SCRIPT_NAME="Restore Backup"

SCRIPT_EXPLAINER="This script allows to restore Nextcloud and other important data that are \

source /var/scripts/fetch_lib.sh

DEBUG=0

debug_mode

root_check

install_if_not whiptail

print_text_in_color "$ICyan" "Checking prerequisites..."

if ! nextcloud_occ_no_check -V || [ -f "$SCRIPTS/daily-borg-backup.sh" ]

SNAPSHOT_USED=$(lvs -o name,data_percent | grep "NcVM-reserved" | awk '{print $2}' | sed 's|\..*||' | sed 's|,.*||')

if [ -n "$SNAPSHOT_USED" ] && [ "$SNAPSHOT_USED" -lt 100 ]

then

if yesno_box_no "A usable snapshot was found! \

then

lvconvert --merge /dev/ubuntu-vg/NcVM-reserved -y

sleep 1

msg_box "We will now reboot your system to finalize the merging of the snapshot."

reboot

fi

fi

msg_box "It seems like the daily-borg-backup.sh exists.\nThis is not supported. Please start all over again with a new NcVM."

exit 1

if [ ! -f "$NCPATH/occ" ]

msg_box "It seems like the default Nextcloud is not installed in $NCPATH.\nThis is not supported."

exit 1

if [ "$(stat -c '%G' "$NCPATH"/occ)" != "www-data" ]

then

msg_box "It seems like the webserveruser is not www-data.\nThis is not supported."

exit 1

if [ "$(lsb_release -is)" != "Ubuntu" ]

msg_box "This script is only meant to run on Ubuntu.\nThis is not supported"

exit 1

if [ "$(nextcloud_occ config:system:get datadirectory)" != "$NCDATA" ]

then

msg_box "It seems like the default NCDATA-path is not /mnt/ncdata.\nThis is not supported."

exit 1

if [ "$(nextcloud_occ config:system:get dbtype)" != "pgsql" ]

msg_box "It seems like the default dbtype is not postgresql.\nThis is not supported."

exit 1

if [ "$(nextcloud_occ config:system:get dbname)" != "nextcloud_db" ]

msg_box "It seems like the default dbname is not nextcloud_db.\nThis is not supported."

exit 1

if [ "$(nextcloud_occ config:system:get dbuser)" != "$PGDB_USER" ]

msg_box "It seems like the default dbuser is not $PGDB_USER.\nThis is not supported."

exit 1

if ! is_this_installed apache2

msg_box "It seems like your webserver is not apache2.\nThis is not supported."

exit 1

if does_snapshot_exist "NcVM-snapshot-pending"

msg_box "It seems to be currently running a backup or update.

exit 1

elif does_snapshot_exist "NcVM-startup"

msg_box "Please run the update script once before you can continue."

exit 1

if ! does_snapshot_exist "NcVM-snapshot"

msg_box "Unfortunately NcVM-snapshot doesn't exist, hence you are not able to restore the system."

exit 1

elif ! does_snapshot_exist "NcVM-reserved"

lvchange --refresh ubuntu-vg

check_free_space

if [ "$FREE_SPACE" -lt 30 ]

then

msg_box "Unfortunately NcVM-reserved doesn't exist, hence you are not able to restore the system.

exit 1

else

if ! lvcreate --size 30G --name "NcVM-reserved" ubuntu-vg

then

msg_box "Could not create NcVM-reserved snapshot! Please reboot your server and try again!"

exit 1

fi

fi

if grep -q " /mnt/ncdata " /etc/mtab

msg_box "The '/mnt/ncdata' directory is mounted and not existing on the root drive.

exit 1

if grep -q " /home " /etc/mtab

msg_box "The '/home' directory is mounted and not existing on the root drive.

exit 1

msg_box "$SCRIPT_EXPLAINER"

if ! yesno_box_yes "Do you want to restore your server from backup?"

exit 1

msg_box "Please disconnect your drive for now and connect it again AFTER you hit OK.

