#!/bin/bash
#  backup.sh
#  Source originale :
#  http://blog.rom1v.com/2013/08/duplicity-des-backups-incrementaux-chiffres/
#  Source complémentaire
#  https://www.debian-administration.org/article/209/Unattended_Encrypted_Incremental_Network_Backups_Part_1
#  Script modifié par d2air
#  Version 1
#
#  Le répertoire des sauvegardes doit être sur une partition large
#  sur le formatage par défaut du Kimsufi l'espace est restreint si dans /srv/backups
#
BACKUP_HOME=/srv/backups
BACKUP_DIR="$BACKUP_HOME/duplicity"
ENCRYPT_KEY="0FFF7777"
FILELIST="/etc/
- /home/user/Downloads
/home/user/
/srv/backups/mysqldump/
/var/lib/mysql/
/var/lib/automysqlbackup/
/var/log/
/var/www/"

# duplicity
printf '## Backup using duplicity...\n'
unset mode
[ "$1" = full ] && mode=full && printf '(force full backup)\n'
mkdir -p "$BACKUP_DIR"
duplicity $mode --encrypt-key "$ENCRYPT_KEY" --include-globbing-filelist <(echo "$FILELIST") --exclude '**' / file://"$BACKUP_DIR"/

printf '## Delete old backups\n'
duplicity remove-older-than 2M file://"$BACKUP_DIR"/ --force

# backups are encrypted, we can make them accessible
chmod +r "$BACKUP_DIR"/*.gpg