@highstate/restic 0.9.20 → 0.9.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. package/dist/highstate.manifest.json +2 -2
  2. package/dist/index.js +2 -2
  3. package/dist/index.js.map +1 -1
  4. package/dist/repository/index.js +1 -1
  5. package/dist/repository/index.js.map +1 -1
  6. package/package.json +14 -9
  7. package/src/job-pair.ts +16 -16
  8. package/src/repository/index.ts +1 -1
package/dist/highstate.manifest.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "sourceHashes": {
3
- "./dist/index.js": 521403499,
4
- "./dist/repository/index.js": 1332058514
3
+ "./dist/index.js": 3278064642,
4
+ "./dist/repository/index.js": 1063115718
5
5
  }
6
6
  }
package/dist/index.js CHANGED
@@ -1,7 +1,7 @@
1
- import { batch } from '@pulumi/kubernetes';
1
+ import { text } from '@highstate/contract';
2
2
  import { Secret, ScriptBundle, Job, createScriptContainer, CronJob, getProvider } from '@highstate/k8s';
3
3
  import { ComponentResource, output, getUnitInstanceName, normalize, toPromise } from '@highstate/pulumi';
4
- import { text } from '@highstate/contract';
4
+ import { batch } from '@pulumi/kubernetes';
5
5
 
6
6
  // src/job-pair.ts
7
7
 
package/dist/index.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["../assets/images.json","../src/scripts.ts","../src/job-pair.ts"],"names":["terminal-restic","cluster","text"],"mappings":";;;;;;;;AACE,IAAAA,eAAAA,GAAmB;AAAA,EAGjB,KAAA,EAAS;AACX,CAAA;ACFK,IAAM,iBAAA,GAAuC;AAAA,EAClD,MAAA,EAAQ;AAAA,IACN,QAAA,EAAU,CAAC,QAAQ;AAAA,GACrB;AAAA,EAEA,MAAA,EAAQ;AAAA,IACN,QAAA,EAAU,CAAC,QAAQ;AAAA,GACrB;AAAA,EAEA,KAAA,EAAO;AAAA,IACL,WAAA,EAAa,IAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA,IAAA,CAAA;AAAA,IAsCb,YAAA,EAAc,IAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA,IAAA;AAAA;AAkClB,CAAA;;;ACmBO,IAAM,aAAA,GAAN,cAA4B,iBAAA,CAAkB;AAAA,EA0BnD,WAAA,CACmB,IAAA,EACA,IAAA,EACA,IAAA,EACjB;AACA,IAAA,KAAA,CAAM,gCAAA,EAAkC,IAAA,EAAM,IAAA,EAAM,IAAI,CAAA;AAJvC,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAIjB,IAAA,MAAM,OAAA,GAAU,MAAA,CAAO,IAAA,CAAK,SAAS,CAAA,CAAE,OAAA;AAEvC,IAAA,IAAA,CAAK,cAAc,MAAA,CAAO,MAAA;AAAA,MACxB,GAAG,IAAI,CAAA,mBAAA,CAAA;AAAA,MACP;AAAA,QACE,WAAW,IAAA,CAAK,SAAA;AAAA,QAEhB,UAAA,EAAY;AAAA,UACV,UAAU,IAAA,CAAK,cAAA;AAAA,UACf,aAAA,EAAe,MAAA,CAAO,IAAA,CAAK,UAAU,CAAA,CAAE;AAAA;AACzC,OACF;AAAA,MACA,EAAE,GAAG,IAAA,EAAM,MAAA,EAAQ,IAAA;AAAK,KAC1B;AAEA,IAAA,IAAA,CAAK,iBAAiB,MAAA,CAAO;AAAA,MAC3B,OAAA;AAAA,MACA,YAAY,IAAA,CAAK;AAAA,KAClB,EAAE,KAAA,CAAM,CAAC,EAAE,OAAA,EAAAC,QAAAA,EAAS,YAAW,KAAM;AACpC,MAAA,MAAM,YAAA,GAAe,UAAA,CAAW,WAAA,CAC7B,OAAA,CAAQ,kBAAkBA,QAAAA,CAAQ,IAAI,CAAA,CACtC,OAAA,CAAQ,cAAc,IAAI,CAAA,CAC1B,OAAA,CAAQ,aAAA,EAAe,qBAAqB,CAAA;AAE/C,MAAA,OAAO,CAAA,OAAA,EAAU,UAAA,CAAW,UAAU,CAAA,CAAA,EAAI,YAAY,CAAA,CAAA;AAAA,IACxD,CAAC,CAAA;AAED,IAAA,IAAA,CAAK,eAAe,IAAI,YAAA;AAAA,MACtB,GAAG,IAAI,CAAA,eAAA,CAAA;AAAA,MACP;AAAA,QACE,WAAW,IAAA,CAAK,SAAA;AAAA,QAChB,YAAA,EAAc,KAAK,YAAA,IAAgB,QAAA;AAAA,QAEnC,cAAc,MAAA,CAAO;AAAA,UACnB,aAAa,IAAA,CAAK,WAAA;AAAA,UAClB,cAAc,IAAA,CAAK;AAAA,SACpB,CAAA,CAAE,KAAA,CAAM,CAAC,EAAE,WAAA,EAAa,cAAa,KAAM;AAAA,UAC1C,iBAAA;AAAA,UACA;AAAA,YACE,MAAA,EAAQ;AAAA,cACN,QAAA,EAAU,CAAC,QAAQ;AAAA,aACrB;AAAA,YAEA,MAAA,EAAQ;AAAA,cACN,kBAAA,EAAoB,CAAC,MAAA,EAAQ,OAAO,CAAA;AAAA,cAEpC,iBAAA,EAAmB;AAAA,gBACjB,WAAA,EAAaC,IAAAA;AAAA;AAAA;;AAAA;AAAA,gBAAA;AAAA,eAMf;AAAA,cAEA,gBAAA,EAAkB,CAAC,gBAAA,EAAkB,0BAA0B;AAAA,aACjE;AAAA,YAEA,kBAAkB,MAAA,CAAO;AAAA,cACvB,kBAAkB,IAAA,CAAK,gBAAA;AAAA,cACvB,YAAY,IAAA,CAAK;AAAA,aAClB,CAAA,CAAE,KAAA,CAAM,CAAC,EAAE,gBAAA,EAAkB,YAAW,KAAM;AAAA,cAC7C,GAAI,oBAAoB,EAAC;AAAA,cACzB,GAAI,UAAA,CAAW,eAAA,IAAmB;AAAC,aACpC,CAAA;AAAA,YAED,WAAA,EAAa;AAAA,cACX,mBAAmB,IAAA,CAAK,cAAA;AAAA,cACxB,oBAAA,EAAsB,uBAAA;AAAA,cACtB,eAAA,EAAiB,SAAA;AAAA,cACjB,aAAA,EAAe,0BAAA;AAAA,cACf,oBAAA,EAAsB,MAAA,CAAO,IAAA,CAAK,aAAa,CAAA,CAAE,MAAM,CAAA,OAAA,KAAW,OAAA,EAAS,IAAA,CAAK,GAAG,CAAC;AAAA,aACtF;AAAA,YAEA,OAAA,EAAS,CAAC,IAAA,CAAK,WAAA,EAAa,GAAI,IAAA,CAAK,MAAA,GAAS,CAAC,IAAA,CAAK,MAAM,CAAA,GAAI,EAAG,CAAA;AAAA,YAEjE,YAAA,EAAc;AAAA,cACZ;AAAA,gBACE,QAAQ,IAAA,CAAK,WAAA;AAAA,gBACb,SAAA,EAAW,cAAA;AAAA,gBACX,QAAA,EAAU;AAAA,eACZ;AAAA,cACA,GAAI,KAAK,MAAA,GACL;AAAA,gBACE;AAAA,kBACE,QAAQ,IAAA,CAAK,MAAA;AAAA,kBACb,SAAA,EAAW,OAAA;AAAA,kBACX,SAAS,IAAA,CAAK;AAAA;AAChB,kBAEF;AAAC;AACP,WACF;AAAA,UACA,GAAG,SAAA,CAAU,WAAA,EAAa,YAAY;AAAA,SACvC;AAAA,OACH;AAAA,MACA,EAAE,GAAG,IAAA,EAAM,MAAA,EAAQ,IAAA;AAAK,KAC1B;AAEA,IAAA,IAAA,CAAK,aAAa,GAAA,CAAI,MAAA;AAAA,MACpB,GAAG,IAAI,CAAA,QAAA,CAAA;AAAA,MACP;AAAA,QACE,WAAW,IAAA,CAAK,SAAA;AAAA,QAEhB,SAAA,EAAW,MAAA,CAAO,IAAA,CAAK,gBAAgB,CAAA,CAAE,KAAA;AAAA,UAAM,sBAC7C,qBAAA,CAAsB;AAAA,YACpB,GAAG,gBAAA;AAAA,YACH,IAAA,EAAM,YAAA;AAAA,YACN,QAAQ,IAAA,CAAK;AAAA,WACd;AAAA,SACH;AAAA,QAEA,YAAA,EAAc;AAAA,OAChB;AAAA,MACA,EAAE,GAAG,IAAA,EAAM,MAAA,EAAQ,IAAA;AAAK,KAC1B;AAEA,IAAA,IAAA,CAAK,YAAY,OAAA,CAAQ,MAAA;AAAA,MACvB,GAAG,IAAI,CAAA,OAAA,CAAA;AAAA,MACP;AAAA,QACE,WAAW,IAAA,CAAK,SAAA;AAAA,QAEhB,SAAA,EAAW,MAAA,CAAO,IAAA,CAAK,eAAe,CAAA,CAAE,KAAA;AAAA,UAAM,qBAC5C,qBAAA,CAAsB;AAAA,YACpB,GAAG,eAAA;AAAA,YACH,IAAA,EAAM,WAAA;AAAA,YACN,QAAQ,IAAA,CAAK;AAAA,WACd;AAAA,SACH;AAAA,QAEA,QAAA,EAAU,KAAK,QAAA,IAAY,WAAA;AAAA,QAC3B,iBAAA,EAAmB,QAAA;AAAA,QAEnB,WAAA,EAAa;AAAA,UACX,IAAA,EAAM;AAAA,YACJ,YAAA,EAAc;AAAA;AAChB;AACF,OACF;AAAA,MACA,EAAE,GAAG,IAAA,EAAM,MAAA,EAAQ,IAAA;AAAK,KAC1B;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EA1KS,WAAA;AAAA;AAAA;AAAA;AAAA,EAKA,YAAA;AAAA;AAAA;AAAA;AAAA,EAKA,UAAA;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA;AAAA;AAAA;AAAA;AAAA,EAKA,cAAA;AAAA,EAwJT,cAAc,QAAA,EAAwD;AACpE,IAAA,MAAM,WAAA,GAAc,CAAA,yBAAA,EAA4B,IAAA,CAAK,IAAI,CAAA,CAAA;AACzD,IAAA,MAAM,iBAAiB,QAAA,CAAS,IAAA,CAAK,CAAA,OAAA,KAAW,OAAA,CAAQ,SAAS,WAAW,CAAA;AAE5E,IAAA,IAAI,cAAA,EAAgB;AAClB,MAAA,KAAK,KAAK,wBAAA,EAAyB;AACnC,MAAA;AAAA,IACF;AAEA,IAAA,OAAO;AAAA,MACL,IAAA,EAAM,WAAA;AAAA,MACN,IAAA,EAAM;AAAA,QACJ,KAAA,EAAO,mBAAA;AAAA,QACP,WAAA,EAAa,CAAA,YAAA,EAAe,IAAA,CAAK,IAAI,CAAA,oBAAA,CAAA;AAAA,QACrC,IAAA,EAAM;AAAA,OACR;AAAA,MACA,IAAA,EAAM;AAAA,QACJ,IAAA,EAAM;AAAA;AACR,KACF;AAAA,EACF;AAAA,EAEA,cAAA,GAAuC;AACrC,IAAA,OAAO,MAAA,CAAO;AAAA,MACZ,cAAA,EAAgB,KAAK,IAAA,CAAK,cAAA;AAAA,MAC1B,UAAA,EAAY,KAAK,IAAA,CAAK,UAAA;AAAA,MACtB,gBAAgB,IAAA,CAAK;AAAA,KACtB,EAAE,KAAA,CAAM,CAAC,EAAE,cAAA,EAAgB,UAAA,EAAY,gBAAe,MAAO;AAAA,MAC5D,IAAA,EAAM,QAAA;AAAA,MAEN,IAAA,EAAM;AAAA,QACJ,KAAA,EAAO,QAAA;AAAA,QACP,WAAA,EAAa,0BAAA;AAAA,QACb,IAAA,EAAM;AAAA,OACR;AAAA,MAEA,IAAA,EAAM;AAAA,QACJ,OAAcF,eAAAA,CAAmB,KAAA;AAAA,QACjC,OAAA,EAAS,CAAC,MAAA,EAAQ,aAAa,CAAA;AAAA,QAE/B,KAAA,EAAO;AAAA,UACL,aAAA,EAAe;AAAA,YACb,IAAA,EAAM,EAAE,IAAA,EAAM,aAAA,EAAc;AAAA,YAC5B,OAAA,EAAS;AAAA,cACP,IAAA,EAAM,UAAA;AAAA,cACN,KAAA,EAAOE,IAAAA;AAAA;AAAA;;AAAA;AAAA,cAAA;AAAA;AAMT,WACF;AAAA,UAEA,uBAAA,EAAyB;AAAA,YACvB,IAAA,EAAM,EAAE,IAAA,EAAM,uBAAA,EAAwB;AAAA,YACtC,OAAA,EAAS;AAAA,cACP,IAAA,EAAM,UAAA;AAAA,cACN,KAAA,EAAO;AAAA;AACT,WACF;AAAA,UAEA,kCAAA,EAAoC;AAAA,YAClC,IAAA,EAAM,EAAE,IAAA,EAAM,kCAAA,EAAmC;AAAA,YACjD,OAAA,EAAS;AAAA,cACP,IAAA,EAAM,UAAA;AAAA,cACN,OAAO,UAAA,CAAW;AAAA;AACpB;AACF,SACF;AAAA,QAEA,GAAA,EAAK;AAAA,UACH,iBAAA,EAAmB,cAAA;AAAA,UACnB,oBAAA,EAAsB;AAAA;AACxB;AACF,KACF,CAAE,CAAA;AAAA,EACJ;AAAA,EAEA,MAAc,wBAAA,GAA0C;AACtD,IAAA,MAAM,OAAA,GAAU,MAAM,SAAA,CAAU,MAAA,CAAO,KAAK,IAAA,CAAK,SAAS,EAAE,OAAO,CAAA;AAEnE,IAAA,IAAI,MAAM,EAAA,CAAG,GAAA;AAAA,MACX,CAAA,EAAG,KAAK,IAAI,CAAA,kBAAA,CAAA;AAAA,MACZ;AAAA,QACE,QAAA,EAAU;AAAA,UACR,IAAA,EAAM,CAAA,EAAG,IAAA,CAAK,IAAI,CAAA,kBAAA,CAAA;AAAA,UAClB,SAAA,EAAW,IAAA,CAAK,SAAA,CAAU,QAAA,CAAS;AAAA,SACrC;AAAA,QACA,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,IAAA,CAAK,WAAA,CAAY;AAAA,OACxC;AAAA,MACA,EAAE,GAAG,IAAA,CAAK,IAAA,EAAM,QAAQ,IAAA,EAAM,QAAA,EAAU,WAAA,CAAY,OAAO,CAAA;AAAE,KAC/D;AAAA,EACF;AACF","file":"index.js","sourcesContent":["{\n \"terminal-restic\": {\n \"name\": \"ghcr.io/exeteres/highstate/terminal-restic\",\n \"tag\": \"latest\",\n \"image\": \"ghcr.io/exeteres/highstate/terminal-restic:latest@sha256:10ff1f65bbc5d5f84e0accc388c28ddb97f8a1a824bd7a90d2d5674506f5dee3\"\n }\n}\n","import type { ScriptEnvironment } from \"@highstate/k8s\"\nimport { text } from \"@highstate/contract\"\n\nexport const backupEnvironment: ScriptEnvironment = {\n alpine: {\n packages: [\"restic\"],\n },\n\n ubuntu: {\n packages: [\"restic\"],\n },\n\n files: {\n \"backup.sh\": text`\n #!/bin/sh\n set -e\n\n # Init the repo if it doesn't exist\n echo \"| Checking the repository\"\n if restic snapshots > /dev/null 2>&1; then\n echo \"| Repository is ready\"\n else\n echo \"| Initializing new repository\"\n restic init\n fi\n\n # Execute lock script if it exists\n if [ -f /scripts/lock.sh ]; then\n /scripts/lock.sh || (echo \"| error: lock script failed\" && exit 1)\n fi\n\n # Unlock the data source on exit\n if [ -f /scripts/unlock.sh ]; then\n trap \"echo '/scripts/unlock.sh || (echo '| error: unlock script failed' && exit 1)\" EXIT\n fi\n\n # Perform online backup if the corresponding script exists\n if [ -f /scripts/online-backup.sh ]; then\n /scripts/online-backup.sh || (echo \"| error: online backup script failed\" && exit 1)\n fi\n\n # Backup the volume\n echo \"| Backing up /data\"\n restic backup -H \"$RESTIC_HOSTNAME\" /data $EXTRA_BACKUP_OPTIONS\n\n # Forget old snapshots\n echo \"| Forgetting old snapshots\"\n restic forget --host \"$RESTIC_HOSTNAME\" --keep-daily 7 --keep-weekly 4 --keep-monthly 6\n echo \"| Backup complete\"\n `,\n\n \"restore.sh\": text`\n #!/bin/sh\n set -e\n\n # Check if /data is empty\n echo \"| Checking if volume is empty\"\n if [ \"$(find /data -type f -print -quit 2>/dev/null)\" ]; then\n echo \"| Volume is not empty. Skipping restore.\"\n exit 0\n fi\n\n # Check if at least one snapshot exists\n echo \"| Checking for snapshots\"\n if ! result=$(restic list snapshots); then\n echo \"| No snapshots found. Skipping restore.\"\n exit 0\n fi\n\n if [ -z \"$result\" ]; then\n echo \"| No snapshots found. Skipping restore.\"\n exit 0\n fi\n\n # Restore the volume\n echo \"| Restoring /data\"\n restic restore -H \"$RESTIC_HOSTNAME\" latest --target /\n echo \"| Volume restored.\"\n\n # Post-restore script\n if [ -f /scripts/post-restore.sh ]; then\n /scripts/post-restore.sh || (echo \"| error: post-restore script failed\" && exit 1)\n fi\n `,\n },\n}\n","import type { restic } from \"@highstate/library\"\nimport type { InputL34Endpoint } from \"@highstate/common\"\nimport { batch } from \"@pulumi/kubernetes\"\nimport {\n createScriptContainer,\n CronJob,\n getProvider,\n Job,\n ScriptBundle,\n Secret,\n type Container,\n type ScriptDistribution,\n type ScriptEnvironment,\n type ScopedResourceArgs,\n type WorkloadVolume,\n} from \"@highstate/k8s\"\nimport {\n ComponentResource,\n getUnitInstanceName,\n normalize,\n output,\n type Output,\n toPromise,\n type ComponentResourceOptions,\n type Input,\n type InputArray,\n} from \"@highstate/pulumi\"\nimport {\n text,\n type UnitTerminal,\n type UnitTrigger,\n type TriggerInvocation,\n} from \"@highstate/contract\"\nimport * as images from \"../assets/images.json\"\nimport { backupEnvironment } from \"./scripts\"\n\nexport type BackupJobPairArgs = ScopedResourceArgs & {\n /**\n * The repository to backup/restore to/from.\n */\n resticRepo: Input<restic.Repository>\n\n /**\n * The password used to encrypt the backups.\n */\n backupPassword: Input<string>\n\n /**\n * The extra script environment to pass to the backup and restore scripts.\n */\n environment?: Input<ScriptEnvironment>\n\n /**\n * The extra script environments to pass to the backup and restore scripts.\n */\n environments?: InputArray<ScriptEnvironment>\n\n /**\n * The volume to backup.\n */\n volume?: Input<WorkloadVolume>\n\n /**\n * The sup path of the volume to restore/backup.\n */\n subPath?: Input<string>\n\n /**\n * The schedule for the backup job.\n *\n * By default, the backup job runs every day at midnight.\n */\n schedule?: Input<string>\n\n /**\n * The extra options to pass to the backup script.