CURRENT_DRIVES=$(lsblk -o KNAME,TYPE | grep disk | awk '{print $1}')

count=0

while [ "$count" -lt 60 ]

print_text_in_color "$ICyan" "Please connect your drive now."

sleep 5 & spinner_loading

echo ""

NEW_DRIVES=$(lsblk -o KNAME,TYPE | grep disk | awk '{print $1}')

if [ "$CURRENT_DRIVES" = "$NEW_DRIVES" ]

then

count=$((count+5))

else

msg_box "A new drive was found. We will continue with the mounting now.

break

fi

if [ "$count" -ge 60 ]

msg_box "No new drive found within 60 seconds.

exit 1

countdown "Waiting for the drive to spin up..." 15

mapfile -t CURRENT_DRIVES <<< "$CURRENT_DRIVES"

for drive in "${CURRENT_DRIVES[@]}"

NEW_DRIVES=$(echo "$NEW_DRIVES" | grep -v "^$drive$")

args=(whiptail --title "$TITLE" --menu \

$MENU_GUIDE" "$WT_HEIGHT" "$WT_WIDTH" 4)

mapfile -t NEW_DRIVES <<< "$NEW_DRIVES"

for drive in "${NEW_DRIVES[@]}"

DRIVE_DESCRIPTION=$(lsblk -o NAME,VENDOR,MODEL | grep "^$drive" | awk '{print $2, $3}')

PARTITION_STATS=$(lsblk -o KNAME,FSTYPE,SIZE,UUID,LABEL | grep "^$drive" | grep -v "^$drive ")

unset PARTITIONS

mapfile -t PARTITIONS <<< "$(echo "$PARTITION_STATS" | awk '{print $1}')"

for partition in "${PARTITIONS[@]}"

do

STATS=$(echo "$PARTITION_STATS" | grep "^$partition ")

FSTYPE=$(echo "$STATS" | awk '{print $2}')

if [ "$FSTYPE" != "ntfs" ] && [ "$FSTYPE" != "btrfs" ]

then

continue

fi

SIZE=$(echo "$STATS" | awk '{print $3}')

UUID=$(echo "$STATS" | awk '{print $4}')

if [ -z "$UUID" ]

then

continue

fi

LABEL=$(echo "$STATS" | awk '{print $5,$6,$7,$8,$9,$10,$11,$12}' | sed 's| |_|g' | sed -r 's|[_]+$||')

if ! grep -q "$UUID" /etc/fstab

then

args+=("$UUID" "$LABEL $DRIVE_DESCRIPTION $SIZE $FSTYPE")

UUIDS+="$UUID"

else

msg_box "The partition

fi

done

if [ -z "$UUIDS" ]

msg_box "No drive found that can get mounted.

exit 1

UUID=$("${args[@]}" 3>&1 1>&2 2>&3)

if [ -z "$UUID" ]

exit 1

DRIVE_MOUNT="/tmp/backupdrive"

mkdir -p "$DRIVE_MOUNT"

if mountpoint -q "$DRIVE_MOUNT"

umount "$DRIVE_MOUNT"

if ! mount UUID="$UUID" "$DRIVE_MOUNT"

msg_box "Could not mount the selected drive. Something is wrong."

exit 1

print_text_in_color "$ICyan" "Searching for the borg repository. Please be patient!\n(This will take max 60s)"

BORG_REPOS=$(timeout 60 find "$DRIVE_MOUNT/" -type f -name config)

if [ -z "$BORG_REPOS" ]

msg_box "No borg repository found. Are you sure that drive contains one?\nCannot proceed!"

umount "$DRIVE_MOUNT"

exit 1

print_text_in_color "$IGreen" "Found:\n$BORG_REPOS"

print_text_in_color "$ICyan" "Checking if the found borg repositories are valid..."

sleep 2

mapfile -t BORG_REPOS <<< "$BORG_REPOS"

for repository in "${BORG_REPOS[@]}"

if grep -q "\[repository\]" "$repository"

then

if ! echo "$repository" | grep -q "/.snapshots/"

then

VALID_REPOS+=("${repository%/config}")

fi

fi

if [ -z "${VALID_REPOS[*]}" ]

msg_box "No valid borg repository found.\nCannot proceed!"

umount "$DRIVE_MOUNT"

exit 1

args=(whiptail --title "$TITLE" --menu \

$MENU_GUIDE" "$WT_HEIGHT" "$WT_WIDTH" 4)

for repository in "${VALID_REPOS[@]}"

args+=("$repository" "")

BORG_REPO=$("${args[@]}" 3>&1 1>&2 2>&3)

if [ -z "$BORG_REPO" ]

umount "$DRIVE_MOUNT"

exit 1

print_text_in_color "$ICyan" "Installing borgbackup..."

install_if_not borgbackup

apt-get install python3-pyfuse3 --no-install-recommends -y

while :

