2021-04-02 13:45:33 +02:00
# docker-volume-backup
2021-04-02 13:59:47 +02:00
Backup Docker volumes to any S3 compatible storage.
2021-04-02 14:17:09 +02:00
The [offen/docker-volume-backup ](https://hub.docker.com/r/offen/docker-volume-backup ) Docker image can be used as a sidecar container to an existing Docker setup. It handles recurring backups of Docker volumes to any S3 compatible storage and rotates away old backups if configured.
## Configuration
Backup targets, schedule and retention are configured in environment variables:
```ini
########### BACKUP SCHEDULE
# Backups run on the given cron schedule and use the filename defined in the
# template expression.
BACKUP_CRON_EXPRESSION="0 2 * * *"
BACKUP_FILENAME="offen-db-%Y-%m-%dT%H-%M-%S.tar.gz"
########### BACKUP STORAGE
# Define credentials for authenticating against the backup storage and a bucket
# name. Although all of these values are `AWS`-prefixed, the setup can be used
# with any S3 compatible storage.
AWS_ACCESS_KEY_ID="< xxx > "
AWS_SECRET_ACCESS_KEY="< xxx > "
AWS_S3_BUCKET_NAME="< xxx > "
# This is the FQDN of your storage server, e.g. `storage.example.com`.
2021-04-03 09:33:11 +02:00
# Do not set this when working against AWS S3.
2021-04-02 14:17:09 +02:00
# AWS_ENDPOINT="<xxx>"
########### BACKUP PRUNING
# Define this value to enable automatic pruning of old backups. The value
# declares the number of days for which a backup is kept.
# BACKUP_RETENTION_DAYS="7"
2021-04-08 17:24:44 +02:00
# In case the duration a backup takes fluctuates noticeably in your setup
# you can adjust this setting to make sure there are no race conditions
# between the backup finishing and the pruning not deleting backups that
# sit on the very edge of the time window. Set this value to a duration
# that is expected to be bigger than the maximum difference of backups.
# Valid values have a suffix of (s)econds, (m)inutes, (h)ours, or (d)ays.
# BACKUP_PRUNING_LEEWAY="10m"
2021-04-02 14:17:09 +02:00
########### BACKUP ENCRYPTION
# Backups can be encrypted using gpg in case a passphrase is given
# GPG_PASSPHRASE="<xxx>"
2021-05-24 20:34:30 +02:00
2021-06-26 21:16:22 +02:00
########### STOPPING CONTAINERS DURING BACKUP
# Containers can be stopped by applying a
# `docker-volume-backup.stop-during-backup` label. By default, all containers
# that are labeled with `true` will be stopped. If you need more fine grained
# control (e.g. when running multiple containers based on this image), you can
# override this default by specifying a different value here.
# BACKUP_STOP_CONTAINER_LABEL="service1"
2021-05-24 20:34:30 +02:00
########### MINIO CLIENT CONFIGURATION
# Pass these additional flags to all MinIO client `mc` invocations.
# This can be used for example to pass `--insecure` when using self
2021-05-25 07:35:21 +02:00
# signed certificates, or passing `--debug` to gain insights on
# unexpected behavior.
2021-05-24 20:34:30 +02:00
2021-05-25 07:35:21 +02:00
# MC_GLOBAL_OPTIONS="<xxx>"
2021-04-02 14:17:09 +02:00
```
## Example in a docker-compose setup
Most likely, you will use this image as a sidecar container in an existing docker-compose setup like this:
```yml
version: '3'
services:
volume-consumer:
build:
context: ./my-app
volumes:
- data:/var/my-app
labels:
# This means the container will be stopped during backup to ensure
# backup integrity. You can omit this label if stopping during backup
# not required.
- docker-volume-backup.stop-during-backup=true
backup:
image: offen/docker-volume-backup:latest
restart: always
env_file: ./backup.env
volumes:
# Mounting the Docker socket allows the script to stop and restart
# the container during backup. You can omit this if you don't want
# to stop the container
- /var/run/docker.sock:/var/run/docker.sock:ro
- data:/backup/my-app-backup:ro
volumes:
data:
```
2021-07-08 18:39:49 +02:00
## Using with Docker Swarm
By default, Docker Swarm will restart stopped containers automatically, even when manually stopped. If you plan to have your containers / services stopped during backup, this means you need to apply the `on-failure` restart policy to your service's definitions. A restart policy of `always` is not compatible with this tool.
2021-08-05 21:56:19 +02:00
---
When running in Swarm mode, it's also advised to set a hard memory limit on your service (~25MB should be enough in that case):
```yml
services:
backup:
image: offen/docker-volume-backup:latest
deployment:
resources:
limits:
memory: 25M
```
2021-07-11 10:36:29 +02:00
## Manually triggering a backup
You can manually trigger a backup run outside of the defined cron schedule by executing the `backup` command inside the container:
```
docker exec < container_ref > backup
```
2021-07-08 18:39:49 +02:00
---
2021-04-02 14:17:09 +02:00
## Differences to `futurice/docker-volume-backup`
2021-04-02 14:30:27 +02:00
This image is heavily inspired by the `futurice/docker-volume-backup` . We decided to publish this image as a simpler and more lightweight alternative because of the following requirements:
2021-04-02 14:17:09 +02:00
2021-04-02 14:30:27 +02:00
- The original image is based on `ubuntu` , making it very heavy. This version is roughly 1/3 in compressed size.
- This image makes use of the MinIO client `mc` instead of the full blown AWS CLI for uploading backups.
2021-04-02 14:17:09 +02:00
- The original image proposed to handle backup rotation through AWS S3 lifecycle policies. This image adds the option to rotate old backups through the same script so this functionality can also be offered for non-AWS storage backends like MinIO.
2021-04-02 14:30:27 +02:00
- InfluxDB specific functionality was removed.
2021-07-01 15:16:39 +02:00
- `arm64` and `arm/v7` architectures are supported.
2021-07-08 18:39:49 +02:00
- Docker in Swarm mode is supported.
