add sftp storage

2023-09-08 01:16:44 +02:00
parent d32337cf3a
commit 75a93c5456
5 changed files with 28 additions and 5 deletions
--- a/README.md
+++ b/README.md
@ -63,7 +63,7 @@ See [restic s3 docs](https://restic.readthedocs.io/en/latest/030_preparing_a_new

 ### SFTP Storage

-> TODO
+> With sftp it is not possible to prevent the backupbot from deleting backups in case of a compromised machine. Therefore we recommend to use S3, REST or rclone server without delete permissions.

 To use SFTP storage as backup location set the following envs:
 ```
@ -72,10 +72,16 @@ SECRET_SSH_KEY_VERSION=v1
 SSH_HOST_KEY="hostname ssh-rsa AAAAB3...
 COMPOSE_FILE="$COMPOSE_FILE:compose.ssh.yml"
 ```
+To get the `SSH_HOST_KEY` run the following command `ssh-keyscan <hostname>`

 Generate an ssh keypair: `ssh-keygen -t ed25519 -f backupkey -P ''`
-and add your `SSH_KEY` as docker secret:
-`abra app secret insert <app_name> ssh_key v1 "$(cat backupkey)"`
+Add the key to your `authorized_keys`:
+`ssh-copy-id -i backupkey <user>@<hostname>`
+Add your `SSH_KEY` as docker secret:
+```
+abra app secret insert <app_name> ssh_key v1 """$(cat backupkey)
+"""
+```


 ## Usage