This feature is in preview.
This feature is enabled by default in Cloud Spaces.
For Connected and Disconnected Spaces, this feature requires at least Spaces v1.3.0
and is off by default. To enable, set features.alpha.sharedBackup.enabled=true
when installing Spaces:
up space init --token-file="${SPACES_TOKEN_PATH}" "v${SPACES_VERSION}" \
...
--set "features.alpha.sharedBackup.enabled=true"
Upbound’s Shared Backups is a built-in backup and restore feature. Shared Backups lets you configure automatic schedules for taking snapshots of your managed control planes. You can restore data from these backups by making new control planes. This guide explains how to use Shared Backups for disaster recovery or upgrade scenarios.
Benefits
The Shared Backups feature provides the following benefits:
- Automatic backups for control planes without any operational overhead
- Backup schedules for multiple managed control planes in a group
- Shared Backups are available across all hosting environments of Upbound (Disconnected, Connected or Cloud Spaces)
Prerequisites
Enabled the Shared Backups feature in the Space you plan to run your managed control plane in:
- Cloud Spaces: Enabled by default
- Connected Spaces: Space administrator must enable this feature
- Disconnected Spaces: Space administrator must enable this feature
Configure a Shared Backup Config
SharedBackupConfig is a group-scoped resource. You should create them in a group containing one or more managed control planes. This resource configures the storage details and provider. Whenever a backup executes (either by schedule or manually initiated), it references a SharedBackupConfig to tell it where store the snapshot.
Backup config provider
The spec.objectStorage.provider
and spec.objectStorage.config
fields configures:
- The object storage provider
- The path to the provider
- The credentials needed to communicate with the provider
You can only set one provider. Upbound currently supports AWS, Azure, and GCP as providers.
spec.objectStorage.config
is a freeform map of configuration options for the object storage provider. See Thanos object storage for more information on the formats for each supported cloud provider. spec.bucket
and spec.provider
overrides the required values in the config.
AWS as a storage provider
This example demonstrates how to use AWS as a storage provider for your backups:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupConfig
metadata:
name: default
namespace: default
spec:
objectStorage:
provider: AWS
bucket: spaces-backup-bucket
config:
endpoint: s3.eu-west-2.amazonaws.com
region: eu-west-2
credentials:
source: Secret
secretRef:
name: bucket-creds
key: creds
This example assumes you’ve already created an S3 bucket called “spaces-backup-bucket” in AWS eu-west-2
region. The account credentials to access the bucket should exist in a secret of the same namespace as the Shared Backup Config.
Azure as a storage provider
This example demonstrates how to use Azure as a storage provider for your backups:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupConfig
metadata:
name: default
namespace: default
spec:
objectStorage:
provider: Azure
bucket: upbound-backups
config:
storage_account: upbackupstore
container: upbound-backups
endpoint: blob.core.windows.net
credentials:
source: Secret
secretRef:
name: bucket-creds
key: creds
This example assumes you’ve already created an Azure storage account called upbackupstore
and blob upbound-backups
. The storage account key to access the blob should exist in a secret of the same namespace as the Shared Backup Config.
GCP as a storage provider
This example demonstrates how to use Google Cloud Storage as a storage provider for your backups:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupConfig
metadata:
name: default
namespace: default
spec:
objectStorage:
provider: GCP
bucket: spaces-backup-bucket
credentials:
source: Secret
secretRef:
name: bucket-creds
key: creds
This example assumes you’ve already created a Cloud bucket called “spaces-backup-bucket” and a service account with access to this bucket. The key file should exist in a secret of the same namespace as the Shared Backup Config.
Configure a Shared Backup Schedule
SharedBackupSchedule is a group-scoped resource. You should create them in a group containing one or more managed control planes. This resource defines a backup schedule for control planes within its corresponding group.
Below is an example of a Shared Backup Schedule that takes backups every day of all control planes having environment: production
labels:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupSchedule
metadata:
name: daily-schedule
namespace: default
spec:
schedule: "@daily"
configRef:
kind: SharedBackupConfig
name: default
controlPlaneSelector:
labelSelectors:
- matchLabels:
environment: production
Define a schedule
The spec.schedule
field is a Cron-formatted string. Some common examples are below:
Entry | Description |
---|---|
@hourly | Run once an hour. |
@daily | Run once a day. |
@weekly | Run once a week. |
0 0/4 * * * | Run every 4 hours. |
0/15 * * * 1-5 | Run every fifteenth minute on Monday through Friday. |
@every 1h30m10s | Run every 1 hour, 30 minutes, and 10 seconds. Hour is the largest measurement of time for @every. |
Exclude resources from the backup
The spec.excludedResources
field is an array of resource names to exclude from each backup.
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupSchedule
metadata:
name: daily-schedule
spec:
excludedResources:
- "XCluster"
- "XDatabase"
- "XRolePolicyAttachment"
Suspend a schedule
Use spec.suspend
field to suspend the schedule. It creates no new backups, but allows running backups to complete.
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupSchedule
metadata:
name: daily-schedule
spec:
suspend: true
Set the time to live
Set the spec.ttl
field to define the time to live for the backup. After this time, the backup is eligible for garbage collection. If this field isn’t set, the backup isn’t garbage collected. The time to live is a duration, for example, 168h
for 7 days.
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupSchedule
metadata:
name: daily-schedule
spec:
ttl: 168h # Backup is garbage collected after 7 days
Define the deletion policy
Set the spec.deletionPolicy
to define backup deletion actions, including the
deletion of the backup file from the bucket. The Deletion Policy value defaults
to Orphan
. Set it to Delete
to remove uploaded files in the bucket. For more
information on the backup and restore process, review the Spaces API
documentation.