PASSPHRASE=$(input_box_flow "Please enter the passphrase that was used to encrypt your borg backup.

if [ "$PASSPHRASE" = "exit" ]

then

umount "$DRIVE_MOUNT"

exit 1

fi

export BORG_PASSPHRASE="$PASSPHRASE"

if ! borg list "$BORG_REPO" >/dev/null

then

msg_box "It seems like the passphrase was wrong. Please try again!"

else

break

fi

if [ -f "$BORG_REPO/lock.roster" ]

print_text_in_color "$ICyan" "Breaking the borg lock..."

borg break-lock "$BORG_REPO"

ALL_ARCHIVES=$(borg list "$BORG_REPO")

SYSTEM_ARCHIVES=$(echo "$ALL_ARCHIVES" | grep "NcVM-system-partition" | awk -F "-" '{print $1}' | sort -r)

if [ -z "$SYSTEM_ARCHIVES" ]

msg_box "Not even one valid archive found. Cannot continue."

restore_original_state

exit 1

mapfile -t SYSTEM_ARCHIVES <<< "$SYSTEM_ARCHIVES"

unset args

args=(whiptail --title "$TITLE" --menu \

$MENU_GUIDE" "$WT_HEIGHT" "$WT_WIDTH" 4)

for archive in "${SYSTEM_ARCHIVES[@]}"

HUMAN_DATE=$(echo "$ALL_ARCHIVES" | grep "$archive" | head -1 | awk '{print $3}')

HUMAN_TIME=$(echo "$ALL_ARCHIVES" | grep "$archive" | head -1 | awk '{print $4}')

args+=("$archive" "The backup was made on $HUMAN_DATE $HUMAN_TIME")

choice=$("${args[@]}" 3>&1 1>&2 2>&3)

if [ -z "$choice" ]

msg_box "No archive selected. Exiting."

umount "$DRIVE_MOUNT"

exit 1

BORG_ARCHIVE="$choice-NcVM-system-partition"

print_text_in_color "$ICyan" "Using the borg archive $BORG_ARCHIVE..."

msg_box "We've implemented the option to test the extraction of the backup before we start the restore process.

if yesno_box_no "Do you want to test the extraction of the backup nonetheless?"

mkdir -p /tmp/borgextract

cd /tmp/borgextract

if ! borg extract --dry-run --list "$BORG_REPO::$BORG_ARCHIVE"

then

msg_box "Some errors were reported while checking the archive extracting.\nCannot proceed."

umount "$DRIVE_MOUNT"

exit 1

fi

if ! yesno_box_no "Do you want to restore your backup?

umount "$DRIVE_MOUNT"

exit 1

if ! lvremove /dev/ubuntu-vg/NcVM-reserved -y

msg_box "Could not remove NcVM-reserved snapshot. Please reboot your system!"

umount "$DRIVE_MOUNT"

exit 1

if ! lvcreate --size 30G --snapshot --name "NcVM-reserved" /dev/ubuntu-vg/ubuntu-lv

msg_box "Could not create NcVM-reserved snapshot. Please reboot your system!"

umount "$DRIVE_MOUNT"

exit 1

BORG_MOUNT=/tmp/borg

SYSTEM_DIR="$BORG_MOUNT/system"

mkdir -p "$BORG_MOUNT"

if ! borg mount "$BORG_REPO::$BORG_ARCHIVE" "$BORG_MOUNT"

msg_box "Could not mount the borg archive.\nCannot proceed."

umount "$DRIVE_MOUNT"

exit 1

if ! [ -f "$SYSTEM_DIR/$SCRIPTS/nextclouddb.sql" ] && ! [ -f "$SYSTEM_DIR/$SCRIPTS/nextclouddb.dump" ]

msg_box "Could not find database dump. this is not supported."

umount "$BORG_MOUNT"

umount "$DRIVE_MOUNT"

exit 1

nextcloud_occ_no_check maintenance:mode --on

systemctl stop apache2

rm -rf "$NCPATH"

rm -rf "$NCDATA"

IMPORTANT_FOLDERS=(home/plex home/bitwarden_rs home/bitwarden home/vaultwarden "$SCRIPTS" mnt media "$NCPATH" root/.smbcredentials)

for directory in "${IMPORTANT_FOLDERS[@]}"

directory="${directory#/*}"

if echo "$directory" | grep -q '/'

then

PARENT3="${directory%/*}"

PARENT2="${PARENT3%/*}"

