File tree Expand file tree Collapse file tree 3 files changed +37
-6
lines changed
share/github-backup-utils Expand file tree Collapse file tree 3 files changed +37
-6
lines changed Original file line number Diff line number Diff line change @@ -383,6 +383,9 @@ if $RESTORE_SETTINGS; then
383383 ghe-restore-settings " $GHE_HOSTNAME "
384384fi
385385
386+ # Always restore column encryption keys
387+ ghe-restoe-column-encryption-keys " $GHE_HOSTNAME "
388+
386389# Make sure mysql and elasticsearch are prep'd and running before restoring.
387390# These services will not have been started on appliances that have not been
388391# configured yet.
Original file line number Diff line number Diff line change 1+ #! /usr/bin/env bash
2+ # / Usage: ghe-restore-settings <host>
3+ # / Restore settings from a snapshot to the given <host>.
4+ set -e
5+
6+ # Bring in the backup configuration
7+ # shellcheck source=share/github-backup-utils/ghe-backup-config
8+ . " $( dirname " ${BASH_SOURCE[0]} " ) "
9+
10+ # Show usage and bail with no arguments
11+ [ -z " $* " && print_usage
12+
13+ bm_start " $( basename $0 ) "
14+
15+ # Grab host arg
16+ GHE_HOSTNAME=" $1 "
17+
18+ # Perform a host-check and establish GHE_REMOTE_XXX variables.
19+ ghe_remote_version_required " $GHE_HOSTNAME "
20+
21+ # The snapshot to restore should be set by the ghe-restore command but this lets
22+ # us run this script directly.
23+ : ${GHE_RESTORE_SNAPSHOT:= current}
24+
25+ # Path to snapshot dir we're restoring from
26+ GHE_RESTORE_SNAPSHOT_PATH=" $GHE_DATA_DIR /$GHE_RESTORE_SNAPSHOT "
27+
28+ # Restore encrypted column encryption keying material if present
29+ restore-secret " encrypted column encryption keying material" " encrypted-column-encryption-keying-material" " secrets.github.encrypted-column-keying-material"
30+
31+ # Restore encrypted column current encryption key if present
32+ restore-secret " encrypted column current encryption key" " encrypted-column-current-encryption-key" " secrets.github.encrypted-column-current-encryption-key"
33+
34+ bm_end " $( basename $0 ) "
Original file line number Diff line number Diff line change @@ -56,12 +56,6 @@ restore-secret "kredz.credz HMAC key" "kredz-credz-hmac" "secrets.kredz.credz-hm
5656# Restore kredz.varz HMAC key if present.
5757restore-secret " kredz.varz HMAC key" " kredz-varz-hmac" " secrets.kredz.varz-hmac-secret"
5858
59- # Restore encrypted column encryption keying material if present
60- restore-secret " encrypted column encryption keying material" " encrypted-column-encryption-keying-material" " secrets.github.encrypted-column-keying-material"
61-
62- # Restore encrypted column current encryption key if present
63- restore-secret " encrypted column current encryption key" " encrypted-column-current-encryption-key" " secrets.github.encrypted-column-current-encryption-key"
64-
6559# Restore SAML keys if present.
6660if [ -f " $GHE_RESTORE_SNAPSHOT_PATH /saml-keys.tar" ; then
6761 log_info " Restoring SAML keys ..."
You can’t perform that action at this time.
0 commit comments