feat(backup): add support for new velero fields

README.md

@@ -387,13 +387,22 @@ helm delete --namespace test my-application
 | backup.namespace | string | `{{ .Release.Namespace }}` | Namespace for Backup. |
 | backup.additionalLabels | object | `nil` | Additional labels for Backup. |
 | backup.annotations | object | `nil` | Annotations for Backup. |
-| backup.defaultVolumesToRestic | bool | `true` | Whether to use Restic to take snapshots of all pod volumes by default. |
+| backup.defaultVolumesToFsBackup | bool | `true` | Whether to use filesystem backup to take snapshots of all pod volumes by default. |
+| backup.defaultVolumesToRestic | bool | `nil` | Whether to use Restic to take snapshots of all pod volumes by default. Deprecated: Use `defaultVolumesToFsBackup` instead. |
 | backup.snapshotVolumes | bool | `true` | Whether to take snapshots of persistent volumes as part of the backup. |
+| backup.snapshotMoveData | bool | `nil` | Whether to move the data of the snapshot after it's taken. |
+| backup.csiSnapshotTimeout | string | `nil` | Time to wait for CSI VolumeSnapshot status to turn ReadyToUse during creation (e.g., "10m"). |
+| backup.datamover | string | `nil` | Data mover to be used by the backup. If empty or "velero", the built-in data mover will be used. |
+| backup.itemOperationTimeout | string | `nil` | Time to wait for asynchronous BackupItemAction operations (e.g., "1h"). |
 | backup.storageLocation | string | `nil` | Name of the backup storage location where the backup should be stored. |
 | backup.ttl | string | `"1h0m0s"` | How long the Backup should be retained for. |
+| backup.volumeSnapshotLocations | list | `nil` | Names of VolumeSnapshotLocations associated with this backup. |
 | backup.includedNamespaces | tpl/list | `[ {{ include "application.namespace" $ }} ]` | List of namespaces to include objects from. |
 | backup.includedResources | list | `nil` | List of resource types to include in the backup. |
 | backup.excludedResources | list | `nil` | List of resource types to exclude from the backup. |
+| backup.includedNamespaceScopedResources | list | `nil` | List of namespace-scoped resource types to include in the backup. |
+| backup.excludedNamespaceScopedResources | list | `nil` | List of namespace-scoped resource types to exclude from the backup. |
+| backup.orderedResources | object | `nil` | Specifies the backup order of resources of specific Kind. The map key is the resource name and the value is a list of object names in the order they should be backed up. |
 
