Database Backup

Containerized solution to create various database backups and store them in an object storage. Uses RClone to transfer backups to provide support for a variety of object storage options. Integrates with Prometheus by sending compatible performance metrics to Pushgateway.

NOTE: the solution stores DB backup in the container filesystem before uploading it to the storage bucket. For big databases, consider mounting a temporary storage of sufficient size as /srv directory in the container.

Supported Database Engines:

MongoDB (images tagged as mongodb)
MySQL/MariaDB (images tagged as mysql)
PostgreSQL (images tagged as postgresXX, legacy images are tagged as postgres-legacyXX)

Usage

Run a container for the DB type you need and specify mandatory DB credentials and storage parameters. Storage settings follow RClone configuration file entries prefixed with STORAGE_, for example, access_key_id for S3 access becomes STORAGE_ACCESS_KEY_ID.

The recommended way is to put your environment variables in backup.env and use docker compose to run the container (see examples for reference).

To enable sending Prometheus metrics to Pushgateway its endpoint must be specified (see the variables table).

For Kubernetes clusters in cloud providers with RBAC support, make sure to set STORAGE_ENV_AUTH=true for rclone to fetch credentials via ServiceAccount used with its pod.

PostgreSQL Backup - Supported Versions

PSQL databases are backed up using pg_dump, with compressed backup format (-Fc).

Supports optional per-table backups where every table is backed up to a separate file, with an extra file for the database schema. This method does not use -Ft or -Fd, so no TOC file is created; while it offers greater flexibility in restoring only particular data, there is no way to specify the order of restoration for the tables. This mode is meant to be used in scenarios where the one-take full backup duration can take too long or where you only care about restoring certain tables and not the whole database.

Images are built for all major versions listed as Supported on the PostgreSQL versioning page.

Version	Tag
17	`postgres17-3.1.0`
16	`postgres16-3.1.0`
15	`postgres15-3.1.0`
14	`postgres14-3.1.0`

This flavor supports all PostgreSQL environment variables.

Once you have a Corewide Solutions Portal account, get your registry password here and use it to log in via CLI:

 shelldocker login oci.corewide.com

Download the image

Pull the image from the registry to your machine:

 shelldocker pull oci.corewide.com/docker/db-backup:postgres15-3.1.0

€460

Deploy to Kubernetes BUY

License

postgres15-3.1.0 released 4 months ago

Upgrade Notes

Changelog

NOTE: the solution stores DB backup in the container filesystem before uploading it to the storage bucket. For big databases, consider mounting a temporary storage of sufficient size as /srv directory in the container.

Supported Database Engines:

MongoDB (images tagged as mongodb)
MySQL/MariaDB (images tagged as mysql)
PostgreSQL (images tagged as postgresXX, legacy images are tagged as postgres-legacyXX)

Usage

The recommended way is to put your environment variables in backup.env and use docker compose to run the container (see examples for reference).

To enable sending Prometheus metrics to Pushgateway its endpoint must be specified (see the variables table).

For Kubernetes clusters in cloud providers with RBAC support, make sure to set STORAGE_ENV_AUTH=true for rclone to fetch credentials via ServiceAccount used with its pod.

PostgreSQL Backup - Supported Versions

PSQL databases are backed up using pg_dump, with compressed backup format (-Fc).

Images are built for all major versions listed as Supported on the PostgreSQL versioning page.

Version	Tag
17	`postgres17-3.1.0`
16	`postgres16-3.1.0`
15	`postgres15-3.1.0`
14	`postgres14-3.1.0`

This flavor supports all PostgreSQL environment variables.

All notable changes to this project are documented here.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

v3.2.1 - 2025-06-18

Changed

Docker image metadata

v3.2.0 - 2025-05-15

Added

PostgreSQL v17 support

v3.1.2 - 2025-05-07

Added

optional variable PUSHGW_INSTANCE to mark the database instance as label in monitoring metrics

v3.1.1 - 2025-05-01

Fixed

include missing curl package in the MySQL image

v3.1.0 - 2025-02-17

Added

skipping SSL verification during connections to the target host to avoid issues when SSL verification is enabled on the target host for MySQL databases

v3.0.0 - 2025-01-28

BREAKING CHANGE: a new type of connection to MongoDB was added. Upgrade from an older version is possible with manual changes, see Upgrade Notes.

