment:
+      - SCHEDULE=${SCHEDULE:-@weekly}
+      - BACKUP_KEEP_DAYS=${BACKUP_KEEP_DAYS:-7}
+      - PASSPHRASE=${PASSPHRASE:-passphrase}
+      - S3_REGION=${S3_REGION:-region}
+      - S3_BUCKET=${S3_BUCKET:-bucket}
+      - S3_PREFIX=${S3_PREFIX:-prefix}
+      - S3_ACCESS_KEY_ID=${S3_ACCESS_KEY_ID:-key}
+      - S3_SECRET_ACCESS_KEY=${S3_SECRET_ACCESS_KEY:-secret}
+      - POSTGRES_HOST=${POSTGRES_HOST:-postgres}
+    depends_on:
+      - postgres
+    networks:
+      - network-bridge
+
+networks:
+  network-bridge:
+    driver: bridge
+    name: network-bridge
+```
+
+#### Restore
+
+> **WARNING:** DATA LOSS! All database objects will be dropped and re-created.
+
+### ... from latest backup
+
+```sh
+docker exec <container name> sh restore.sh
+```
+
+> **NOTE:** If your bucket has more than 1000 files, the latest may not be restored -- only one S3 `ls` command is used
+
+### ... from specific backup
+
+```sh
+docker exec <container name> sh restore.sh <timestamp>
+```
+
+### 📨 Message
+
+I hope you find this useful. If you have any questions, please create an issue.
+
+### 🔐 Security
+
+If you discover any security related issues, please email [email protected] instead of using the issue tracker.
+
+### 📖 License
+
+This software is released under the [BSD 3-Clause][link-license] License. Please see the [LICENSE](LICENSE) file
+or https://opensource.hitechnix.com/LICENSE.txt for more information.
+
+### ✨ Contributors
+
+Thanks goes to these wonderful people ([emoji key](https://allcontributors.org/docs/en/emoji-key)):
+
+<!-- ALL-CONTRIBUTORS-LIST:START - Do not remove or modify this section -->
+<!-- prettier-ignore-start -->
+<!-- markdownlint-disable -->
+<table>
+  <td align="center" valign="top" width="14.28%">
+    <a href="https://trants.me">
+      <img src="https://avatars.githubusercontent.com/u/40693126?v=4?s=100" width="100px;" alt="Son Tran Thanh" />
+      <br />
+      <sub>
+        <b>Son Tran Thanh</b>
+      </sub>
+    </a>
+    <br />
+    <a href="#tool-trants" title="Tools">🔧</a>
+    <a href="#infra-trants" title="Infrastructure (Hosting, Build-Tools, etc)">🚇</a>
+    <a href="#maintenance-trants" title="Maintenance">🚧</a>
+    <a href="https://github.com/hitechnix/postgres-backup/commits?author=trants" title="Code">💻</a>
+    <a href="https://github.com/hitechnix/postgres-backup/commits?author=trants" title="Documentation">📖</a>
+    <a href="https://github.com/hitechnix/postgres-backup/pulls?q=is%3Apr+reviewed-by%3Atrants" title="Reviewed Pull Requests">👀</a>
+  </td>
+</table>
+
+<!-- markdownlint-restore -->
+<!-- prettier-ignore-end -->
+
+<!-- ALL-CONTRIBUTORS-LIST:END -->
+
+This project follows the [all-contributors](https://allcontributors.org) specification.
+Contributions of any kind welcome!
+
+[link-license]: https://opensource.org/license/bsd-3-clause