 ## Naming convention for ConfigMap, Secret, SealedSecret and ExternalSecret
 

application/templates/backup.yaml

@@ -1,38 +1,76 @@
-{{- if (.Values.backup).enabled }}
+{{- if and .Values.backup .Values.backup.enabled (.Capabilities.APIVersions.Has "velero.io/v1") -}}
 apiVersion: velero.io/v1
 kind: Backup
 metadata:
   name: {{ printf "%s-backup" .Values.applicationName | trunc 63 | quote }}
   namespace: {{ .Values.backup.namespace | default ( include "application.namespace" . ) | quote }}
   labels:
-  {{- include "application.labels" $ | nindent 4 }}
-{{- if .Values.backup.additionalLabels }}
-{{ toYaml .Values.backup.additionalLabels | indent 4 }}
-{{- end }}
-{{- if .Values.backup.annotations }}
+    {{- include "application.labels" $ | nindent 4 }}
+    {{- if .Values.backup.additionalLabels }}
+    {{- toYaml .Values.backup.additionalLabels | nindent 4 }}
+    {{- end }}
+  {{- if .Values.backup.annotations }}
   annotations:
-{{ toYaml .Values.backup.annotations | indent 4 }}
-{{- end }}
+    {{- toYaml .Values.backup.annotations | nindent 4 }}
+  {{- end }}
 spec:
   labelSelector:
     matchLabels:
-       app.kubernetes.io/part-of: {{ include "application.name" . }}
+      {{- include "application.selectorLabels" . | nindent 6 }}
   {{- if not (kindIs "invalid" .Values.backup.includedNamespaces) }}
   includedNamespaces:
     {{- range $namespace := .Values.backup.includedNamespaces }}
     - {{ include "application.tplvalues.render" ( dict "value" $namespace "context" $ ) }}
     {{- end }}
   {{- end }}
-  defaultVolumesToRestic: {{  .Values.backup.defaultVolumesToRestic }}
+  {{- if not (kindIs "invalid" .Values.backup.defaultVolumesToRestic) }}
+  defaultVolumesToRestic: {{ .Values.backup.defaultVolumesToRestic }}
+  {{- else if not (kindIs "invalid" .Values.backup.defaultVolumesToFsBackup) }}
+  defaultVolumesToFsBackup: {{ .Values.backup.defaultVolumesToFsBackup }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.snapshotVolumes) }}
   snapshotVolumes: {{ .Values.backup.snapshotVolumes }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.snapshotMoveData) }}
+  snapshotMoveData: {{ .Values.backup.snapshotMoveData }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.csiSnapshotTimeout) }}
+  csiSnapshotTimeout: {{ .Values.backup.csiSnapshotTimeout | quote }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.datamover) }}
+  datamover: {{ .Values.backup.datamover | quote }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.itemOperationTimeout) }}
+  itemOperationTimeout: {{ .Values.backup.itemOperationTimeout | quote }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.storageLocation) }}
   storageLocation: {{ .Values.backup.storageLocation | quote }}
-  ttl: {{ .Values.backup.ttl }}
-{{- if .Values.backup.includedResources }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.ttl) }}
+  ttl: {{ .Values.backup.ttl | quote }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.volumeSnapshotLocations) }}
+  volumeSnapshotLocations:
+    {{- toYaml .Values.backup.volumeSnapshotLocations | nindent 4 }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.includedResources) }}
   includedResources:
-{{ toYaml .Values.backup.includedResources | indent 4 }}
-{{- end -}}
-{{- if .Values.backup.excludedResources }}
+    {{- toYaml .Values.backup.includedResources | nindent 4 }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.excludedResources) }}
   excludedResources:
-{{ toYaml .Values.backup.excludedResources | indent 4 }}
-{{- end -}}
+    {{- toYaml .Values.backup.excludedResources | nindent 4 }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.includedNamespaceScopedResources) }}
+  includedNamespaceScopedResources:
+    {{- toYaml .Values.backup.includedNamespaceScopedResources | nindent 4 }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.excludedNamespaceScopedResources) }}
+  excludedNamespaceScopedResources:
+    {{- toYaml .Values.backup.excludedNamespaceScopedResources | nindent 4 }}
+  {{- end }}
+  {{- if not (kindIs "invalid" .Values.backup.orderedResources) }}
+  orderedResources:
+    {{- toYaml .Values.backup.orderedResources | nindent 4 }}
+  {{- end }}
 {{- end }}

application/tests/backup_test.yaml

@@ -3,6 +3,11 @@ suite: Backup
 templates:
   - backup.yaml
 
+capabilities:
+  apiVersions:
+    - velero.io/v1
+    - velero.io/v1/Backup
+
 tests:
   - it: does not yield Backup resource if backup.enabled is false
     set:
@@ -54,8 +59,10 @@ tests:
         namespace: my-namespace
         storageLocation: my-storage-location
     asserts:
-      - equal:
+      - notExists:
           path: spec.defaultVolumesToRestic
+      - equal:
+          path: spec.defaultVolumesToFsBackup
           value: true
       - equal:
           path: spec.snapshotVolumes
@@ -64,6 +71,20 @@ tests:
           path: spec.ttl
           value: "1h0m0s"
 
+  - it: uses restic integration is explicitly enabled
+    set:
+      backup:
+        enabled: true
+        namespace: my-namespace
+        storageLocation: my-storage-location
+        defaultVolumesToRestic: true
+    asserts:
+      - notExists:
+          path: spec.defaultVolumesToFsBackup
+      - equal:
+          path: spec.defaultVolumesToRestic
+          value: true
+
   - it: includes correct includedNamespaces by default
     set:
       namespaceOverride: base-namespace
@@ -115,3 +136,119 @@ tests:
           value:
             - secrets
             - configmaps
+
+  - it: includes snapshotMoveData when defined
+    set:
+      backup:
+        enabled: true
+        snapshotMoveData: true
+    asserts:
+      - equal:
+          path: spec.snapshotMoveData
+          value: true
+
+  - it: does not include snapshotMoveData when not defined
+    set:
+      backup:
+        enabled: true
+    asserts:
+      - notExists:
+          path: spec.snapshotMoveData
+
+  - it: uses application selector labels
+    set:
+      backup:
+        enabled: true
+      applicationName: my-app
+    asserts:
+      - equal:
+          path: spec.labelSelector.matchLabels
+          value:
+            app.kubernetes.io/name: my-app
+
+  - it: includes csiSnapshotTimeout when defined
+    set:
+      backup:
+        enabled: true
+        csiSnapshotTimeout: "10m"
+    asserts:
+      - equal:
+          path: spec.csiSnapshotTimeout
+          value: "10m"
+
+  - it: includes datamover when defined
+    set:
+      backup:
+        enabled: true
+        datamover: "kopia"
+    asserts:
+      - equal:
+          path: spec.datamover
+          value: "kopia"
+
+  - it: includes itemOperationTimeout when defined
+    set:
+      backup:
+        enabled: true
+        itemOperationTimeout: "1h"
+    asserts:
+      - equal:
+          path: spec.itemOperationTimeout
+          value: "1h"
+
+  - it: includes volumeSnapshotLocations when defined
+    set:
+      backup:
+        enabled: true
+        volumeSnapshotLocations:
+          - default
+          - gp2
+    asserts:
+      - equal:
+          path: spec.volumeSnapshotLocations
+          value:
+            - default
+            - gp2
+
+  - it: includes includedNamespaceScopedResources when defined
+    set:
+      backup:
+        enabled: true
+        includedNamespaceScopedResources:
+          - deployments
+          - services
+    asserts:
+      - equal:
+          path: spec.includedNamespaceScopedResources
+          value:
+            - deployments
+            - services
+
+  - it: includes excludedNamespaceScopedResources when defined
+    set:
+      backup:
+        enabled: true
+        excludedNamespaceScopedResources:
+          - secrets
+          - configmaps
+    asserts:
+      - equal:
+          path: spec.excludedNamespaceScopedResources
+          value:
+            - secrets
+            - configmaps
+
+  - it: includes orderedResources when defined
+    set:
+      backup:
+        enabled: true
+        orderedResources:
+          deployments:
+            - my-deployment-1
+            - my-deployment-2
+    asserts:
+      - equal:
+          path: spec.orderedResources.deployments
+          value:
+            - my-deployment-1
+            - my-deployment-2