Please note that all changes are related to MongoDB with the connection type SRV. All other DBs and connection types remain unchanged and can be safely upgraded

Added

optional variable MONGO_USE_SRV to define the connection type to MongoDB

v2.0.1 - 2025-01-16

Added

support legacy PostgreSQL versions from 9 to 13 for backward compatibility with a separate set of images tagged as postgres-legacyXX

Fixed

libpq packages aligned with the PostgreSQL version to avoid deprecation issues

v2.0.0 - 2024-10-29

Added

mandatory variable BACKUP_FILENAME_PREFIX to make a backup file name unique

v1.9.0 - 2024-08-28

Added

backup files cleanup

v1.8.0 - 2024-07-09

Added

per-table backup mode for PostgreSQL

Removed

support of PostgreSQL v13.x

v1.7.0 - 2024-07-09

Added

MySQL and MariaDB support
documentation: engine-specific parameters

v1.6.2 - 2024-07-05

Added

PostgreSQL v16 support

Removed

PostgreSQL v12 support due to it being deprecated

v1.6.1 - 2024-06-25

Fixed

rclone requiring unnecessary permissions for bucket creation

v1.6.0 - 2024-05-31

Added

STORAGE_ENV_AUTH is exposed with the default value (false). Enabling it is required now for cloud-native deployments

v1.5.0 - 2024-05-16

Added

Prometheus integration via sending backup metrics to Pushgateway

v1.4.0 - 2023-11-30

Added

Backups retention

v1.3.1 - 2023-11-29

Fixed

bug in MongoDB SRV connection URI that included a port number

v1.3.0 - 2023-11-28

Added

MongoDB support (v4.4-6.0)

v1.1.0 - 2023-11-22

Added

debug output for different stages of backup execution (toggled via DEBUG variable, disabled by default)

Changed

documentation now provides examples of various storage configuration options

v1.0.0 - 2023-11-20

First stable version with PostgreSQL support.

Added

PostgreSQL support (v12-15)
object storage compatibility: S3, Backblaze B2
deployment via Docker Compose
standardized configuration via environment variables

From `v1.x.x` to `v2.x.x`

Since v2.0.0 the solution requires mandatory BACKUP_FILENAME_PREFIX variable to be set. This will cause the application script failure if the variable is not set. To avoid unexpected behavior, make sure this variable is added to your environment file. For example:

 bashBACKUP_FILENAME_PREFIX=daily

From `v2.x.x` to `v3.x.x`

NOTE: All changes are related to MongoDB with the connection type SRV; other use cases are not affected by the upgrade.

The application from v3.0.0 requires MONGO_USE_SRV variable to be set to use SRV type connection to MongoDB. If you relied on SRV in MongoDB connection prior to v3.x, make sure to enable it explicitly by adding this variable to your environment file and set to true.

An example docker-compose.yml file with predefined options to run as a one-shot container triggered by a cron job:

 yamlservices:
  db-backup:
    image: oci.corewide.com/docker/db-backup:postgresql14-3.1.0
    container_name: db-backup
    env_file: backup.env
    restart: no

Cron job content:

 cron0 0 * * * root docker compose -f /path/to/docker-compose.yml

Make sure to put your environment variables inside backup.env file in the same location as docker-compose.yml.

An example of backup.env file for Azure Blob Storage:

 bashSTORAGE_TYPE=azureblob
STORAGE_BUCKET_NAME=container_name
STORAGE_ACCOUNT=storage_account_name
STORAGE_KEY=base64_encoded_storage_account_key
BACKUP_FILENAME_PREFIX=daily

An example docker-compose.yml file with predefined options to run as a one-shot container triggered by a cron job:

 yamlservices:
  db-backup:
    image: oci.corewide.com/docker/db-backup:postgresql14-3.1.0
    container_name: db-backup
    env_file: backup.env
    restart: no

Cron job content:

 cronDB_TYPE=postgres
0 0 * * * root docker compose -f /path/to/docker-compose.yml

Make sure to put your environment variables inside backup.env file in the same location as docker-compose.yml.

