kakifilem
/
pg-r2-backup
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update Docker, dependencies, S3 compatibility, and documentation

This commit is contained in:
BigDaddyAman 2026-01-13 15:23:43 +08:00
parent a2119c1feb
commit 88d04adffd
6 changed files with 134 additions and 17 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
.env.example Normal file
View File

@ -0,0 +1,19 @@
# Database
DATABASE_URL=
DATABASE_PUBLIC_URL=
USE_PUBLIC_URL=false
# S3 / R2 (S3-compatible storage)
R2_ENDPOINT=
R2_BUCKET_NAME=
R2_ACCESS_KEY=
R2_SECRET_KEY=
S3_REGION=us-east-1
# Backup settings
MAX_BACKUPS=7
BACKUP_PREFIX=
FILENAME_PREFIX=backup
DUMP_FORMAT=dump
BACKUP_PASSWORD=
BACKUP_TIME=00:00

28
CONTRIBUTING Normal file
View File

@ -0,0 +1,28 @@
# Contributing to Postgres-to-R2 Backup
Thanks for your interest in contributing 🎉
All contributions are welcome — bug reports, documentation improvements, and code changes.
---
## Getting Started
1. Fork the repository
2. Clone your fork locally
3. Create a feature branch from `main`
4. Submit a pull request against `main`
---
## Development
### Requirements
- Python 3.9+
- PostgreSQL client tools (`pg_dump`)
- pip
- (Optional) Docker
### Local Setup
```bash
pip install -r requirements.txt
python main.py

4
Dockerfile
View File

@ -11,8 +11,10 @@ RUN pip install --prefix=/install -r /app/requirements.txt
FROM python:3.12-slim FROM python:3.12-slim
ENV PYTHONUNBUFFERED=1
RUN apt-get update && \ RUN apt-get update && \
apt-get install -y postgresql-client gzip && \ apt-get install -y --no-install-recommends postgresql-client gzip && \
rm -rf /var/lib/apt/lists/* rm -rf /var/lib/apt/lists/*
COPY --from=builder /install /usr/local COPY --from=builder /install /usr/local

89
README.md
View File

@ -1,6 +1,14 @@
# Postgres-to-R2 Backup ![License](https://img.shields.io/badge/license-MIT-blue.svg)
![Python](https://img.shields.io/badge/python-3.12-blue)
![Storage](https://img.shields.io/badge/storage-S3--compatible-orange)
![Database](https://img.shields.io/badge/database-PostgreSQL-336791)
![Deploy](https://img.shields.io/badge/deploy-Railway-purple)
![Docker](https://img.shields.io/badge/docker-supported-blue)
A lightweight automation service that creates scheduled PostgreSQL backups and securely uploads them to **Cloudflare R2 object storage**. # Postgres-to-R2 Backup (S3-Compatible)
A lightweight automation service that creates scheduled PostgreSQL backups and securely uploads them to **S3-compatible object storage**
such as **Cloudflare R2, AWS S3, Wasabi, Backblaze B2, or MinIO**.
Designed specifically as a **Railway deployment template**, with built-in support for Docker and cron scheduling. Designed specifically as a **Railway deployment template**, with built-in support for Docker and cron scheduling.