\n */\n backupOptions?: InputArray<string>\n\n /**\n * The extra options for the backup container.\n */\n backupContainer?: Input<Container>\n\n /**\n * The extra options for the restore container.\n */\n restoreContainer?: Input<Container>\n\n /**\n * The distribution to use for the scripts.\n *\n * By default, the distribution is `alpine`.\n *\n * You can also use `ubuntu` if you need to install packages that are not available (or working) in Alpine.\n */\n distribution?: ScriptDistribution\n\n /**\n * Extra allowed endpoints for the backup and restore jobs.\n */\n allowedEndpoints?: InputArray<InputL34Endpoint>\n}\n\nexport class BackupJobPair extends ComponentResource {\n /**\n * The credentials used to access the repository and encrypt the backups.\n */\n readonly credentials: Secret\n\n /**\n * The script bundle used by the backup and restore jobs.\n */\n readonly scriptBundle: ScriptBundle\n\n /**\n * The job resource which restores the volume from the backup before creating an application.\n */\n readonly restoreJob: Job\n\n /**\n * The cron job resource which backups the volume regularly.\n */\n readonly backupJob: CronJob\n\n /**\n * The full name of the Restic repository.\n */\n readonly resticRepoPath: Output<string>\n\n constructor(\n private readonly name: string,\n private readonly args: BackupJobPairArgs,\n private readonly opts?: ComponentResourceOptions,\n ) {\n super(\"highstate:restic:BackupJobPair\", name, args, opts)\n\n const cluster = output(args.namespace).cluster\n\n this.credentials = Secret.create(\n `${name}-backup-credentials`,\n {\n namespace: args.namespace,\n\n stringData: {\n password: args.backupPassword,\n \"rclone.conf\": output(args.resticRepo).rcloneConfig,\n },\n },\n { ...opts, parent: this },\n )\n\n this.resticRepoPath = output({\n cluster,\n resticRepo: args.resticRepo,\n }).apply(({ cluster, resticRepo }) => {\n const relativePath = resticRepo.pathPattern\n .replace(/\\$clusterName/g, cluster.name)\n .replace(/\\$appName/g, name)\n .replace(/\\$unitName/g, getUnitInstanceName())\n\n return `rclone:${resticRepo.remoteName}:${relativePath}`\n })\n\n this.scriptBundle = new ScriptBundle(\n `${name}-backup-scripts`,\n {\n namespace: args.namespace,\n distribution: args.distribution ?? \"alpine\",\n\n environments: output({\n environment: args.environment,\n environments: args.environments,\n }).apply(({ environment, environments }) => [\n backupEnvironment,\n {\n alpine: {\n packages: [\"rclone\"],\n },\n\n ubuntu: {\n preInstallPackages: [\"curl\", \"unzip\"],\n\n preInstallScripts: {\n \"rclone.sh\": text`\n #!/bin/sh\n set -e\n\n curl https://rclone.org/install.sh | bash\n `,\n },\n\n allowedEndpoints: [\"rclone.org:443\", \"downloads.rclone.org:443\"],\n },\n\n allowedEndpoints: output({\n allowedEndpoints: args.allowedEndpoints,\n resticRepo: args.resticRepo,\n }).apply(({ allowedEndpoints, resticRepo }) => [\n ...(allowedEndpoints ?? []),\n ...(resticRepo.remoteEndpoints ?? []),\n ]),\n\n environment: {\n RESTIC_REPOSITORY: this.resticRepoPath,\n RESTIC_PASSWORD_FILE: \"/credentials/password\",\n RESTIC_HOSTNAME: \"default\",\n RCLONE_CONFIG: \"/credentials/rclone.conf\",\n EXTRA_BACKUP_OPTIONS: output(args.backupOptions).apply(options => options?.join(\" \")),\n },\n\n volumes: [this.credentials, ...(args.volume ? [args.volume] : [])],\n\n volumeMounts: [\n {\n volume: this.credentials,\n mountPath: \"/credentials\",\n readOnly: true,\n },\n ...(args.volume\n ? [\n {\n volume: args.volume,\n mountPath: \"/data\",\n subPath: args.subPath,\n },\n ]\n : []),\n ],\n } satisfies ScriptEnvironment,\n ...normalize(environment, environments),\n ]),\n },\n { ...opts, parent: this },\n )\n\n this.restoreJob = Job.create(\n `${name}-restore`,\n {\n namespace: args.namespace,\n\n container: output(args.restoreContainer).apply(restoreContainer =>\n createScriptContainer({\n ...restoreContainer,\n main: \"restore.sh\",\n bundle: this.scriptBundle,\n }),\n ),\n\n backoffLimit: 2,\n },\n { ...opts, parent: this },\n )\n\n this.backupJob = CronJob.create(\n `${name}-backup`,\n {\n namespace: args.namespace,\n\n container: output(args.backupContainer).apply(backupContainer =>\n createScriptContainer({\n ...backupContainer,\n main: \"backup.sh\",\n bundle: this.scriptBundle,\n }),\n ),\n\n schedule: args.schedule ?? \"0 0 * * *\",\n concurrencyPolicy: \"Forbid\",\n\n jobTemplate: {\n spec: {\n backoffLimit: 2,\n },\n },\n },\n { ...opts, parent: this },\n )\n }\n\n handleTrigger(triggers: TriggerInvocation[]): UnitTrigger | undefined {\n const triggerName = `restic.backup-on-destroy.${this.name}`\n const invokedTrigger = triggers.find(trigger => trigger.name === triggerName)\n\n if (invokedTrigger) {\n void this.createBackupOnDestroyJob()\n return\n }\n\n return {\n name: triggerName,\n meta: {\n title: \"Backup on Destroy\",\n description: `Backup the \"${this.name}\" before destroying.`,\n icon: \"material-symbols:backup\",\n },\n spec: {\n type: \"before-destroy\",\n },\n }\n }\n\n createTerminal(): Output<UnitTerminal> {\n return output({\n backupPassword: this.args.backupPassword,\n resticRepo: this.args.resticRepo,\n resticRepoPath: this.resticRepoPath,\n }).apply(({ backupPassword, resticRepo, resticRepoPath }) => ({\n name: \"restic\",\n\n meta: {\n title: \"Restic\",\n description: \"Manage Restic repository\",\n icon: \"material-symbols:backup\",\n },\n\n spec: {\n image: images[\"terminal-restic\"].image,\n command: [\"bash\", \"/welcome.sh\"],\n\n files: {\n \"/welcome.sh\": {\n meta: { name: \"/welcome.sh\" },\n content: {\n type: \"embedded\" as const,\n value: text`\n echo \"Use 'restic' to manage the repository.\"\n echo\n\n exec bash\n `,\n },\n },\n\n \"/credentials/password\": {\n meta: { name: \"/credentials/password\" },\n content: {\n type: \"embedded\" as const,\n value: backupPassword,\n },\n },\n\n \"/root/.config/rclone/rclone.conf\": {\n meta: { name: \"/root/.config/rclone/rclone.conf\" },\n content: {\n type: \"embedded\" as const,\n value: resticRepo.rcloneConfig,\n },\n },\n },\n\n env: {\n RESTIC_REPOSITORY: resticRepoPath,\n RESTIC_PASSWORD_FILE: \"/credentials/password\",\n },\n },\n }))\n }\n\n private async createBackupOnDestroyJob(): Promise<void> {\n const cluster = await toPromise(output(this.args.namespace).cluster)\n\n new batch.v1.Job(\n `${this.name}-backup-on-destroy`,\n {\n metadata: {\n name: `${this.name}-backup-on-destroy`,\n namespace: this.backupJob.metadata.namespace,\n },\n spec: this.backupJob.spec.jobTemplate.spec,\n },\n { ...this.opts, parent: this, provider: getProvider(cluster) },\n )\n }\n}\n"]}
