# Logical backup (recommended for portability)
podman exec aegis-database-postgres pg_dump -U aegis -d aegis -F c -f /tmp/aegis-backup.dump

# Copy backup from container
podman cp aegis-database-postgres:/tmp/aegis-backup.dump ./backups/aegis-$(date +%Y%m%d).dump

# All databases (including temporal, keycloak)
podman exec aegis-database-postgres pg_dumpall -U aegis > ./backups/all-databases-$(date +%Y%m%d).sql

# Restore from custom-format dump
podman exec -i aegis-database-postgres pg_restore -U aegis -d aegis -c /tmp/aegis-backup.dump

# Restore from SQL dump
cat ./backups/all-databases.sql | podman exec -i aegis-database-postgres psql -U aegis

# Add to crontab (daily at 2 AM)
0 2 * * * podman exec aegis-database-postgres pg_dump -U aegis -d aegis -F c -f /backups/aegis-$(date +\%Y\%m\%d).dump

# Stop writes (optional but recommended for consistency)
# Back up the persistent volume
podman volume export aegis-openbao-data > ./backups/openbao-data-$(date +%Y%m%d).tar

# Restore the volume
podman volume import aegis-openbao-data ./backups/openbao-data-YYYYMMDD.tar

# Restart the secrets pod
make redeploy POD=secrets

# Export master metadata
podman volume export aegis-seaweedfs-master-data > ./backups/seaweedfs-master-$(date +%Y%m%d).tar

# Export volume data
podman volume export aegis-seaweedfs-volume-data > ./backups/seaweedfs-volume-$(date +%Y%m%d).tar

# Export filer data
podman volume export aegis-seaweedfs-filer-data > ./backups/seaweedfs-filer-$(date +%Y%m%d).tar

# Import volumes (stop storage pod first)
make teardown-pod POD=storage

podman volume import aegis-seaweedfs-master-data ./backups/seaweedfs-master-YYYYMMDD.tar
podman volume import aegis-seaweedfs-volume-data ./backups/seaweedfs-volume-YYYYMMDD.tar
podman volume import aegis-seaweedfs-filer-data ./backups/seaweedfs-filer-YYYYMMDD.tar

make deploy-pod POD=storage

#!/bin/bash
BACKUP_DIR="./backups/$(date +%Y%m%d-%H%M%S)"
mkdir -p "$BACKUP_DIR"

echo "Backing up PostgreSQL..."
podman exec aegis-database-postgres pg_dumpall -U aegis > "$BACKUP_DIR/all-databases.sql"

echo "Backing up OpenBao..."
podman volume export aegis-openbao-data > "$BACKUP_DIR/openbao-data.tar"

echo "Backing up SeaweedFS..."
podman volume export aegis-seaweedfs-master-data > "$BACKUP_DIR/seaweedfs-master.tar"
podman volume export aegis-seaweedfs-volume-data > "$BACKUP_DIR/seaweedfs-volume.tar"
podman volume export aegis-seaweedfs-filer-data > "$BACKUP_DIR/seaweedfs-filer.tar"

echo "Backup complete: $BACKUP_DIR"

# Check all services
make validate

# Verify PostgreSQL data
podman exec aegis-database-postgres psql -U aegis -c "SELECT count(*) FROM agents;"

# Verify OpenBao
curl -s http://localhost:8200/v1/sys/health | jq .sealed