# =============================== # === Debian specific options === #================================ # By default, on Debian systems, only 'postgres' user # is allowed to access PostgreSQL databases without password. # In order to dump databases we need to run pg_dump/psql # commands as 'postgres' with su. # # The following setting has been added to workraound this issue. # (if it is set to empty, 'su' usage will be disabled) # For the docker container this value is root, since is the user that # runs the process SU_USERNAME=root #===================================================================== # Set the following variables to your system needs # (Detailed instructions below variables) #===================================================================== # Username to access the PostgreSQL server e.g. dbuser USERNAME=postgres # Password # create a file $HOME/.pgpass containing a line like this # hostname:*:*:dbuser:dbpass # replace hostname with the value of DBHOST and postgres with # the value of USERNAME # Host name (or IP address) of PostgreSQL server e.g localhost DBHOST=${DBHOST:-localhost} # List of DBNAMES for Daily/Weekly Backup e.g. "DB1 DB2 DB3" DBNAMES="${DBNAMES:-all}" # pseudo database name used to dump global objects (users, roles, tablespaces) GLOBALS_OBJECTS="${GLOBALS_OBJECTS:-postgres_globals}" # Backup directory location e.g /backups BACKUPDIR="/backups" # Mail setup # What would you like to be mailed to you? # - log : send only log file # - files : send log file and sql files as attachments (see docs) # - stdout : will simply output the log to the screen if run manually. # - quiet : Only send logs if an error occurs to the MAILADDR. MAILCONTENT="stdout" # Set the maximum allowed email size in k. (4000 = approx 5MB email [see docs]) MAXATTSIZE="4000" # Email Address to send mail to? (user@domain.com) MAILADDR="root" # ============================================================ # === ADVANCED OPTIONS ( Read the doc's below for details )=== #============================================================= # List of DBBNAMES for Monthly Backups. MDBNAMES="template1 $DBNAMES" # List of DBNAMES to EXLUCDE if DBNAMES are set to all (must be in " quotes) DBEXCLUDE="${DBEXCLUDE}" # Include CREATE DATABASE in backup? CREATE_DATABASE=${CREATE_DATABASE:-yes} # Separate backup directory and file for each DB? (yes or no) SEPDIR=${SEPDIR:-yes} # Which day do you want weekly backups? (1 to 7 where 1 is Monday) DOWEEKLY=${DOWEEKLY:-6} # Choose Compression type. (gzip or bzip2) COMP=${COMP:-gzip} # Compress communications between backup server and PostgreSQL server? # set compression level from 0 to 9 (0 means no compression) COMMCOMP=${COMMCOMP:-0} # Additionally keep a copy of the most recent backup in a seperate directory. LATEST=${LATEST:-no} # OPT string for use with pg_dump ( see man pg_dump ) OPT="${OPT}" # Backup files extension EXT="${EXT:-sql}" # Backup files permissions PERM=600 # Encyrption settings # (inspired by http://blog.altudov.com/2010/09/27/using-openssl-for-asymmetric-encryption-of-backups/) # # Once the backup done, each SQL dump will be encrypted and the original file # will be deleted (if encryption was successful). # It is recommended to backup into a staging directory, and then use the # POSTBACKUP script to sync the encrypted files to the desired location. # # Encryption uses private/public keys. You can generate the key pairs like the following: # openssl req -x509 -nodes -days 100000 -newkey rsa:2048 -keyout backup.key -out backup.crt -subj '/' # # Decryption: # openssl smime -decrypt -in backup.sql.gz.enc -binary -inform DEM -inkey backup.key -out backup.sql.gz # Enable encryption ENCRYPTION=no # Encryption public key ENCRYPTION_PUBLIC_KEY="/etc/ssl/certs/autopostgresqlbackup.crt" # Encryption Cipher (see enc manpage) ENCRYPTION_CIPHER="aes256" # Suffix for encyrpted files ENCRYPTION_SUFFIX=".enc" # Command to run before backups (uncomment to use) #PREBACKUP="/etc/postgresql-backup-pre" # Command run after backups (uncomment to use) #POSTBACKUP="/etc/postgresql-backup-post"