1
+ {"version":3,"sources":["../assets/images.json","../src/scripts.ts","../src/job-pair.ts"],"names":["terminal-restic","cluster","text"],"mappings":";;;;;;;;AACE,IAAAA,eAAAA,GAAmB;AAAA,EAGjB,KAAA,EAAS;AACX,CAAA;ACFK,IAAM,iBAAA,GAAuC;AAAA,EAClD,MAAA,EAAQ;AAAA,IACN,QAAA,EAAU,CAAC,QAAQ;AAAA,GACrB;AAAA,EAEA,MAAA,EAAQ;AAAA,IACN,QAAA,EAAU,CAAC,QAAQ;AAAA,GACrB;AAAA,EAEA,KAAA,EAAO;AAAA,IACL,WAAA,EAAa,IAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA,IAAA,CAAA;AAAA,IAsCb,YAAA,EAAc,IAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;;AAAA;AAAA;AAAA;AAAA;AAAA,IAAA;AAAA;AAkClB,CAAA;;;ACmBO,IAAM,aAAA,GAAN,cAA4B,iBAAA,CAAkB;AAAA,EA0BnD,WAAA,CACmB,IAAA,EACA,IAAA,EACA,IAAA,EACjB;AACA,IAAA,KAAA,CAAM,gCAAA,EAAkC,IAAA,EAAM,IAAA,EAAM,IAAI,CAAA;AAJvC,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAIjB,IAAA,MAAM,OAAA,GAAU,MAAA,CAAO,IAAA,CAAK,SAAS,CAAA,CAAE,OAAA;AAEvC,IAAA,IAAA,CAAK,cAAc,MAAA,CAAO,MAAA;AAAA,MACxB,GAAG,IAAI,CAAA,mBAAA,CAAA;AAAA,MACP;AAAA,QACE,WAAW,IAAA,CAAK,SAAA;AAAA,QAEhB,UAAA,EAAY;AAAA,UACV,UAAU,IAAA,CAAK,cAAA;AAAA,UACf,aAAA,EAAe,MAAA,CAAO,IAAA,CAAK,UAAU,CAAA,CAAE;AAAA;AACzC,OACF;AAAA,MACA,EAAE,GAAG,IAAA,EAAM,MAAA,EAAQ,IAAA;AAAK,KAC1B;AAEA,IAAA,IAAA,CAAK,iBAAiB,MAAA,CAAO;AAAA,MAC3B,OAAA;AAAA,MACA,YAAY,IAAA,CAAK;AAAA,KAClB,EAAE,KAAA,CAAM,CAAC,EAAE,OAAA,EAAAC,QAAAA,EAAS,YAAW,KAAM;AACpC,MAAA,MAAM,YAAA,GAAe,UAAA,CAAW,WAAA,CAC7B,OAAA,CAAQ,kBAAkBA,QAAAA,CAAQ,IAAI,CAAA,CACtC,OAAA,CAAQ,cAAc,IAAI,CAAA,CAC1B,OAAA,CAAQ,aAAA,EAAe,qBAAqB,CAAA;AAE/C,MAAA,OAAO,CAAA,OAAA,EAAU,UAAA,CAAW,UAAU,CAAA,CAAA,EAAI,YAAY,CAAA,CAAA;AAAA,IACxD,CAAC,CAAA;AAED,IAAA,IAAA,CAAK,eAAe,IAAI,YAAA;AAAA,MACtB,GAAG,IAAI,CAAA,eAAA,CAAA;AAAA,MACP;AAAA,QACE,WAAW,IAAA,CAAK,SAAA;AAAA,QAChB,YAAA,EAAc,KAAK,YAAA,IAAgB,QAAA;AAAA,QAEnC,cAAc,MAAA,CAAO;AAAA,UACnB,aAAa,IAAA,CAAK,WAAA;AAAA,UAClB,cAAc,IAAA,CAAK;AAAA,SACpB,CAAA,CAAE,KAAA,CAAM,CAAC,EAAE,WAAA,EAAa,cAAa,KAAM;AAAA,UAC1C,iBAAA;AAAA,UACA;AAAA,YACE,MAAA,EAAQ;AAAA,cACN,QAAA,EAAU,CAAC,QAAQ;AAAA,aACrB;AAAA,YAEA,MAAA,EAAQ;AAAA,cACN,kBAAA,EAAoB,CAAC,MAAA,EAAQ,OAAO,CAAA;AAAA,cAEpC,iBAAA,EAAmB;AAAA,gBACjB,WAAA,EAAaC,IAAAA;AAAA;AAAA;;AAAA;AAAA,gBAAA;AAAA,eAMf;AAAA,cAEA,gBAAA,EAAkB,CAAC,gBAAA,EAAkB,0BAA0B;AAAA,aACjE;AAAA,YAEA,kBAAkB,MAAA,CAAO;AAAA,cACvB,kBAAkB,IAAA,CAAK,gBAAA;AAAA,cACvB,YAAY,IAAA,CAAK;AAAA,aAClB,CAAA,CAAE,KAAA,CAAM,CAAC,EAAE,gBAAA,EAAkB,YAAW,KAAM;AAAA,cAC7C,GAAI,oBAAoB,EAAC;AAAA,cACzB,GAAI,UAAA,CAAW,eAAA,IAAmB;AAAC,aACpC,CAAA;AAAA,YAED,WAAA,EAAa;AAAA,cACX,mBAAmB,IAAA,CAAK,cAAA;AAAA,cACxB,oBAAA,EAAsB,uBAAA;AAAA,cACtB,eAAA,EAAiB,SAAA;AAAA,cACjB,aAAA,EAAe,0BAAA;AAAA,cACf,oBAAA,EAAsB,MAAA,CAAO,IAAA,CAAK,aAAa,CAAA,CAAE,MAAM,CAAA,OAAA,KAAW,OAAA,EAAS,IAAA,CAAK,GAAG,CAAC;AAAA,aACtF;AAAA,YAEA,OAAA,EAAS,CAAC,IAAA,CAAK,WAAA,EAAa,GAAI,IAAA,CAAK,MAAA,GAAS,CAAC,IAAA,CAAK,MAAM,CAAA,GAAI,EAAG,CAAA;AAAA,YAEjE,YAAA,EAAc;AAAA,cACZ;AAAA,gBACE,QAAQ,IAAA,CAAK,WAAA;AAAA,gBACb,SAAA,EAAW,cAAA;AAAA,gBACX,QAAA,EAAU;AAAA,eACZ;AAAA,cACA,GAAI,KAAK,MAAA,GACL;AAAA,gBACE;AAAA,kBACE,QAAQ,IAAA,CAAK,MAAA;AAAA,kBACb,SAAA,EAAW,OAAA;AAAA,kBACX,SAAS,IAAA,CAAK;AAAA;AAChB,kBAEF;AAAC;AACP,WACF;AAAA,UACA,GAAG,SAAA,CAAU,WAAA,EAAa,YAAY;AAAA,SACvC;AAAA,OACH;AAAA,MACA,EAAE,GAAG,IAAA,EAAM,MAAA,EAAQ,IAAA;AAAK,KAC1B;AAEA,IAAA,IAAA,CAAK,aAAa,GAAA,CAAI,MAAA;AAAA,MACpB,GAAG,IAAI,CAAA,QAAA,CAAA;AAAA,MACP;AAAA,QACE,WAAW,IAAA,CAAK,SAAA;AAAA,QAEhB,SAAA,EAAW,MAAA,CAAO,IAAA,CAAK,gBAAgB,CAAA,CAAE,KAAA;AAAA,UAAM,sBAC7C,qBAAA,CAAsB;AAAA,YACpB,GAAG,gBAAA;AAAA,YACH,IAAA,EAAM,YAAA;AAAA,YACN,QAAQ,IAAA,CAAK;AAAA,WACd;AAAA,SACH;AAAA,QAEA,YAAA,EAAc;AAAA,OAChB;AAAA,MACA,EAAE,GAAG,IAAA,EAAM,MAAA,EAAQ,IAAA;AAAK,KAC1B;AAEA,IAAA,IAAA,CAAK,YAAY,OAAA,CAAQ,MAAA;AAAA,MACvB,GAAG,IAAI,CAAA,OAAA,CAAA;AAAA,MACP;AAAA,QACE,WAAW,IAAA,CAAK,SAAA;AAAA,QAEhB,SAAA,EAAW,MAAA,CAAO,IAAA,CAAK,eAAe,CAAA,CAAE,KAAA;AAAA,UAAM,qBAC5C,qBAAA,CAAsB;AAAA,YACpB,GAAG,eAAA;AAAA,YACH,IAAA,EAAM,WAAA;AAAA,YACN,QAAQ,IAAA,CAAK;AAAA,WACd;AAAA,SACH;AAAA,QAEA,QAAA,EAAU,KAAK,QAAA,IAAY,WAAA;AAAA,QAC3B,iBAAA,EAAmB,QAAA;AAAA,QAEnB,WAAA,EAAa;AAAA,UACX,IAAA,EAAM;AAAA,YACJ,YAAA,EAAc;AAAA;AAChB;AACF,OACF;AAAA,MACA,EAAE,GAAG,IAAA,EAAM,MAAA,EAAQ,IAAA;AAAK,KAC1B;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EA1KS,WAAA;AAAA;AAAA;AAAA;AAAA,EAKA,YAAA;AAAA;AAAA;AAAA;AAAA,EAKA,UAAA;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA;AAAA;AAAA;AAAA;AAAA,EAKA,cAAA;AAAA,EAwJT,cAAc,QAAA,EAAwD;AACpE,IAAA,MAAM,WAAA,GAAc,CAAA,yBAAA,EAA4B,IAAA,CAAK,IAAI,CAAA,CAAA;AACzD,IAAA,MAAM,iBAAiB,QAAA,CAAS,IAAA,CAAK,CAAA,OAAA,KAAW,OAAA,CAAQ,SAAS,WAAW,CAAA;AAE5E,IAAA,IAAI,cAAA,EAAgB;AAClB,MAAA,KAAK,KAAK,wBAAA,EAAyB;AACnC,MAAA;AAAA,IACF;AAEA,IAAA,OAAO;AAAA,MACL,IAAA,EAAM,WAAA;AAAA,MACN,IAAA,EAAM;AAAA,QACJ,KAAA,EAAO,mBAAA;AAAA,QACP,WAAA,EAAa,CAAA,YAAA,EAAe,IAAA,CAAK,IAAI,CAAA,oBAAA,CAAA;AAAA,QACrC,IAAA,EAAM;AAAA,OACR;AAAA,MACA,IAAA,EAAM;AAAA,QACJ,IAAA,EAAM;AAAA;AACR,KACF;AAAA,EACF;AAAA,EAEA,cAAA,GAAuC;AACrC,IAAA,OAAO,MAAA,CAAO;AAAA,MACZ,cAAA,EAAgB,KAAK,IAAA,CAAK,cAAA;AAAA,MAC1B,UAAA,EAAY,KAAK,IAAA,CAAK,UAAA;AAAA,MACtB,gBAAgB,IAAA,CAAK;AAAA,KACtB,EAAE,KAAA,CAAM,CAAC,EAAE,cAAA,EAAgB,UAAA,EAAY,gBAAe,MAAO;AAAA,MAC5D,IAAA,EAAM,QAAA;AAAA,MAEN,IAAA,EAAM;AAAA,QACJ,KAAA,EAAO,QAAA;AAAA,QACP,WAAA,EAAa,0BAAA;AAAA,QACb,IAAA,EAAM;AAAA,OACR;AAAA,MAEA,IAAA,EAAM;AAAA