PARENT1="${PARENT2%/*}"

for parent in "$PARENT1" "$PARENT2" "$PARENT3"

do

if [ -n "$parent" ]

then

INCLUDE_DIRS+=(--include="$parent")

fi

done

fi

INCLUDE_DIRS+=(--include="$directory/***")

IMPORTANT_FILES=(var/lib/samba/private/passdb.tdb var/lib/samba/private/secrets.tdb etc/samba/smb.conf)

for file in "${IMPORTANT_FILES[@]}"

if echo "$file" | grep -q '/'

then

PARENT4="${file%/*}"

PARENT3="${PARENT4%/*}"

PARENT2="${PARENT3%/*}"

PARENT1="${PARENT2%/*}"

for parent in "$PARENT1" "$PARENT2" "$PARENT3" "$PARENT4"

do

if [ -n "$parent" ]

then

INCLUDE_DIRS+=(--include="$parent")

fi

done

fi

INCLUDE_FILES+=(--include="$file")

EXCLUDE_DIRECTORIES=("home/plex/config/Library/Application Support/Plex Media Server/Cache" "$NCDATA"/appdata_*/preview "$NCDATA"/*/files_trashbin "$NCDATA"/*/files_versions mnt/NCBACKUP mnt/NCBACKUP-OLD "$NCDATA"/*/uploads)

for directory in "${EXCLUDE_DIRECTORIES[@]}"

directory="${directory#/*}"

EXCLUDE_DIRS+=(--exclude "$directory/*")

if ! rsync --archive --delete --human-readable --one-file-system -vv \

"${EXCLUDE_DIRS[@]}" "${INCLUDE_DIRS[@]}" "${INCLUDE_FILES[@]}" --exclude='*' "$SYSTEM_DIR/" /

msg_box "An issue was reported while restoring all needed files."

umount "$BORG_MOUNT"

umount "$DRIVE_MOUNT"

exit 1

print_text_in_color "$ICyan" "Restoring the database..."

DB_PASSWORD=$(grep "dbpassword" "$SYSTEM_DIR/$NCPATH/config/config.php" | awk '{print $3}' | sed "s/[',]//g")

OLD_DB_USER=$(grep "dbuser" "$SYSTEM_DIR/$NCPATH/config/config.php" | awk '{print $3}' | sed "s/[',]//g")

set -e

sudo -Hiu postgres psql -c "ALTER USER $PGDB_USER WITH PASSWORD '$DB_PASSWORD'"

sudo -Hiu postgres psql -c "DROP DATABASE nextcloud_db;"

sudo -Hiu postgres psql -c "CREATE DATABASE nextcloud_db WITH OWNER $PGDB_USER TEMPLATE template0 ENCODING \"UTF8\";"

if [ "$OLD_DB_USER" != "$PGDB_USER" ]

sudo -Hiu postgres psql -c "CREATE USER $OLD_DB_USER WITH PASSWORD '$PGDB_PASS'";

set +e

if [ -f "$SCRIPTS/nextclouddb.dump" ]

if ! sudo -Hiu postgres psql nextcloud_db < "$SCRIPTS/nextclouddb.dump"

then

msg_box "An issue was reported while restoring the database."

umount "$BORG_MOUNT"

umount "$DRIVE_MOUNT"

exit 1

fi

msg_box "Did not find database dump. Cannot continue."

umount "$BORG_MOUNT"

umount "$DRIVE_MOUNT"

exit 1

set -e

if [ "$OLD_DB_USER" != "$PGDB_USER" ]

sudo -Hiu postgres psql -c "ALTER DATABASE nextcloud_db OWNER TO \"$PGDB_USER\"";

sudo -Hiu postgres psql nextcloud_db -c "REASSIGN OWNED BY \"$OLD_DB_USER\" TO \"$PGDB_USER\"";

sudo -Hiu postgres psql -c "DROP USER \"$OLD_DB_USER\"";

set +e

sed -i "s|'dbuser' =>.*,|'dbuser' => '$PGDB_USER',|" "$NCPATH/config/config.php"

if grep -q " ntfs-3g " "$SYSTEM_DIR/etc/fstab"

grep " ntfs-3g " "$SYSTEM_DIR/etc/fstab" >> /etc/fstab

if grep -q " btrfs " "$SYSTEM_DIR/etc/fstab"

grep " btrfs " "$SYSTEM_DIR/etc/fstab" >> /etc/fstab

if grep -q " fuse.dislocker " "$SYSTEM_DIR/etc/fstab"

print_text_in_color "$ICyan" "Installing dislocker..."