--- ---
@ -9,12 +17,16 @@ Designed specifically as a **Railway deployment template**, with built-in suppor
- 📦 **Automated Backups** — scheduled daily or hourly PostgreSQL backups - 📦 **Automated Backups** — scheduled daily or hourly PostgreSQL backups
- 🔐 **Optional Encryption** — gzip compression or 7z encryption with password - 🔐 **Optional Encryption** — gzip compression or 7z encryption with password
- ☁️ **Cloudflare R2 Integration** — seamless S3-compatible uploads - ☁️ **Cloudflare R2 Integration** — seamless S3-compatible storage support
- 🧹 **Retention Policy** — automatically delete old backups - 🧹 **Retention Policy** — automatically delete old backups
- 🔗 **Flexible Database URLs** — supports private and public PostgreSQL URLs - 🔗 **Flexible Database URLs** — supports private and public PostgreSQL URLs
- ⚡ **Optimized Performance** — parallel pg_dump and multipart R2 uploads - ⚡ **Optimized Performance** — parallel pg_dump and multipart S3 uploads
- 🐳 **Docker Ready** — portable, lightweight container - 🐳 **Docker Ready** — portable, lightweight container
- 🚀 **Railway Template First** — no fork required for normal usage - 🚀 **Railway Template First** — no fork required for normal usage
<<<<<<< HEAD
=======
- 🪣 **S3-Compatible Storage** — works with R2, AWS S3, Wasabi, B2, MinIO
>>>>>>> 20e6dd1 (Update Docker, dependencies, S3 compatibility, and documentation)
--- ---
@ -29,7 +41,7 @@ Designed specifically as a **Railway deployment template**, with built-in suppor
--- ---
## 🔧 Environment Variables ## 🔧 Environment Variables (S3-Compatible)
```env ```env
DATABASE_URL= # PostgreSQL database URL (private) DATABASE_URL= # PostgreSQL database URL (private)
@ -40,15 +52,41 @@ DUMP_FORMAT=dump # sql | plain | dump | custom | tar
FILENAME_PREFIX=backup # Backup filename prefix FILENAME_PREFIX=backup # Backup filename prefix
MAX_BACKUPS=7 # Number of backups to retain MAX_BACKUPS=7 # Number of backups to retain
R2_ACCESS_KEY= # Cloudflare R2 access key R2_ENDPOINT= # S3 endpoint URL
R2_SECRET_KEY= # Cloudflare R2 secret key R2_BUCKET_NAME= # Bucket name
R2_BUCKET_NAME= # R2 bucket name R2_ACCESS_KEY= # Access key
R2_ENDPOINT= # R2 endpoint URL R2_SECRET_KEY= # Secret key
S3_REGION=us-east-1 # Required for AWS S3 (ignored by R2/MinIO)
BACKUP_PASSWORD= # Optional: enables 7z encryption BACKUP_PASSWORD= # Optional: enables 7z encryption
BACKUP_TIME=00:00 # Daily backup time (UTC, HH:MM) BACKUP_TIME=00:00 # Daily backup time (UTC, HH:MM)
``` ```
> Variable names use `R2_*` for historical reasons, but **any S3-compatible provider** can be used by changing the endpoint and credentials.
> For AWS S3 users: ensure `S3_REGION` matches your buckets region.
---
## ☁️ Supported S3-Compatible Providers
This project uses the **standard AWS S3 API via boto3**, and works with:
- Cloudflare R2 (recommended)
- AWS S3
- Wasabi
- Backblaze B2 (S3 API)
- MinIO (self-hosted)
### Example Endpoints
| Provider | Endpoint Example |
|--------|------------------|
| Cloudflare R2 | `https://<accountid>.r2.cloudflarestorage.com` |
| AWS S3 | `https://s3.amazonaws.com` |
| Wasabi | `https://s3.wasabisys.com` |
| Backblaze B2 | `https://s3.us-west-004.backblazeb2.com` |
| MinIO | `http://localhost:9000` |
--- ---
## ⏰ Railway Cron Jobs ## ⏰ Railway Cron Jobs
@ -84,6 +122,12 @@ It can run on **any platform** that supports:
- Environment variables - Environment variables
- Long-running background processes or cron - Long-running background processes or cron
<<<<<<< HEAD
=======
> Docker images use **Python 3.12** by default.
> Local execution supports **Python 3.9+**.
>>>>>>> 20e6dd1 (Update Docker, dependencies, S3 compatibility, and documentation)
### Supported Environments ### Supported Environments
- Local machine (Linux / macOS / Windows*) - Local machine (Linux / macOS / Windows*)
@ -108,14 +152,33 @@ python main.py
### Run with Docker (Optional) ### Run with Docker (Optional)
Build and run the image locally:
```bash ```bash
docker build -t postgres-to-r2-backup . docker build -t postgres-to-r2-backup .
docker run --env-file .env postgres-to-r2-backup docker run --env-file .env postgres-to-r2-backup
> Ensure the container is allowed to run continuously when not using an external cron scheduler.
