Backup of fly.io volumes post
This commit is contained in:
parent
ea6e89b1d3
commit
f231c3da8e
2 changed files with 103 additions and 1 deletions
102
content/posts/20250430-creating-backups-for-fly-io-volumes.md
Normal file
102
content/posts/20250430-creating-backups-for-fly-io-volumes.md
Normal file
|
|
@ -0,0 +1,102 @@
|
|||
---
|
||||
title: "Creating backups for fly.io Volumes"
|
||||
date: 2025-04-30
|
||||
tags: ["self-host", "fly.io", "backup"]
|
||||
slug: creating-backups-for-fly-io-volumes
|
||||
---
|
||||
|
||||
I have a few applications running on [fly.io](https://fly.io), and some of them need to
|
||||
keep data in the file system persistently (more precisely, an SQLite database file and
|
||||
user-submitted data) so that it is not lost after a redeploy or when the Fly Machine running my application is
|
||||
restarted.
|
||||
|
||||
To achieve that, I use [Fly Volumes](https://fly.io/docs/volumes/overview/) which are local
|
||||
persistent storage for Fly Machines, mounted in my server just like a regular directory. This setup works fine,
|
||||
but I began considering how to back up the data stored there.
|
||||
|
||||
[Volume snapshots](https://fly.io/docs/volumes/snapshots/) are created automatically on a daily basis and
|
||||
retained for 5 days by default. However, there doesn't seem to be an easy (or well-documented) way to implement
|
||||
a custom backup policy. I wanted the ability to copy the entire directory's content using tools like `rsync` or upload
|
||||
it to an S3 bucket on my own schedule.
|
||||
|
||||
I explored solutions involving `cron` jobs running inside my Fly Machine, but they became overly complicated.
|
||||
These approaches required modifying my `Dockerfile` to install additional applications, and I wasn't sure
|
||||
how to manage the schedule effectively, especially since I configured my machines to auto-stop to save resources.
|
||||
|
||||
Direct SSH connections requires me to use `flyctl` CLI and it wasn't clear to me how to handle authentication
|
||||
in this case. After some research, I found that I can use [access tokens](https://fly.io/docs/security/tokens/)
|
||||
to connect to the machines using SSH allowing me to send commands there in an automated way.
|
||||
|
||||
## Generating your access token
|
||||
|
||||
First step is to create an access token that allows me to send commands to my machine without requiring any
|
||||
manual form of authentication. This can be done using the following command:
|
||||
|
||||
```bash
|
||||
fly tokens create ssh -n my-token-name
|
||||
```
|
||||
|
||||
Check the [command documentation](https://fly.io/docs/flyctl/tokens-create-ssh/) for more options. The output of
|
||||
this command will be as the following, where `<TOKEN_CONTENT_STRING>` will be a very long string that
|
||||
you need to store and don't share it publicly.
|
||||
|
||||
```bash
|
||||
FlyV1 <TOKEN_CONTENT_STRING>
|
||||
```
|
||||
|
||||
Add the token to an environment var in the machine you will run the backup script:
|
||||
|
||||
```bash
|
||||
export FLY_SSH_TOKEN=<TOKEN_CONTENT_STRING>
|
||||
```
|
||||
|
||||
## Data location
|
||||
|
||||
The volume is mounted in `/data` directory, defined in our application `fly.toml` file:
|
||||
|
||||
```
|
||||
[[mounts]]
|
||||
source = 'app_data'
|
||||
destination = '/data'
|
||||
```
|
||||
|
||||
## Creating a backup script
|
||||
|
||||
With the token, we can now create two scripts: one to run locally on the machine that will receive the backup data,
|
||||
and another to be executed remotely on your Fly Machine. The example scripts are very simple, but you can improve
|
||||
them by adding more capabilities, error handling, uploading the data to S3 buckets, and so on.
|
||||
|
||||
```
|
||||
# local_backup.sh
|
||||
|
||||
# This call is needed to "wake-up" your machine if stopped
|
||||
curl -s -o /dev/null https://your-app.fly.dev/
|
||||
|
||||
# Execute the script that will generate a tarball of /data/ directory
|
||||
fly ssh console -C 'sh remote_backup.sh' -t $FLY_SSH_TOKEN
|
||||
|
||||
# Copy the generated tarball to our local machine
|
||||
fly ssh sftp get "/root/data_content_$(date +%F).tar.gz" -t $FLY_SSH_TOKEN
|
||||
```
|
||||
|
||||
```
|
||||
# remote_backup.sh
|
||||
|
||||
tar czf "/root/data_content_$(date +%F).tar.gz" data/
|
||||
```
|
||||
|
||||
You need to send `remote_backup.sh` to your Fly Machine. Adding the following line to your `Dockerfile` should be enough:
|
||||
|
||||
```
|
||||
COPY remote_backup.sh /remote_backup.sh
|
||||
```
|
||||
|
||||
Deploy your application again, and you can run `local_backup.sh`.
|
||||
|
||||
## Run it periodically
|
||||
|
||||
Now you can add `local_backup.sh` to your `crontab` schedule, or even adapt the procedure described here
|
||||
to be executed in other environments, like defining a GitHub Action or another way to schedule jobs.
|
||||
|
||||
I know this is not the most complete way to implement a backup policy, but it is working for my current projects.
|
||||
In the future, as I improve my scripts, I will possibly update this post to make it more complete.
|
||||
|
|
@ -1 +1 @@
|
|||
Subproject commit c52acfb01bb0188da4f76b1378d9045041772a99
|
||||
Subproject commit 6c4173f56e24a9192398f94d6e71d3e3da6d52de
|
||||
Loading…
Add table
Add a link
Reference in a new issue