migrations/20250724102340-backupSites-create-table.js

'use strict';

const child_process = require('node:child_process'),
    crypto = require('node:crypto'),
    fs = require('node:fs'),
    path = require('node:path'),
    paths = require('../src/paths.js');

async function deleteOldSettings(db) {
    await db.runSql('DELETE FROM settings WHERE name=? OR name=? OR name=?', [ 'backup_storage', 'backup_limits', 'backup_policy' ]);
}

exports.up = async function (db) {
    const cmd = 'CREATE TABLE IF NOT EXISTS backupSites(' +
        'id VARCHAR(128) NOT NULL UNIQUE,' +
        'name VARCHAR(128) NOT NULL,' +
        'provider VARCHAR(32) NOT NULL,' +
        'configJson TEXT,' +
        'limitsJson TEXT,' +
        'retentionJson TEXT,' +
        'encryptionJson TEXT,' +
        'integrityKeyPairJson TEXT,' +
        'format VARCHAR(16) NOT NULL,' +
        'schedule VARCHAR(128),' +
        'enableForUpdates BOOLEAN DEFAULT false,' +
        'contentsJson TEXT,' +
        'creationTime TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,' +
        'ts TIMESTAMP DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,' +
        'PRIMARY KEY (id)) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin';

    await db.runSql(cmd);

    const results = await db.runSql('SELECT name, value FROM settings WHERE name=? OR name=? OR name=?', [ 'backup_storage', 'backup_limits', 'backup_policy' ]);

    const domainCountResults = await db.runSql('SELECT COUNT(*) AS total FROM domains');
    if (domainCountResults[0].total === 0) {
        console.log('This cloudron is not activated. Deleting the default backup config from 20171205124434-settings-default-backupConfig.js'); // will be added at provision time
        await deleteOldSettings(db);
        return;
    }

    const name = 'Default', enableForUpdates = true;
    let config = null, limits = null, encryption = null, format = null, provider = null;
    let retention = { keepWithinSecs: 2 * 24 * 60 * 60 };
    let schedule = '00 00 23 * * *';
    const integrityKeyPair = crypto.generateKeyPairSync('ed25519', {
        publicKeyEncoding: { type: 'spki', format: 'pem' },
        privateKeyEncoding: { type: 'pkcs8', format: 'pem' }
    });

    const id = crypto.randomUUID();

    // convert existing configuration into a backup target
    for (const r of results) {
        if (r.name === 'backup_storage') {
            const tmp = JSON.parse(r.value);
            // provider is top level
            provider = tmp.provider;

            if (provider === 'noop') return await deleteOldSettings(db); // noop is migrated as 0 sites. user has to manually update with skipBackup

            // the s3 and filesystem backend use the _provider internal property
            if (provider !== 'gcs') tmp._provider = tmp.provider;
            delete tmp.provider;

            // backupFolder is now backupDir
            if ('backupFolder' in tmp) {
                tmp.backupDir = tmp.backupFolder;
                delete tmp.backupFolder;
            }

            // encryption is not part of config anymore, it is top level
            encryption = tmp.encryption || null;
            delete tmp.encryption;

            // format is not part of config anymore, it is top level
            format = tmp.format;
            delete tmp.format;

            // previous releases only had a single "managed" mount at /mnt/cloudronbackup .
            // new release has it under /mnt/managedbackups .
            if (tmp.mountOptions) tmp._managedMountPath = '/mnt/cloudronbackup';

            config = tmp;
        } else if (r.name === 'backup_limits') {
            limits = JSON.parse(r.value);
        } else if (r.name === 'backup_policy') {
            const tmp = JSON.parse(r.value);
            retention = tmp.retention;
            schedule = tmp.schedule;
        }
    }

    const targetInfoDir = path.join(paths.BACKUP_INFO_DIR, id);
    console.log(`Moving existing cache and snapshot file into ${targetInfoDir}`);
    fs.mkdirSync(targetInfoDir, { recursive: true }); // this gets chown'ed by start.sh
    child_process.execSync(`find ${paths.BACKUP_INFO_DIR}/ -maxdepth 1 -type f -exec mv -t ${targetInfoDir}/ {} +`);