install_if_not dislocker

grep " fuse.dislocker " "$SYSTEM_DIR/etc/fstab" >> /etc/fstab

if grep -q " cifs " "$SYSTEM_DIR/etc/fstab"

# Install all tools

print_text_in_color "$ICyan" "Installing cifs-utils..."

install_if_not keyutils

install_if_not cifs-utils

install_if_not winbind

if [ "$(grep "^hosts:" /etc/nsswitch.conf | grep wins)" == "" ]

then

sed -i '/^hosts/ s/$/ wins/' /etc/nsswitch.conf

fi

grep " cifs " "$SYSTEM_DIR/etc/fstab" >> /etc/fstab

if [ -f "$SYSTEM_DIR/$SCRIPTS/veracrypt-automount.sh" ]

print_text_in_color "$ICyan" "Installing veracrypt... This can take a long time!"

add-apt-repository ppa:unit193/encryption -y

apt-get update -q4 & spinner_loading

apt-get install veracrypt --no-install-recommends -y

# No need to copy the file since it is already synced via rsync

# Create startup service

cat << SERVICE > /etc/systemd/system/veracrypt-automount.service

systemctl enable veracrypt-automount

if grep -q "^smb-users:" "$SYSTEM_DIR/etc/group"

SMB_USERS=$(grep "^smb-users:" "$SYSTEM_DIR/etc/group" | cut -d ":" -f 4 | sed 's|,| |g')

read -r -a SMB_USERS <<< "$SMB_USERS"

groupadd "smb-users"

for user in "${SMB_USERS[@]}"

do

adduser --no-create-home --quiet --disabled-login --force-badname --gecos "" "$user" &>/dev/null

usermod --append --groups smb-users,www-data "$user"

done

DEBIAN_FRONTEND=noninteractive apt-get install samba -y -o Dpkg::Options::="--force-confdef" -o Dpkg::Options::="--force-confold"

# No need to sync files since they are already synced via rsync

if grep -q 'Movie' "$SYSTEM_DIR/$NCPATH/config/config.php"

install_if_not ffmpeg

if grep -q 'Photoshop\|SVG\|TIFF' "$SYSTEM_DIR/$NCPATH/config/config.php"

install_if_not php-imagick

install_if_not libmagickcore-6.q16-3-extra

REDIS_PASS=$(grep \'password\' "$SYSTEM_DIR/$NCPATH/config/config.php" | awk '{print $3}' | sed "s/[',]//g")

sed -i "s|^requirepass.*|requirepass $REDIS_PASS|g" /etc/redis/redis.conf

systemctl restart redis

redis-cli -s /var/run/redis/redis-server.sock -c FLUSHALL

systemctl start apache2

grep -v '^#' "$SYSTEM_DIR/var/spool/cron/crontabs/root" | crontab -u root -

grep -v '^#' "$SYSTEM_DIR/var/spool/cron/crontabs/www-data" | crontab -u www-data -

umount "$BORG_MOUNT"

umount "$DRIVE_MOUNT"

while :

msg_box "Restore completed!

if yesno_box_no "Did you connect all drives?"

then

break

fi

print_text_in_color "$ICyan" "Mounting all drives..."

mount -a -v

if [ -f "$SCRIPTS/veracrypt-automount.sh" ]

bash "$SCRIPTS/veracrypt-automount.sh"

msg_box "We will now adjust a few last things."

nextcloud_occ_no_check maintenance:mode --off

nextcloud_occ_no_check maintenance:data-fingerprint

nextcloud_occ_no_check maintenance:repair

add_to_trusted_domains "$ADDRESS"

nextcloud_occ_no_check trashbin:cleanup --all-users -vvv

nextcloud_occ_no_check versions:cleanup -vvv

nextcloud_occ_no_check files:scan-app-data -vvv

if ! nextcloud_occ_no_check -V

msg_box "Something failed while restoring Nextcloud.\nPlease try again!"

exit 1

if is_this_installed samba

print_text_in_color "$ICyan" "Restarting Samba..."

update-rc.d smbd defaults

update-rc.d smbd enable

service smbd restart

update-rc.d nmbd enable

service nmbd restart

msg_box "The time has come to login to your Nextcloud in a Browser \

msg_box "Restore completed!\n