diff options
author | Jesse Luehrs <doy@tozt.net> | 2021-03-24 23:39:21 -0400 |
---|---|---|
committer | Jesse Luehrs <doy@tozt.net> | 2021-03-24 23:39:21 -0400 |
commit | 8b29d7f5f91d1a1f82d1f3fb429ea662a789573e (patch) | |
tree | 610346dacfa739ae87763648135b0f5db57895e8 /modules | |
parent | 77f310e4c77f160c52b2c232d39eee1e56f59018 (diff) | |
download | puppet-tozt-8b29d7f5f91d1a1f82d1f3fb429ea662a789573e.tar.gz puppet-tozt-8b29d7f5f91d1a1f82d1f3fb429ea662a789573e.zip |
set up partofme to receive borg backups
Diffstat (limited to 'modules')
-rw-r--r-- | modules/partofme/files/borg_authorized_keys | 1 | ||||
-rw-r--r-- | modules/partofme/files/sshd_config.borg | 5 | ||||
-rw-r--r-- | modules/partofme/manifests/backups.pp | 23 |
3 files changed, 29 insertions, 0 deletions
diff --git a/modules/partofme/files/borg_authorized_keys b/modules/partofme/files/borg_authorized_keys new file mode 100644 index 0000000..3b05faa --- /dev/null +++ b/modules/partofme/files/borg_authorized_keys @@ -0,0 +1 @@ +command="borg serve --restrict-to-path /media/persistent/borg",restrict ssh-rsa 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 doy@hornet diff --git a/modules/partofme/files/sshd_config.borg b/modules/partofme/files/sshd_config.borg new file mode 100644 index 0000000..76c199b --- /dev/null +++ b/modules/partofme/files/sshd_config.borg @@ -0,0 +1,5 @@ +Match User borg + ClientAliveInterval 10 + ClientAliveCountMax 30 + +# vim:ft=sshdconfig diff --git a/modules/partofme/manifests/backups.pp b/modules/partofme/manifests/backups.pp index 20ccd63..08eca45 100644 --- a/modules/partofme/manifests/backups.pp +++ b/modules/partofme/manifests/backups.pp @@ -38,4 +38,27 @@ class partofme::backups { unless => 'grep -qF /usr/local/bin/sftp-only /etc/shells', require => File['/usr/local/bin/sftp-only']; } + + ############################# + + package { 'borg': + ensure => installed; + } + + user { 'borg': + home => '/media/persistent/borg'; + } + + file { + "/media/persistent/borg/.ssh": + ensure => directory, + require => User['borg']; + "/media/persistent/borg/.ssh/authorized_keys": + source => 'puppet:///modules/partofme/borg_authorized_keys' + require => File["/media/persistent/borg/.ssh"]; + } + + sshd::configsection { 'borg': + source => 'puppet:///modules/partofme/sshd_config.borg'; + } } |