Backup helm's stable/openldap's data!

Backup helm's stable/openldap's data!

Published on Dec 1, 2019, 10:15 PM1 min read

This has been on my todo list since August, and I accdently wiped out my install this week, so its super motivated me to get something in place.

Is it perfect? no

Is it insecure? Probably

Does it work? yesssssss

cat openldap-backup-cronjob.yaml
---
apiVersion: v1
kind: PersistentVolumeClaim
metadata:
  name: openldap-backup-pvc
  namespace: openldap
spec:
  accessModes:
    - ReadWriteMany
  storageClassName: nfs-client
  resources:
    requests:
      storage: 5Gi
---
apiVersion: batch/v1beta1
kind: CronJob
metadata:
  name: openldapbackup-cron-job
  namespace: openldap
spec:
  schedule: "0 */12 * * *"
  failedJobsHistoryLimit: 5
  successfulJobsHistoryLimit: 2
  jobTemplate:
    spec:
      template:
        spec:
          restartPolicy: OnFailure
          containers:
            - name: openldapsql-backup
              env:
                - name: LDAP_ADMIN_PASSWORD
                  valueFrom:
                    secretKeyRef:
                      name: openldap
                      key: LDAP_ADMIN_PASSWORD
              image: osixia/openldap:1.2.4
              command:
                - "/bin/sh"
              args:
                - "-c"
                - "ldapsearch -x -H ldap://openldap -b dc=gavinmogan,dc=com -D \"cn=admin,dc=gavinmogan,dc=com\" -w \"${LDAP_ADMIN_PASSWORD}\" | tee /backup/backupOn`date +%Y-%m-%d-%H-%M`.dump > /dev/null"
              volumeMounts:
                - mountPath: "/backup"
                  name: backup-volume
          volumes:
            - name: backup-volume
              persistentVolumeClaim:
                claimName: openldap-backup-pvc
Gavin Mogan
Burnaby, BC, Canada

I'm a software developer at the awesome Sauce Labs. I do a bunch of other random open source development. I also play games, both board and video games and love to read. You can usually find me on various services as halkeye.

Comments