e8d303f184
backup.sh now covers all data: - SQLite via podman exec into server container (fallback to host path) - Postgres via pg_dumpall inside postgres container - Forgejo data volume via podman volume export - Caddy TLS certificates via podman volume export - .env file (plaintext secrets — store archive securely) restore.sh reverses each step: imports volumes, restores Postgres, restores SQLite, optionally restores .env (--force to overwrite). Both scripts find containers dynamically via compose service labels so they work regardless of the container name podman-compose assigns. .env.example documents HIY_BACKUP_DIR, HIY_BACKUP_REMOTE, HIY_BACKUP_RETAIN_DAYS. https://claude.ai/code/session_01FKCW3FDjNFj6jve4niMFXH
26 lines
1.1 KiB
Text
26 lines
1.1 KiB
Text
# Your domain — apps will be served at <name>.yourdomain.com
|
|
DOMAIN_SUFFIX=yourdomain.com
|
|
|
|
# Optional: email for Let's Encrypt expiry notices.
|
|
# If you want this, uncomment the `email` line in proxy/Caddyfile instead.
|
|
|
|
# Dashboard login credentials (required in production).
|
|
HIY_ADMIN_USER=admin
|
|
HIY_ADMIN_PASS=changeme
|
|
|
|
# Postgres admin password — used by the shared cluster.
|
|
# App schemas get their own scoped users; this password never leaves the server.
|
|
POSTGRES_PASSWORD=changeme
|
|
|
|
# Forgejo (optional — only needed if you add the forgejo service to docker-compose.yml).
|
|
FORGEJO_DB_PASSWORD=changeme
|
|
FORGEJO_DOMAIN=git.yourdomain.com
|
|
|
|
# ── Backup (infra/backup.sh) ──────────────────────────────────────────────────
|
|
# Local directory to store backup archives.
|
|
HIY_BACKUP_DIR=/mnt/usb/hiy-backups
|
|
# Optional rclone remote (e.g. "b2:mybucket/hiy", "s3:mybucket/hiy").
|
|
# Requires rclone installed and configured. Leave blank to skip remote upload.
|
|
HIY_BACKUP_REMOTE=
|
|
# How many days to keep local archives (default 30).
|
|
HIY_BACKUP_RETAIN_DAYS=30
|