    console.log(`Delete any existing rsync cache files since old one has no integrity information`);
    child_process.execSync(`rm -f ${targetInfoDir}/*.cache`);

    await db.runSql('START TRANSACTION');
    await db.runSql('INSERT INTO backupSites (id, name, provider, configJson, limitsJson, integrityKeyPairJson, retentionJson, schedule, encryptionJson, format, enableForUpdates) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)',
        [ id, name, provider, JSON.stringify(config), JSON.stringify(limits), JSON.stringify(integrityKeyPair), JSON.stringify(retention), schedule, encryption ? JSON.stringify(encryption) : null, format, enableForUpdates ]);
    await deleteOldSettings(db);
    await db.runSql('UPDATE tasks SET type=? WHERE type=?', [ `backup_${id}`, 'backup' ]); // migrate the tasks
    await db.runSql('COMMIT');
};

exports.down = async function (db) {
    await db.runSql('DROP TABLE backupSites');
};
add backup targets table 2025-07-24 13:19:27 +02:00			`'use strict';`

use node: prefix for requires mostly because code is being autogenerated by all the AI stuff using this prefix. it's also used in the stack trace. 2025-08-14 11:17:38 +05:30			`const child_process = require('node:child_process'),`
			`crypto = require('node:crypto'),`
			`fs = require('node:fs'),`
			`path = require('node:path'),`
remove uuid module built into node.js now 2025-07-28 12:53:27 +02:00			`paths = require('../src/paths.js');`
add backup targets table 2025-07-24 13:19:27 +02:00
backups: remove noop backend the noop backend is migrated into 0 sites config. when the updater code sees that there is no site to backup, it will just fail. user has to manually update with skipBackup flag. 2025-09-22 16:33:51 +02:00			`async function deleteOldSettings(db) {`
			`await db.runSql('DELETE FROM settings WHERE name=? OR name=? OR name=?', [ 'backup_storage', 'backup_limits', 'backup_policy' ]);`
			`}`

add backup targets table 2025-07-24 13:19:27 +02:00			`exports.up = async function (db) {`
rename backupTargets to backupSites 2025-09-12 09:48:37 +02:00			`const cmd = 'CREATE TABLE IF NOT EXISTS backupSites(' +`
add backup targets table 2025-07-24 13:19:27 +02:00			`'id VARCHAR(128) NOT NULL UNIQUE,' +`
backuptarget: rename label to name 2025-08-04 14:19:49 +02:00			`'name VARCHAR(128) NOT NULL,' +`
backups: add backup multiple targets 2025-07-24 19:02:02 +02:00			`'provider VARCHAR(32) NOT NULL,' +`
add backup targets table 2025-07-24 13:19:27 +02:00			`'configJson TEXT,' +`
			`'limitsJson TEXT,' +`
			`'retentionJson TEXT,' +`
			`'encryptionJson TEXT,' +`
backups (tgz): save integrity information we generate a signing key pair for each target. Initially, I had this as global. We needed a route to return the public key and putting it under backup target seemed natural. Since we delete the backups when we delete a target, we lose all the signing hashes. So, it's fine to lose the key pair on target delete. 2025-08-11 19:30:22 +05:30			`'integrityKeyPairJson TEXT,' +`
add backup targets table 2025-07-24 13:19:27 +02:00			`'format VARCHAR(16) NOT NULL,' +`
			`'schedule VARCHAR(128),' +`
Fix consistent use of enabledForUpdates -> enableForUpdates 2025-09-23 16:42:57 +02:00			`'enableForUpdates BOOLEAN DEFAULT false,' +`
backup site: add contents it is a json that can be one of the three: * null - include everything * include - only include these ids * exclude - everything except these ids 2025-09-22 13:27:26 +02:00			`'contentsJson TEXT,' +`
add backup targets table 2025-07-24 13:19:27 +02:00			`'creationTime TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,' +`
			`'ts TIMESTAMP DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,' +`
			`'PRIMARY KEY (id)) CHARACTER SET utf8mb4 COLLATE utf8mb4_bin';`