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupSchedule
metadata:
name: daily-schedule
spec:
ttl: 168h # Backup is garbage collected after 7 days
deletionPolicy: Delete # Defaults to Orphan
Garbage collect backups when the schedule gets deleted
Set the spec.useOwnerReferencesInBackup
to garbage collect associated backups when a shared schedule gets deleted. If set to true, backups are garbage collected when the schedule gets deleted.
Control plane selection
To configure which managed control planes in a group you want to create a backup schedule for, use the spec.controlPlaneSelector
field. You can either use labelSelectors
or the names
of a control plane directly. A control plane matches if any of the label selectors match.
This example matches all control planes in the group that have environment: production
as a label:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupSchedule
metadata:
name: my-backup-schedule
spec:
controlPlaneSelector:
labelSelectors:
- matchLabels:
environment: production
You can use the more complex matchExpressions
to match labels based on an expression. This example matches control planes that have label environment: production
or environment: staging
:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupSchedule
metadata:
name: my-backup-schedule
spec:
controlPlaneSelector:
labelSelectors:
- matchExpressions:
- { key: environment, operator: In, values: [production,staging] }
You can also specify the names of control planes directly:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackupSchedule
metadata:
name: my-backup-schedule
spec:
controlPlaneSelector:
names:
- controlplane-dev
- controlplane-staging
- controlplane-prod
Configure a Shared Backup
SharedBackup is a group-scoped resource. You should create them in a group containing one or more managed control planes. This resource causes a backups to occur for control planes within its corresponding group.
Below is an example of a Shared Backup that takes a backup of all control planes having environment: production
labels:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackup
metadata:
name: my-backup
namespace: default
spec:
configRef:
kind: SharedBackupConfig
name: default
controlPlaneSelector:
labelSelectors:
- matchLabels:
environment: production
Exclude resources from the backup
The spec.excludedResources
field is an array of resource names to exclude from each backup.
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackup
metadata:
name: my-backup
spec:
excludedResources:
- "XCluster"
- "XDatabase"
- "XRolePolicyAttachment"
Set the time to live
Set the spec.ttl
field to define the time to live for the backup. After this time, the backup is eligible for garbage collection. If this field isn’t set, the backup isn’t garbage collected. The time to live is a duration, for example, 168h
for 7 days.
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackup
metadata:
name: my-backup
spec:
ttl: 168h # Backup is garbage collected after 7 days
Garbage collect backups on Shared Backup deletion
Set the spec.useOwnerReferencesInBackup
to define whether to garbage collect associated backups when a shared backup gets deleted. If set to true, backups are garbage collected when the shared backup gets deleted.
Control plane selection
To configure which managed control planes in a group you want to create a backup for, use the spec.controlPlaneSelector
field. You can either use labelSelectors
or the names
of a control plane directly. A control plane matches if any of the label selectors match.
This example matches all control planes in the group that have environment: production
as a label:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackup
metadata:
name: my-backup
spec:
controlPlaneSelector:
labelSelectors:
- matchLabels:
environment: production
You can use the more complex matchExpressions
to match labels based on an expression. This example matches control planes that have label environment: production
or environment: staging
:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackup
metadata:
name: my-backup
spec:
controlPlaneSelector:
labelSelectors:
- matchExpressions:
- { key: environment, operator: In, values: [production,staging] }
You can also specify the names of control planes directly:
apiVersion: spaces.upbound.io/v1alpha1
kind: SharedBackup
metadata:
name: my-backup
spec:
controlPlaneSelector:
names:
- controlplane-dev
- controlplane-staging
- controlplane-prod
Create a manual backup
Backup is a group-scoped resource that causes a single backup to occur for a control planes in its corresponding group.
Below is an example of a manual Backup of a managed control plane:
apiVersion: spaces.upbound.io/v1alpha1
kind: Backup
metadata:
name: my-backup
namespace: default
spec:
configRef:
kind: SharedBackupConfig
name: default
controlPlane: my-awesome-ctp
deletionPolicy: Delete
The backup specification DeletionPolicy
defines backup deletion actions,
including the deletion of the backup file from the bucket. The Deletion Policy
value defaults to Orphan
. Set it to Delete
to remove uploaded files
in the bucket.
For more information on the backup and restore process, review the Spaces API documentation.
Choose a control plane to backup
The spec.controlPlane
field defines which control plane to execute a backup against.
apiVersion: spaces.upbound.io/v1alpha1
kind: Backup
metadata:
name: my-backup
namespace: default
spec:
controlPlane: my-awesome-ctp
Exclude resources from the backup
The spec.excludedResources
field is an array of resource names to exclude from the manual backup.
apiVersion: spaces.upbound.io/v1alpha1
kind: Backup
metadata:
name: my-backup
spec:
excludedResources:
- "XCluster"
- "XDatabase"
- "XRolePolicyAttachment"
Set the time to live
Set the spec.ttl
field to define the time to live for the backup. After this time, the backup is eligible for garbage collection. If this field isn’t set, the backup isn’t garbage collected. The time to live is a duration, for example, 168h
for 7 days.
apiVersion: spaces.upbound.io/v1alpha1
kind: Backup
metadata:
name: my-backup
spec:
ttl: 168h # Backup is garbage collected after 7 days
Restore a control plane from a backup
You can restore a control plane’s state from a backup. Below is an example of creating a new control plane from a previous backup called restore-me
:
apiVersion: spaces.upbound.io/v1beta1
kind: ControlPlane
metadata:
name: my-awesome-restored-ctp
namespace: default
spec:
restore:
source:
kind: Backup
name: restore-me