,QACJ,OAAcF,eAAAA,CAAmB,KAAA;AAAA,QACjC,OAAA,EAAS,CAAC,MAAA,EAAQ,aAAa,CAAA;AAAA,QAE/B,KAAA,EAAO;AAAA,UACL,aAAA,EAAe;AAAA,YACb,IAAA,EAAM,EAAE,IAAA,EAAM,aAAA,EAAc;AAAA,YAC5B,OAAA,EAAS;AAAA,cACP,IAAA,EAAM,UAAA;AAAA,cACN,KAAA,EAAOE,IAAAA;AAAA;AAAA;;AAAA;AAAA,cAAA;AAAA;AAMT,WACF;AAAA,UAEA,uBAAA,EAAyB;AAAA,YACvB,IAAA,EAAM,EAAE,IAAA,EAAM,uBAAA,EAAwB;AAAA,YACtC,OAAA,EAAS;AAAA,cACP,IAAA,EAAM,UAAA;AAAA,cACN,KAAA,EAAO;AAAA;AACT,WACF;AAAA,UAEA,kCAAA,EAAoC;AAAA,YAClC,IAAA,EAAM,EAAE,IAAA,EAAM,kCAAA,EAAmC;AAAA,YACjD,OAAA,EAAS;AAAA,cACP,IAAA,EAAM,UAAA;AAAA,cACN,OAAO,UAAA,CAAW;AAAA;AACpB;AACF,SACF;AAAA,QAEA,GAAA,EAAK;AAAA,UACH,iBAAA,EAAmB,cAAA;AAAA,UACnB,oBAAA,EAAsB;AAAA;AACxB;AACF,KACF,CAAE,CAAA;AAAA,EACJ;AAAA,EAEA,MAAc,wBAAA,GAA0C;AACtD,IAAA,MAAM,OAAA,GAAU,MAAM,SAAA,CAAU,MAAA,CAAO,KAAK,IAAA,CAAK,SAAS,EAAE,OAAO,CAAA;AAEnE,IAAA,IAAI,MAAM,EAAA,CAAG,GAAA;AAAA,MACX,CAAA,EAAG,KAAK,IAAI,CAAA,kBAAA,CAAA;AAAA,MACZ;AAAA,QACE,QAAA,EAAU;AAAA,UACR,IAAA,EAAM,CAAA,EAAG,IAAA,CAAK,IAAI,CAAA,kBAAA,CAAA;AAAA,UAClB,SAAA,EAAW,IAAA,CAAK,SAAA,CAAU,QAAA,CAAS;AAAA,SACrC;AAAA,QACA,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,IAAA,CAAK,WAAA,CAAY;AAAA,OACxC;AAAA,MACA,EAAE,GAAG,IAAA,CAAK,IAAA,EAAM,QAAQ,IAAA,EAAM,QAAA,EAAU,WAAA,CAAY,OAAO,CAAA;AAAE,KAC/D;AAAA,EACF;AACF","file":"index.js","sourcesContent":["{\n \"terminal-restic\": {\n \"name\": \"ghcr.io/exeteres/highstate/terminal-restic\",\n \"tag\": \"latest\",\n \"image\": \"ghcr.io/exeteres/highstate/terminal-restic:latest@sha256:10ff1f65bbc5d5f84e0accc388c28ddb97f8a1a824bd7a90d2d5674506f5dee3\"\n }\n}\n","import type { ScriptEnvironment } from \"@highstate/k8s\"\nimport { text } from \"@highstate/contract\"\n\nexport const backupEnvironment: ScriptEnvironment = {\n alpine: {\n packages: [\"restic\"],\n },\n\n ubuntu: {\n packages: [\"restic\"],\n },\n\n files: {\n \"backup.sh\": text`\n #!/bin/sh\n set -e\n\n # Init the repo if it doesn't exist\n echo \"| Checking the repository\"\n if restic snapshots > /dev/null 2>&1; then\n echo \"| Repository is ready\"\n else\n echo \"| Initializing new repository\"\n restic init\n fi\n\n # Execute lock script if it exists\n if [ -f /scripts/lock.sh ]; then\n /scripts/lock.sh || (echo \"| error: lock script failed\" && exit 1)\n fi\n\n # Unlock the data source on exit\n if [ -f /scripts/unlock.sh ]; then\n trap \"echo '/scripts/unlock.sh || (echo '| error: unlock script failed' && exit 1)\" EXIT\n fi\n\n # Perform online backup if the corresponding script exists\n if [ -f /scripts/online-backup.sh ]; then\n /scripts/online-backup.sh || (echo \"| error: online backup script failed\" && exit 1)\n fi\n\n # Backup the volume\n echo \"| Backing up /data\"\n restic backup -H \"$RESTIC_HOSTNAME\" /data $EXTRA_BACKUP_OPTIONS\n\n # Forget old snapshots\n echo \"| Forgetting old snapshots\"\n restic forget --host \"$RESTIC_HOSTNAME\" --keep-daily 7 --keep-weekly 4 --keep-monthly 6\n echo \"| Backup complete\"\n `,\n\n \"restore.sh\": text`\n #!/bin/sh\n set -e\n\n # Check if /data is empty\n echo \"| Checking if volume is empty\"\n if [ \"$(find /data -type f -print -quit 2>/dev/null)\" ]; then\n echo \"| Volume is not empty. Skipping restore.\"\n exit 0\n fi\n\n # Check if at least one snapshot exists\n echo \"| Checking for snapshots\"\n if ! result=$(restic list snapshots); then\n echo \"| No snapshots found. Skipping restore.\"\n exit 0\n fi\n\n if [ -z \"$result\" ]; then\n echo \"| No snapshots found. Skipping restore.\"\n exit 0\n fi\n\n # Restore the volume\n echo \"| Restoring /data\"\n restic restore -H \"$RESTIC_HOSTNAME\" latest --target /\n echo \"| Volume restored.\"\n\n # Post-restore script\n if [ -f /scripts/post-restore.sh ]; then\n /scripts/post-restore.sh || (echo \"| error: post-restore script failed\" && exit 1)\n fi\n `,\n },\n}\n","import type { InputL34Endpoint } from \"@highstate/common\"\nimport type { restic } from \"@highstate/library\"\nimport {\n type TriggerInvocation,\n text,\n type UnitTerminal,\n type UnitTrigger,\n} from \"@highstate/contract\"\nimport {\n type Container,\n CronJob,\n createScriptContainer,\n getProvider,\n Job,\n type ScopedResourceArgs,\n ScriptBundle,\n type ScriptDistribution,\n type ScriptEnvironment,\n Secret,\n type WorkloadVolume,\n} from \"@highstate/k8s\"\nimport {\n ComponentResource,\n type ComponentResourceOptions,\n getUnitInstanceName,\n type Input,\n type InputArray,\n normalize,\n type Output,\n output,\n toPromise,\n} from \"@highstate/pulumi\"\nimport { batch } from \"@pulumi/kubernetes\"\nimport * as images from \"../assets/images.json\"\nimport { backupEnvironment } from \"./scripts\"\n\nexport type BackupJobPairArgs = ScopedResourceArgs & {\n /**\n * The repository to backup/restore to/from.\n */\n resticRepo: Input<restic.Repository>\n\n /**\n * The password used to encrypt the backups.\n */\n backupPassword: Input<string>\n\n /**\n * The extra script environment to pass to the backup and restore scripts.\n */\n environment?: Input<ScriptEnvironment>\n\n /**\n * The extra script environments to pass to the backup and restore scripts.\n */\n environments?: InputArray<ScriptEnvironment>\n\n /**\n * The volume to backup.\n */\n volume?: Input<WorkloadVolume>\n\n /**\n * The sup path of the volume to restore/backup.\n */\n subPath?: Input<string>\n\n /**\n * The schedule for the backup job.\n *\n * By default, the backup job runs every day at midnight.\n */\n schedule?: Input<string>\n\n /**\n * The extra options to pass to the backup script.\n */\n backupOptions?: InputArray<string>\n\n /**\n * The extra options for the backup container.\n */\n backupContainer?: Input<Container>\n\n /**\n * The extra options for the restore container.\n */\n restoreContainer?: Input<Container>\n\n /**\n * The distribution to use for the scripts.\n *\n * By default, the distribution is `alpine`.\n *\n * You can also use `ubuntu` if you need to install packages that are not available (or working) in Alpine.