			`await db.runSql(cmd);`

			`const results = await db.runSql('SELECT name, value FROM settings WHERE name=? OR name=? OR name=?', [ 'backup_storage', 'backup_limits', 'backup_policy' ]);`

backuptarget: add default at provisioning time (again) we clear the db in the tests. the tests run the setup again and again. so, it's easier to add default values in provision time instead of migration. 2025-08-06 10:51:46 +02:00			`const domainCountResults = await db.runSql('SELECT COUNT(*) AS total FROM domains');`
			`if (domainCountResults[0].total === 0) {`
			`console.log('This cloudron is not activated. Deleting the default backup config from 20171205124434-settings-default-backupConfig.js'); // will be added at provision time`
backups: remove noop backend the noop backend is migrated into 0 sites config. when the updater code sees that there is no site to backup, it will just fail. user has to manually update with skipBackup flag. 2025-09-22 16:33:51 +02:00			`await deleteOldSettings(db);`
backuptarget: add default at provisioning time (again) we clear the db in the tests. the tests run the setup again and again. so, it's easier to add default values in provision time instead of migration. 2025-08-06 10:51:46 +02:00			`return;`
			`}`

Fix consistent use of enabledForUpdates -> enableForUpdates 2025-09-23 16:42:57 +02:00			`const name = 'Default', enableForUpdates = true;`
backups: add backup multiple targets 2025-07-24 19:02:02 +02:00			`let config = null, limits = null, encryption = null, format = null, provider = null;`
add backup targets table 2025-07-24 13:19:27 +02:00			`let retention = { keepWithinSecs: 2 * 24 * 60 * 60 };`
backups: add backup multiple targets 2025-07-24 19:02:02 +02:00			`let schedule = '00 00 23 * * *';`
backups (tgz): save integrity information we generate a signing key pair for each target. Initially, I had this as global. We needed a route to return the public key and putting it under backup target seemed natural. Since we delete the backups when we delete a target, we lose all the signing hashes. So, it's fine to lose the key pair on target delete. 2025-08-11 19:30:22 +05:30			`const integrityKeyPair = crypto.generateKeyPairSync('ed25519', {`
			`publicKeyEncoding: { type: 'spki', format: 'pem' },`
			`privateKeyEncoding: { type: 'pkcs8', format: 'pem' }`
			`});`

backupsite: remove bc- prefix from id 2025-10-01 10:27:14 +02:00			`const id = crypto.randomUUID();`
add backup targets table 2025-07-24 13:19:27 +02:00
backuptarget: add default at provisioning time (again) we clear the db in the tests. the tests run the setup again and again. so, it's easier to add default values in provision time instead of migration. 2025-08-06 10:51:46 +02:00			`// convert existing configuration into a backup target`
			`for (const r of results) {`
			`if (r.name === 'backup_storage') {`
			`const tmp = JSON.parse(r.value);`
			`// provider is top level`
			`provider = tmp.provider;`

backups: remove noop backend the noop backend is migrated into 0 sites config. when the updater code sees that there is no site to backup, it will just fail. user has to manually update with skipBackup flag. 2025-09-22 16:33:51 +02:00			`if (provider === 'noop') return await deleteOldSettings(db); // noop is migrated as 0 sites. user has to manually update with skipBackup`

backuptarget: add default at provisioning time (again) we clear the db in the tests. the tests run the setup again and again. so, it's easier to add default values in provision time instead of migration. 2025-08-06 10:51:46 +02:00			`// the s3 and filesystem backend use the _provider internal property`
backups: remove noop backend the noop backend is migrated into 0 sites config. when the updater code sees that there is no site to backup, it will just fail. user has to manually update with skipBackup flag. 2025-09-22 16:33:51 +02:00			`if (provider !== 'gcs') tmp._provider = tmp.provider;`
backuptarget: add default at provisioning time (again) we clear the db in the tests. the tests run the setup again and again. so, it's easier to add default values in provision time instead of migration. 2025-08-06 10:51:46 +02:00			`delete tmp.provider;`

