Add /home and /var/lib/acme to B2 backups

Closes r177. Critical DR gap - user home directories and ACME certificates were not being backed up. Excludes common caches that can be rebuilt: - .cache, .npm/_cacache, .bun/install/cache - node_modules, .nix-profile, .nix-defexpr - Trash Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-10 14:33:01 -08:00 · 2026-01-10 14:33:01 -08:00 · 6954fbec9a
parent b62f649a28
commit 6954fbec9a
1 changed files with 10 additions and 0 deletions
--- a/modules/backup-b2.nix
+++ b/modules/backup-b2.nix
@ -13,6 +13,8 @@ let
    "/var/lib/forgejo"                 # Git hosting (repos, avatars)
    "/var/lib/mautrix-slack"           # Bridge state
    "/var/lib/maubot"                  # Bot data
+    "/var/lib/acme"                    # Let's Encrypt certificates
+    "/home"                            # User home directories
  ];

  excludePatterns = [
@ -20,6 +22,14 @@ let
    "*.pid"
    "*.log"
    "**/.git/objects/pack/*.tmp"       # Git temp files
+    # Home directory caches (can be rebuilt)
+    "/home/*/.cache"
+    "/home/*/.npm/_cacache"
+    "/home/*/.bun/install/cache"
+    "/home/*/node_modules"
+    "/home/*/.nix-profile"
+    "/home/*/.nix-defexpr"
+    "/home/*/.local/share/Trash"
  ];

  # Script to set up restic environment from sops secrets