An example of backup.env for DigitalOcean Spaces:

 bashSTORAGE_TYPE=s3
STORAGE_BUCKET_NAME=my-backup
STORAGE_PROVIDER=DigitalOcean
STORAGE_ENDPOINT=nyc3.digitalocean.com
STORAGE_ACCESS_KEY_ID=xxxxxx
STORAGE_SECRET_ACCESS_KEY=******
PUSHGW_ENDPOINT=http://pushgateway:9091
BACKUP_FILENAME_PREFIX=daily

Quick one-time backup of PostgreSQL database to an AWS S3 bucket:

 bashdocker run --rm \\
    -e BACKUP_FILENAME_PREFIX=oneshot \\
    -e STORAGE_TYPE=s3 \\
    -e STORAGE_PROVIDER=AWS \\
    -e STORAGE_REGION=us-east-1 \\
    -e STORAGE_ACCESS_KEY_ID=xxxx \\
    -e STORAGE_SECRET_ACCESS_KEY=yyyy \\
    -e STORAGE_BUCKET_NAME=my-backups \\
    -e DB_HOST=my.database.host \\
    -e DB_NAME=app \\
    -e DB_USER=app \\
    -e DB_PASSWORD=s3cr3t \\
    oci.corewide.com/docker/db-backup:postgresql14-3.1.0

Variable	Description	Default	Required	Sensitive
`DB_HOST`	Address (IP/domain name) of the database instance to connect to		yes	no
`DB_PORT`	Port of the database instance to connect to	Matches default port of corresponding DB type	no	no
`DB_NAME`	Name of the database to backup		yes	no
`DB_USER`	Username to authenticate as at database instance		yes	no
`DB_PASSWORD`	Password to use for authentication at DB instance		no	no
`BACKUP_FILENAME_PREFIX`	Name prefix for the backup file to be created		yes	no
`STORAGE_TYPE`	Type of the object storage to use for storing backups		no	no
`STORAGE_BUCKET_NAME`	Name of the object storage bucket to upload the backups to		yes	no
`STORAGE_BUCKET_DIR`	Directory at the root of storage bucket to store the backup files in		no	no
`STORAGE_ENV_AUTH`	Consume storage credentials from cloud-native environment variables	`false`	no	no
`STORAGE_*`	Options to translate as RClone environment variables (will be translated as `RCLONE_CONFIG_BACKUP_*` params)		no	possibly
`DEBUG`	Enable debug output	`false`	no	no
`RETENTION_PERIOD`	Maximum allowed backup files' age in hours(h), days(d) or months(M). If not set, retention will be skipped and no backup files will be deleted		no	no
`PUSHGW_JOB_NAME`	Value of job label in metrics	`db_backup`	no	no
`PUSHGW_ENDPOINT`	Pushgateway endpoint		no	no
`PUSHGW_LOGIN`	Basic Auth username of Pushgateway		no	no
`PUSHGW_PASSWORD`	Basic Auth password of Pushgateway		no	no
`CLEANUP_LOCAL_BACKUP_FILES`	Enable local backup files cleanup	`true`	no	no
`PER_TABLE_BACKUP`	Creates backups one file per table in a dedicated directory	`false`	no	no

These components are included as is under the terms of their corresponding licenses.

Component	License
RClone	MIT
PostgreSQL CLI tools	PostgreSQL License

References

RClone environment variables

RClone settings for popular object storage providers:

Usage

PostgreSQL Backup - Supported Versions

Usage

PostgreSQL Backup - Supported Versions

v3.2.1 - 2025-06-18

Changed

v3.2.0 - 2025-05-15

Added

v3.1.2 - 2025-05-07

Added

v3.1.1 - 2025-05-01

Fixed

v3.1.0 - 2025-02-17

Added

v3.0.0 - 2025-01-28

Added

v2.0.1 - 2025-01-16

Added

Fixed

v2.0.0 - 2024-10-29

Added

v1.9.0 - 2024-08-28

Added

v1.8.0 - 2024-07-09

Added

Removed

v1.7.0 - 2024-07-09

Added

v1.6.2 - 2024-07-05

Added

Removed

v1.6.1 - 2024-06-25

Fixed

v1.6.0 - 2024-05-31

Added

v1.5.0 - 2024-05-16

Added

v1.4.0 - 2023-11-30

Added

v1.3.1 - 2023-11-29

Fixed

v1.3.0 - 2023-11-28

Added

v1.1.0 - 2023-11-22

Added

Changed

v1.0.0 - 2023-11-20

Added

From v1.x.x to v2.x.x

From v2.x.x to v3.x.x

References

Not sure where to start?Let's find your perfect match.

From `v1.x.x` to `v2.x.x`

From `v2.x.x` to `v3.x.x`

Not sure where to start?
Let's find your perfect match.