			`// backupFolder is now backupDir`
			`if ('backupFolder' in tmp) {`
			`tmp.backupDir = tmp.backupFolder;`
			`delete tmp.backupFolder;`
add backup targets table 2025-07-24 13:19:27 +02:00			`}`
backuptarget: add default at provisioning time (again) we clear the db in the tests. the tests run the setup again and again. so, it's easier to add default values in provision time instead of migration. 2025-08-06 10:51:46 +02:00
			`// encryption is not part of config anymore, it is top level`
			`encryption = tmp.encryption \|\| null;`
			`delete tmp.encryption;`

			`// format is not part of config anymore, it is top level`
			`format = tmp.format;`
			`delete tmp.format;`

			`// previous releases only had a single "managed" mount at /mnt/cloudronbackup .`
			`// new release has it under /mnt/managedbackups .`
			`if (tmp.mountOptions) tmp._managedMountPath = '/mnt/cloudronbackup';`

			`config = tmp;`
			`} else if (r.name === 'backup_limits') {`
			`limits = JSON.parse(r.value);`
			`} else if (r.name === 'backup_policy') {`
			`const tmp = JSON.parse(r.value);`
			`retention = tmp.retention;`
			`schedule = tmp.schedule;`
add backup targets table 2025-07-24 13:19:27 +02:00			`}`
			`}`

backup target: create snapshot and cache files per target snapshot file tracks the snapshot directory. when app gets deleted, the cleaner will remove the upstream snapshot directory when it runs. cache files are used in rsync logic to track what was uploading into snapshot in the previous run without needing to rescan upstream. 2025-07-30 11:19:07 +02:00			`const targetInfoDir = path.join(paths.BACKUP_INFO_DIR, id);`
			console.log(`Moving existing cache and snapshot file into ${targetInfoDir}`);
backup site: create info dir of the clone site 2025-11-17 08:56:46 +01:00			`fs.mkdirSync(targetInfoDir, { recursive: true }); // this gets chown'ed by start.sh`
backup target: create snapshot and cache files per target snapshot file tracks the snapshot directory. when app gets deleted, the cleaner will remove the upstream snapshot directory when it runs. cache files are used in rsync logic to track what was uploading into snapshot in the previous run without needing to rescan upstream. 2025-07-30 11:19:07 +02:00			child_process.execSync(`find ${paths.BACKUP_INFO_DIR}/ -maxdepth 1 -type f -exec mv -t ${targetInfoDir}/ {} +`);

rsync: delete any existing rsync cache files 2025-08-14 10:40:36 +05:30			console.log(`Delete any existing rsync cache files since old one has no integrity information`);
			child_process.execSync(`rm -f ${targetInfoDir}/*.cache`);

backuptarget: add default at provisioning time (again) we clear the db in the tests. the tests run the setup again and again. so, it's easier to add default values in provision time instead of migration. 2025-08-06 10:51:46 +02:00			`await db.runSql('START TRANSACTION');`
Fix consistent use of enabledForUpdates -> enableForUpdates 2025-09-23 16:42:57 +02:00			`await db.runSql('INSERT INTO backupSites (id, name, provider, configJson, limitsJson, integrityKeyPairJson, retentionJson, schedule, encryptionJson, format, enableForUpdates) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)',`
do not store "null" as string in database in other news, JSON.parse('null') returns null. 2025-11-04 09:02:54 +01:00			`[ id, name, provider, JSON.stringify(config), JSON.stringify(limits), JSON.stringify(integrityKeyPair), JSON.stringify(retention), schedule, encryption ? JSON.stringify(encryption) : null, format, enableForUpdates ]);`
backups: remove noop backend the noop backend is migrated into 0 sites config. when the updater code sees that there is no site to backup, it will just fail. user has to manually update with skipBackup flag. 2025-09-22 16:33:51 +02:00			`await deleteOldSettings(db);`
migrate old backup tasks to new type 2025-10-06 13:59:49 +02:00			await db.runSql('UPDATE tasks SET type=? WHERE type=?', [ `backup_${id}`, 'backup' ]); // migrate the tasks
add backup targets table 2025-07-24 13:19:27 +02:00			`await db.runSql('COMMIT');`
			`};`

			`exports.down = async function (db) {`
rename backupTargets to backupSites 2025-09-12 09:48:37 +02:00			`await db.runSql('DROP TABLE backupSites');`
add backup targets table 2025-07-24 13:19:27 +02:00			`};`