``` ```
All scheduling uses **UTC by default** to ensure consistent behavior across platforms. > Ensure the container is allowed to run continuously when not using an external cron scheduler.
> All scheduling uses **UTC** by default (e.g. Malaysia UTC+8 → set `BACKUP_TIME=16:00` for midnight).
### Run from Prebuilt Docker Image
If you downloaded a prebuilt Docker image archive (`.tar` or `.tar.gz`), you can run it without building locally:
```bash
# Extract the archive (if compressed)
tar -xzf postgres-to-r2-backup_v1.0.0.tar.gz
# Load the image into Docker
docker load -i postgres-to-r2-backup_v1.0.0.tar
# Run the container
docker run --env-file .env postgres-to-r2-backup:v1.0.0
```
> Prebuilt images are architecture-specific (amd64 / arm64).
--- ---
@ -132,7 +195,7 @@ All scheduling uses **UTC by default** to ensure consistent behavior across plat
Never commit `.env` files to version control. Never commit `.env` files to version control.
- **Encrypted backups (optional)** - **Encrypted backups (optional)**
Set `BACKUP_PASSWORD` to enable encrypted backups using 7z before uploading to Cloudflare R2. Set `BACKUP_PASSWORD` to enable encrypted backups using 7z before uploading to S3-compatible storage.
- **Least privilege access** - **Least privilege access**
Use a PostgreSQL user with read-only access where possible, and restrict R2 credentials to the required bucket only. Use a PostgreSQL user with read-only access where possible, and restrict R2 credentials to the required bucket only.

9
main.py
View File

@ -1,9 +1,9 @@
import os import os
import subprocess import subprocess
import boto3 import boto3
from boto3.session import Config
from datetime import datetime, timezone from datetime import datetime, timezone
from boto3.s3.transfer import TransferConfig from boto3.s3.transfer import TransferConfig
from urllib.parse import urlparse
from dotenv import load_dotenv from dotenv import load_dotenv
import time import time
import schedule import schedule
@ -27,6 +27,7 @@ DUMP_FORMAT = os.environ.get("DUMP_FORMAT", "dump")
BACKUP_PASSWORD = os.environ.get("BACKUP_PASSWORD") BACKUP_PASSWORD = os.environ.get("BACKUP_PASSWORD")
USE_PUBLIC_URL = os.environ.get("USE_PUBLIC_URL", "false").lower() == "true" USE_PUBLIC_URL = os.environ.get("USE_PUBLIC_URL", "false").lower() == "true"
BACKUP_TIME = os.environ.get("BACKUP_TIME", "00:00") BACKUP_TIME = os.environ.get("BACKUP_TIME", "00:00")
S3_REGION = os.environ.get("S3_REGION", "us-east-1")
def log(msg): def log(msg):
print(msg, flush=True) print(msg, flush=True)
@ -118,7 +119,11 @@ def run_backup():
"s3", "s3",
endpoint_url=R2_ENDPOINT, endpoint_url=R2_ENDPOINT,
aws_access_key_id=R2_ACCESS_KEY, aws_access_key_id=R2_ACCESS_KEY,
aws_secret_access_key=R2_SECRET_KEY aws_secret_access_key=R2_SECRET_KEY,
region_name=S3_REGION,
config=Config(
s3={"addressing_style": "path"}
)
) )
config = TransferConfig( config = TransferConfig(

2
requirements.txt
View File

@ -1,4 +1,4 @@
boto3==1.42.15 boto3==1.42.26
psycopg2-binary==2.9.10 psycopg2-binary==2.9.10
python-dotenv==1.2.1 python-dotenv==1.2.1
py7zr==1.1.0 py7zr==1.1.0