mirror of https://github.com/offen/docker-volume-backup.git synced 2024-09-19 21:20:28 +02:00

Feature: PGP Asymmetric Encryption (#456 )

* feat: asym encryption

* tests

* docs

* refactor

* logs & errs

* comment

* Update docs/reference/index.md

use correct env var in example

Co-authored-by: Frederik Ring <frederik.ring@gmail.com>

* Update cmd/backup/encrypt_archive.go

use errwarp for initial error msg

Co-authored-by: Frederik Ring <frederik.ring@gmail.com>

* rm orphaned code in encryption functions

* inline readArmoredKeys

* naming -GPG_PUBLIC_KEYS- to GPG_PUBLIC_KEY_RING

* add eror handling for closing func

* use dynamically generated keys for testing

* rm explicit gpg-agent start

* rm unnecessary private_key export

* pass PASSPHRASE correctly to the decryption command

* capture defer errors

* log & err msg

---------

Co-authored-by: Frederik Ring <frederik.ring@gmail.com>

2024-08-11 10:11:23 +02:00

555 B

Raw Permalink Blame History

title	layout	parent	nav_order
Encrypt backups using GPG	default	How Tos	7

Encrypt backups using GPG

The image supports encrypting backups using GPG out of the box. In case a GPG_PASSPHRASE or GPG_PUBLIC_KEY_RING environment variable is set, the backup archive will be encrypted using the given key and saved as a .gpg file instead.

Assuming you have gpg installed, you can decrypt such a backup using (your OS will prompt for the passphrase before decryption can happen):

gpg -o backup.tar.gz -d backup.tar.gz.gpg

555 B Raw Permalink Blame History

Encrypt backups using GPG

555 B

Raw Permalink Blame History