\n */\n distribution?: ScriptDistribution\n\n /**\n * Extra allowed endpoints for the backup and restore jobs.\n */\n allowedEndpoints?: InputArray<InputL34Endpoint>\n}\n\nexport class BackupJobPair extends ComponentResource {\n /**\n * The credentials used to access the repository and encrypt the backups.\n */\n readonly credentials: Secret\n\n /**\n * The script bundle used by the backup and restore jobs.\n */\n readonly scriptBundle: ScriptBundle\n\n /**\n * The job resource which restores the volume from the backup before creating an application.\n */\n readonly restoreJob: Job\n\n /**\n * The cron job resource which backups the volume regularly.\n */\n readonly backupJob: CronJob\n\n /**\n * The full name of the Restic repository.\n */\n readonly resticRepoPath: Output<string>\n\n constructor(\n private readonly name: string,\n private readonly args: BackupJobPairArgs,\n private readonly opts?: ComponentResourceOptions,\n ) {\n super(\"highstate:restic:BackupJobPair\", name, args, opts)\n\n const cluster = output(args.namespace).cluster\n\n this.credentials = Secret.create(\n `${name}-backup-credentials`,\n {\n namespace: args.namespace,\n\n stringData: {\n password: args.backupPassword,\n \"rclone.conf\": output(args.resticRepo).rcloneConfig,\n },\n },\n { ...opts, parent: this },\n )\n\n this.resticRepoPath = output({\n cluster,\n resticRepo: args.resticRepo,\n }).apply(({ cluster, resticRepo }) => {\n const relativePath = resticRepo.pathPattern\n .replace(/\\$clusterName/g, cluster.name)\n .replace(/\\$appName/g, name)\n .replace(/\\$unitName/g, getUnitInstanceName())\n\n return `rclone:${resticRepo.remoteName}:${relativePath}`\n })\n\n this.scriptBundle = new ScriptBundle(\n `${name}-backup-scripts`,\n {\n namespace: args.namespace,\n distribution: args.distribution ?? \"alpine\",\n\n environments: output({\n environment: args.environment,\n environments: args.environments,\n }).apply(({ environment, environments }) => [\n backupEnvironment,\n {\n alpine: {\n packages: [\"rclone\"],\n },\n\n ubuntu: {\n preInstallPackages: [\"curl\", \"unzip\"],\n\n preInstallScripts: {\n \"rclone.sh\": text`\n #!/bin/sh\n set -e\n\n curl https://rclone.org/install.sh | bash\n `,\n },\n\n allowedEndpoints: [\"rclone.org:443\", \"downloads.rclone.org:443\"],\n },\n\n allowedEndpoints: output({\n allowedEndpoints: args.allowedEndpoints,\n resticRepo: args.resticRepo,\n }).apply(({ allowedEndpoints, resticRepo }) => [\n ...(allowedEndpoints ?? []),\n ...(resticRepo.remoteEndpoints ?? []),\n ]),\n\n environment: {\n RESTIC_REPOSITORY: this.resticRepoPath,\n RESTIC_PASSWORD_FILE: \"/credentials/password\",\n RESTIC_HOSTNAME: \"default\",\n RCLONE_CONFIG: \"/credentials/rclone.conf\",\n EXTRA_BACKUP_OPTIONS: output(args.backupOptions).apply(options => options?.join(\" \")),\n },\n\n volumes: [this.credentials, ...(args.volume ? [args.volume] : [])],\n\n volumeMounts: [\n {\n volume: this.credentials,\n mountPath: \"/credentials\",\n readOnly: true,\n },\n ...(args.volume\n ? [\n {\n volume: args.volume,\n mountPath: \"/data\",\n subPath: args.subPath,\n },\n ]\n : []),\n ],\n } satisfies ScriptEnvironment,\n ...normalize(environment, environments),\n ]),\n },\n { ...opts, parent: this },\n )\n\n this.restoreJob = Job.create(\n `${name}-restore`,\n {\n namespace: args.namespace,\n\n container: output(args.restoreContainer).apply(restoreContainer =>\n createScriptContainer({\n ...restoreContainer,\n main: \"restore.sh\",\n bundle: this.scriptBundle,\n }),\n ),\n\n backoffLimit: 2,\n },\n { ...opts, parent: this },\n )\n\n this.backupJob = CronJob.create(\n `${name}-backup`,\n {\n namespace: args.namespace,\n\n container: output(args.backupContainer).apply(backupContainer =>\n createScriptContainer({\n ...backupContainer,\n main: \"backup.sh\",\n bundle: this.scriptBundle,\n }),\n ),\n\n schedule: args.schedule ?? \"0 0 * * *\",\n concurrencyPolicy: \"Forbid\",\n\n jobTemplate: {\n spec: {\n backoffLimit: 2,\n },\n },\n },\n { ...opts, parent: this },\n )\n }\n\n handleTrigger(triggers: TriggerInvocation[]): UnitTrigger | undefined {\n const triggerName = `restic.backup-on-destroy.${this.name}`\n const invokedTrigger = triggers.find(trigger => trigger.name === triggerName)\n\n if (invokedTrigger) {\n void this.createBackupOnDestroyJob()\n return\n }\n\n return {\n name: triggerName,\n meta: {\n title: \"Backup on Destroy\",\n description: `Backup the \"${this.name}\" before destroying.`,\n icon: \"material-symbols:backup\",\n },\n spec: {\n type: \"before-destroy\",\n },\n }\n }\n\n createTerminal(): Output<UnitTerminal> {\n return output({\n backupPassword: this.args.backupPassword,\n resticRepo: this.args.resticRepo,\n resticRepoPath: this.resticRepoPath,\n }).apply(({ backupPassword, resticRepo, resticRepoPath }) => ({\n name: \"restic\",\n\n meta: {\n title: \"Restic\",\n description: \"Manage Restic repository\",\n icon: \"material-symbols:backup\",\n },\n\n spec: {\n image: images[\"terminal-restic\"].image,\n command: [\"bash\", \"/welcome.sh\"],\n\n files: {\n \"/welcome.sh\": {\n meta: { name: \"/welcome.sh\" },\n content: {\n type: \"embedded\" as const,\n value: text`\n echo \"Use 'restic' to manage the repository.\"\n echo\n\n exec bash\n `,\n },\n },\n\n \"/credentials/password\": {\n meta: { name: \"/credentials/password\" },\n content: {\n type: \"embedded\" as const,\n value: backupPassword,\n },\n },\n\n \"/root/.config/rclone/rclone.conf\": {\n meta: { name: \"/root/.config/rclone/rclone.conf\" },\n content: {\n type: \"embedded\" as const,\n value: resticRepo.rcloneConfig,\n },\n },\n },\n\n env: {\n RESTIC_REPOSITORY: resticRepoPath,\n RESTIC_PASSWORD_FILE: \"/credentials/password\",\n },\n },\n }))\n }\n\n private async createBackupOnDestroyJob(): Promise<void> {\n const cluster = await toPromise(output(this.args.namespace).cluster)\n\n new batch.v1.Job(\n `${this.name}-backup-on-destroy`,\n {\n metadata: {\n name: `${this.name}-backup-on-destroy`,\n namespace: this.backupJob.metadata.namespace,\n },\n spec: this.backupJob.spec.jobTemplate.spec,\n },\n { ...this.opts, parent: this, provider: getProvider(cluster) },\n )\n }\n}\n"]}
