Create encrypted backups of your Bitwarden_RS database locally every 6 hours. Maintains backups from the last 30 days.
Important: Make sure to securely store your backup encryption key somewhere outside your vault (e.g. printed and stored in physical safe). Losing your backup encryption key will make all backups useless.
Use this in conjuction with rsync running over cron on a remote machine (e.g. your computer) to remotely save the backups. Use at least 2 remote machines for redundancy. For example:
rsync -azP --delete user@bw_server_ip:/path/to/backups ~/local/path/to/store/backups
This command will send rsync output to /var/mail/[user]. To suppress all output add >/dev/null 2>&1 to the end of the command.
BACKUP_ENCRYPTION_KEY=xxx
docker exec -it CONTAINER_ID /bin/bashopenssl enc -d -aes256 -salt -pbkdf2 -pass pass:BACKUP_ENCRYPTION_KEY -in /backups/DESIRED_BACKUP_NAME.tar.gz | tar xz -C /backups- Grab your
db.sqlite3file from/host/path/to/backups/tmp/