package/dist/repository/index.js CHANGED
@@ -1,6 +1,6 @@
1
+ import { parseL34Endpoint, l34EndpointToString } from '@highstate/common';
1
2
  import { restic } from '@highstate/library';
2
3
  import { forUnit, toPromise } from '@highstate/pulumi';
3
- import { parseL34Endpoint, l34EndpointToString } from '@highstate/common';
4
4
  import { uniqueBy } from 'remeda';
5
5
 
6
6
  // src/repository/index.ts
package/dist/repository/index.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["../../src/repository/index.ts"],"names":[],"mappings":";;;;;;AAKA,IAAM,EAAE,MAAM,MAAA,EAAQ,OAAA,EAAS,SAAQ,GAAI,OAAA,CAAQ,OAAO,UAAU,CAAA;AAEpE,IAAM,aAAa,MAAM,SAAA;AAAA,EACvB,OAAA,CAAQ,YAAA,CAAa,KAAA,CAAM,CAAA,MAAA,KAAU;AACnC,IAAA,MAAM,cAAc,KAAA,CAAM,IAAA,CAAK,MAAA,CAAO,QAAA,CAAS,mBAAmB,CAAC,CAAA;AAEnE,IAAA,IAAI,WAAA,CAAY,WAAW,CAAA,EAAG;AAC5B,MAAA,MAAM,IAAI,MAAM,mCAAmC,CAAA;AAAA,IACrD;AAEA,IAAA,IAAI,WAAA,CAAY,SAAS,CAAA,EAAG;AAC1B,MAAA,MAAM,IAAI,MAAM,yCAAyC,CAAA;AAAA,IAC3D;AAEA,IAAA,MAAM,UAAA,GAAa,WAAA,CAAY,CAAC,CAAA,CAAE,CAAC,CAAA;AAGnC,IAAA,MAAM,aAAA,GAAgB,MAAA,CAAO,KAAA,CAAM,CAAA,CAAA,EAAI,UAAU,CAAA,CAAA,CAAG,CAAA,CAAE,CAAC,CAAA,EAAG,KAAA,CAAM,SAAS,CAAA,CAAE,CAAC,CAAA,IAAK,EAAA;AACjF,IAAA,MAAM,SAAA,GAAY,aAAA,CAAc,KAAA,CAAM,uBAAuB,CAAA;AAE7D,IAAA,IAAI,CAAC,SAAA,EAAW;AACd,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,0BAAA,EAA6B,UAAU,CAAA,CAAA,CAAG,CAAA;AAAA,IAC5D;AAEA,IAAA,OAAO;AAAA,MACL,IAAA,EAAM,UAAA;AAAA,MACN,IAAA,EAAM,SAAA,CAAU,CAAC,CAAA,CAAE,IAAA;AAAK,KAC1B;AAAA,EACF,CAAC;AACH,CAAA;AAEA,IAAM,EAAE,iBAAA,EAAmB,iBAAA,EAAkB,GAAI,MAAM,UAAU,MAAM,CAAA;AAEvE,IAAM,uBAAA,GAAoD;AAAA,EACxD,MAAA,EAAQ;AAAA,IACN,sBAAA;AAAA,IACA,2BAAA;AAAA,IACA,sBAAA;AAAA,IACA;AAAA;AAEJ,CAAA;AAEA,IAAM,eAAA,GAAkB,QAAA;AAAA,EACtB;AAAA;AAAA,IAEE,GAAA,CAAI,wBAAwB,UAAA,CAAW,IAAI,KAAK,EAAC,EAAG,IAAI,gBAAgB,CAAA;AAAA,IACxE,GAAG,IAAA,CAAK,eAAA,CAAgB,GAAA,CAAI,gBAAgB,CAAA;AAAA,IAC5C,GAAG,iBAAA;AAAA,IACH,GAAG;AAAA,GACL;AAAA,EACA;AACF,CAAA;AAEA,IAAO,qBAAQ,OAAA,CAAQ;AAAA,EACrB,IAAA,EAAM;AAAA,IACJ,IAAA,EAAM,QAAA;AAAA,IACN,aAAa,IAAA,CAAK,WAAA;AAAA,IAClB,cAAc,OAAA,CAAQ,YAAA;AAAA,IACtB,YAAY,UAAA,CAAW,IAAA;AAAA,IACvB;AAAA,GACF;AAAA,EAEA,aAAA,EAAe;AAAA,IACb,YAAY,UAAA,CAAW,IAAA;AAAA,IACvB,YAAY,UAAA,CAAW,IAAA;AAAA,IAEvB,eAAA,EAAiB;AAAA,MACf,KAAA,EAAO,eAAA,CAAgB,GAAA,CAAI,mBAAmB,CAAA;AAAA,MAC9C,eAAA,EAAiB;AAAA;AACnB;AAEJ,CAAC","file":"index.js","sourcesContent":["import { restic } from \"@highstate/library\"\nimport { forUnit, toPromise } from \"@highstate/pulumi\"\nimport { l34EndpointToString, parseL34Endpoint } from \"@highstate/common\"\nimport { uniqueBy } from \"remeda\"\n\nconst { args, inputs, secrets, outputs } = forUnit(restic.repository)\n\nconst remoteInfo = await toPromise(\n secrets.rcloneConfig.apply(config => {\n const remoteNames = Array.from(config.matchAll(/(?<=\\[).+?(?=\\])/g))\n\n if (remoteNames.length === 0) {\n throw new Error(\"No remotes found in rclone config\")\n }\n\n if (remoteNames.length > 1) {\n throw new Error(\"Multiple remotes found in rclone config\")\n }\n\n const remoteName = remoteNames[0][0]\n\n // extract the type from the remote section\n const remoteSection = config.split(`[${remoteName}]`)[1]?.split(/\\n\\s*\\[/)[0] || \"\"\n const typeMatch = remoteSection.match(/^\\s*type\\s*=\\s*(.+)$/m)\n\n if (!typeMatch) {\n throw new Error(`No type found for remote '${remoteName}'`)\n }\n\n return {\n name: remoteName,\n type: typeMatch[1].trim(),\n }\n }),\n)\n\nconst { remoteL3Endpoints, remoteL4Endpoints } = await toPromise(inputs)\n\nconst autoDiscoveredEndpoints: Record<string, string[]> = {\n yandex: [\n \"cloud-api.yandex.com\",\n \"downloader.disk.yandex.ru\",\n \"*.storage.yandex.net\",\n \"*.disk.yandex.net\",\n ],\n}\n\nconst remoteEndpoints = uniqueBy(\n [\n //\n ...(autoDiscoveredEndpoints[remoteInfo.type] ?? []).map(parseL34Endpoint),\n ...args.remoteEndpoints.map(parseL34Endpoint),\n ...remoteL3Endpoints,\n ...remoteL4Endpoints,\n ],\n l34EndpointToString,\n)\n\nexport default outputs({\n repo: {\n type: \"rclone\",\n pathPattern: args.pathPattern,\n rcloneConfig: secrets.rcloneConfig,\n remoteName: remoteInfo.name,\n remoteEndpoints,\n },\n\n $statusFields: {\n remoteName: remoteInfo.name,\n remoteType: remoteInfo.type,\n\n remoteEndpoints: {\n value: remoteEndpoints.map(l34EndpointToString),\n complementaryTo: \"remoteEndpoints\",\n },\n },\n})\n"]}
1
+ {"version":3,"sources":["../../src/repository/index.ts"],"names":[],"mappings":";;;;;;AAKA,IAAM,EAAE,MAAM,MAAA,EAAQ,OAAA,EAAS,SAAQ,GAAI,OAAA,CAAQ,OAAO,UAAU,CAAA;AAEpE,IAAM,aAAa,MAAM,SAAA;AAAA,EACvB,OAAA,CAAQ,YAAA,CAAa,KAAA,CAAM,CAAA,MAAA,KAAU;AACnC,IAAA,MAAM,cAAc,KAAA,CAAM,IAAA,CAAK,MAAA,CAAO,QAAA,CAAS,mBAAmB,CAAC,CAAA;AAEnE,IAAA,IAAI,WAAA,CAAY,WAAW,CAAA,EAAG;AAC5B,MAAA,MAAM,IAAI,MAAM,mCAAmC,CAAA;AAAA,IACrD;AAEA,IAAA,IAAI,WAAA,CAAY,SAAS,CAAA,EAAG;AAC1B,MAAA,MAAM,IAAI,MAAM,yCAAyC,CAAA;AAAA,IAC3D;AAEA,IAAA,MAAM,UAAA,GAAa,WAAA,CAAY,CAAC,CAAA,CAAE,CAAC,CAAA;AAGnC,IAAA,MAAM,aAAA,GAAgB,MAAA,CAAO,KAAA,CAAM,CAAA,CAAA,EAAI,UAAU,CAAA,CAAA,CAAG,CAAA,CAAE,CAAC,CAAA,EAAG,KAAA,CAAM,SAAS,CAAA,CAAE,CAAC,CAAA,IAAK,EAAA;AACjF,IAAA,MAAM,SAAA,GAAY,aAAA,CAAc,KAAA,CAAM,uBAAuB,CAAA;AAE7D,IAAA,IAAI,CAAC,SAAA,EAAW;AACd,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,0BAAA,EAA6B,UAAU,CAAA,CAAA,CAAG,CAAA;AAAA,IAC5D;AAEA,IAAA,OAAO;AAAA,MACL,IAAA,EAAM,UAAA;AAAA,MACN,IAAA,EAAM,SAAA,CAAU,CAAC,CAAA,CAAE,IAAA;AAAK,KAC1B;AAAA,EACF,CAAC;AACH,CAAA;AAEA,IAAM,EAAE,iBAAA,EAAmB,iBAAA,EAAkB,GAAI,MAAM,UAAU,MAAM,CAAA;AAEvE,IAAM,uBAAA,GAAoD;AAAA,EACxD,MAAA,EAAQ;AAAA,IACN,sBAAA;AAAA,IACA,2BAAA;AAAA,IACA,sBAAA;AAAA,IACA;AAAA;AAEJ,CAAA;AAEA,IAAM,eAAA,GAAkB,QAAA;AAAA,EACtB;AAAA;AAAA,IAEE,GAAA,CAAI,wBAAwB,UAAA,CAAW,IAAI,KAAK,EAAC,EAAG,IAAI,gBAAgB,CAAA;AAAA,IACxE,GAAG,IAAA,CAAK,eAAA,CAAgB,GAAA,CAAI,gBAAgB,CAAA;AAAA,IAC5C,GAAG,iBAAA;AAAA,IACH,GAAG;AAAA,GACL;AAAA,EACA;AACF,CAAA;AAEA,IAAO,qBAAQ,OAAA,CAAQ;AAAA,EACrB,IAAA,EAAM;AAAA,IACJ,IAAA,EAAM,QAAA;AAAA,IACN,aAAa,IAAA,CAAK,WAAA;AAAA,IAClB,cAAc,OAAA,CAAQ,YAAA;AAAA,IACtB,YAAY,UAAA,CAAW,IAAA;AAAA,IACvB;AAAA,GACF;AAAA,EAEA,aAAA,EAAe;AAAA,IACb,YAAY,UAAA,CAAW,IAAA;AAAA,IACvB,YAAY,UAAA,CAAW,IAAA;AAAA,IAEvB,eAAA,EAAiB;AAAA,MACf,KAAA,EAAO,eAAA,CAAgB,GAAA,CAAI,mBAAmB,CAAA;AAAA,MAC9C,eAAA,EAAiB;AAAA;AACnB;AAEJ,CAAC","file":"index.js","sourcesContent":["import { l34EndpointToString, parseL34Endpoint } from \"@highstate/common\"\nimport { restic } from \"@highstate/library\"\nimport { forUnit, toPromise } from \"@highstate/pulumi\"\nimport { uniqueBy } from \"remeda\"\n\nconst { args, inputs, secrets, outputs } = forUnit(restic.repository)\n\nconst remoteInfo = await toPromise(\n secrets.rcloneConfig.apply(config => {\n const remoteNames = Array.from(config.matchAll(/(?<=\\[).+?(?=\\])/g))\n\n if (remoteNames.length === 0) {\n throw new Error(\"No remotes found in rclone config\")\n }\n\n if (remoteNames.length > 1) {\n throw new Error(\"Multiple remotes found in rclone config\")\n }\n\n const remoteName = remoteNames[0][0]\n\n // extract the type from the remote section\n const remoteSection = config.split(`[${remoteName}]`)[1]?.split(/\\n\\s*\\[/)[0] || \"\"\n const typeMatch = remoteSection.match(/^\\s*type\\s*=\\s*(.+)$/m)\n\n if (!typeMatch) {\n throw new Error(`No type found for remote '${remoteName}'`)\n }\n\n return {\n name: remoteName,\n type: typeMatch[1].trim(),\n }\n }),\n)\n\nconst { remoteL3Endpoints, remoteL4Endpoints } = await toPromise(inputs)\n\nconst autoDiscoveredEndpoints: Record<string, string[]> = {\n yandex: [\n \"cloud-api.yandex.com\",\n \"downloader.disk.yandex.ru\",\n \"*.storage.yandex.net\",\n \"*.disk.yandex.net\",\n ],\n}\n\nconst remoteEndpoints = uniqueBy(\n [\n //\n ...(autoDiscoveredEndpoints[remoteInfo.type] ?? []).map(parseL34Endpoint),\n ...args.remoteEndpoints.map(parseL34Endpoint),\n ...remoteL3Endpoints,\n ...remoteL4Endpoints,\n ],\n l34EndpointToString,\n)\n\nexport default outputs({\n repo: {\n type: \"rclone\",\n pathPattern: args.pathPattern,\n rcloneConfig: secrets.rcloneConfig,\n remoteName: remoteInfo.name,\n remoteEndpoints,\n },\n\n $statusFields: {\n remoteName: remoteInfo.name,\n remoteType: remoteInfo.type,\n\n remoteEndpoints: {\n value: remoteEndpoints.map(l34EndpointToString),\n complementaryTo: \"remoteEndpoints\",\n },\n },\n})\n"]}
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@highstate/restic",
3
- "version": "0.9.20",
3
+ "version": "0.9.21",
4
4
  "type": "module",
5
5
  "files": [
6
6
  "dist",
@@ -18,19 +18,24 @@
18
18
  },
19
19
  "scripts": {
20
20
  "build": "highstate build",
21
- "update-images": "../../scripts/update-images.sh ./assets/images.json"
21
+ "update-images": "../../scripts/update-images.sh ./assets/images.json",
22
+ "typecheck": "tsgo --noEmit --skipLibCheck",
23
+ "biome": "biome check --write --unsafe --error-on-warnings",
24
+ "biome:check": "biome check --error-on-warnings"
22
25
  },
23
26
  "dependencies": {
24
- "@highstate/common": "^0.9.20",
25
- "@highstate/contract": "^0.9.20",
26
- "@highstate/k8s": "^0.9.20",
27
- "@highstate/library": "^0.9.20",
28
- "@highstate/pulumi": "^0.9.20",
27
+ "@highstate/common": "^0.9.21",
28
+ "@highstate/contract": "^0.9.21",
29
+ "@highstate/k8s": "^0.9.21",
30
+ "@highstate/library": "^0.9.21",
31
+ "@highstate/pulumi": "^0.9.21",
29
32
  "@pulumi/kubernetes": "^4.18.0",
30
33
  "remeda": "^2.21.0"
31
34
  },
32
35
  "devDependencies": {
33
- "@highstate/cli": "^0.9.20"
36
+ "@biomejs/biome": "2.2.0",
37
+ "@highstate/cli": "^0.9.21",
38
+ "@typescript/native-preview": "^7.0.0-dev.20250920.1"
34
39
  },
35
- "gitHead": "4bf9183450c2c6f51d6a99d77efc379ff5c7b7ef"
40
+ "gitHead": "390ff15c0e0076822a682f9d4e19260942a8d6c2"
36
41
  }
package/src/job-pair.ts CHANGED
@@ -1,36 +1,36 @@
1
- import type { restic } from "@highstate/library"
2
1
  import type { InputL34Endpoint } from "@highstate/common"
3
- import { batch } from "@pulumi/kubernetes"
2
+ import type { restic } from "@highstate/library"
4
3
  import {
5
- createScriptContainer,
4
+ type TriggerInvocation,
5
+ text,
6
+ type UnitTerminal,
7
+ type UnitTrigger,
8
+ } from "@highstate/contract"
9
+ import {
10
+ type Container,
6
11
  CronJob,
12
+ createScriptContainer,
7
13
  getProvider,
8
14
  Job,
15
+ type ScopedResourceArgs,
9
16
  ScriptBundle,
10
- Secret,
11
- type Container,
12
17
  type ScriptDistribution,
13
18
  type ScriptEnvironment,
14
- type ScopedResourceArgs,
19
+ Secret,
15
20
  type WorkloadVolume,
16
21
  } from "@highstate/k8s"
17
22
  import {
18
23
  ComponentResource,
24
+ type ComponentResourceOptions,
19
25
  getUnitInstanceName,
26
+ type Input,
27
+ type InputArray,
20
28
  normalize,
21
- output,
22
29
  type Output,
30
+ output,
23
31
  toPromise,
24
- type ComponentResourceOptions,
25
- type Input,
26
- type InputArray,
27
32
  } from "@highstate/pulumi"
28
- import {
29
- text,
30
- type UnitTerminal,
31
- type UnitTrigger,
32
- type TriggerInvocation,
33
- } from "@highstate/contract"
33
+ import { batch } from "@pulumi/kubernetes"
34
34
  import * as images from "../assets/images.json"
35
35
  import { backupEnvironment } from "./scripts"
36
36
 
package/src/repository/index.ts CHANGED
@@ -1,6 +1,6 @@
1
+ import { l34EndpointToString, parseL34Endpoint } from "@highstate/common"
1
2
  import { restic } from "@highstate/library"
2
3
  import { forUnit, toPromise } from "@highstate/pulumi"
3
- import { l34EndpointToString, parseL34Endpoint } from "@highstate/common"
4
4
  import { uniqueBy } from "remeda"
5
5
 
6
6
  const { args, inputs, secrets, outputs } = forUnit(restic.repository)