application/values.yaml

@@ -1236,18 +1236,38 @@ backup:
   # @section -- Backup Parameters
   annotations:
     # key: value
+  # -- (bool) Whether to use filesystem backup to take snapshots of all pod volumes by default.
+  # @section -- Backup Parameters
+  defaultVolumesToFsBackup: true
   # -- (bool) Whether to use Restic to take snapshots of all pod volumes by default.
+  # Deprecated: Use `defaultVolumesToFsBackup` instead.
   # @section -- Backup Parameters
-  defaultVolumesToRestic: true
+  defaultVolumesToRestic:
   # -- (bool) Whether to take snapshots of persistent volumes as part of the backup.
   # @section -- Backup Parameters
   snapshotVolumes: true
+  # -- (bool) Whether to move the data of the snapshot after it's taken.
+  # @section -- Backup Parameters
+  snapshotMoveData:
+  # -- (string) Time to wait for CSI VolumeSnapshot status to turn ReadyToUse during creation (e.g., "10m").
+  # @section -- Backup Parameters
+  csiSnapshotTimeout:
+  # -- (string) Data mover to be used by the backup. If empty or "velero", the built-in data mover will be used.
+  # @section -- Backup Parameters
+  datamover:
+  # -- (string) Time to wait for asynchronous BackupItemAction operations (e.g., "1h").
+  # @section -- Backup Parameters
+  itemOperationTimeout:
   # -- (string) Name of the backup storage location where the backup should be stored.
   # @section -- Backup Parameters
   storageLocation:
   # -- (string) How long the Backup should be retained for.
   # @section -- Backup Parameters
   ttl: "1h0m0s"
+  # -- (list) Names of VolumeSnapshotLocations associated with this backup.
+  # @section -- Backup Parameters
+  volumeSnapshotLocations:
+    # - my-volume-snapshot-location
   # -- (tpl/list) List of namespaces to include objects from.
   # @default -- `[ {{ include "application.namespace" $ }} ]`
   # @section -- Backup Parameters
@@ -1256,9 +1276,29 @@ backup:
   # -- (list) List of resource types to include in the backup.
   # @section -- Backup Parameters
   includedResources:
+    # - deployments
+    # - services
   # -- (list) List of resource types to exclude from the backup.
   # @section -- Backup Parameters
   excludedResources:
+    # - secrets
+    # - configmaps
+  # -- (list) List of namespace-scoped resource types to include in the backup.
+  # @section -- Backup Parameters
+  includedNamespaceScopedResources:
+    # - deployments
+    # - services
+  # -- (list) List of namespace-scoped resource types to exclude from the backup.
+  # @section -- Backup Parameters
+  excludedNamespaceScopedResources:
+    # - secrets
+    # - configmaps
+  # -- (object) Specifies the backup order of resources of specific Kind. The map key is the resource name and the value is a list of object names in the order they should be backed up.
+  # @section -- Backup Parameters
+  orderedResources:
+    # deployments: 
+    #   - my-deployment-1
+    #   - my-deployment-2
 
 # -- ([list or object] of [tpl/object or tpl/string]) Extra K8s manifests to deploy.
 # Can be of type list or object. If object, keys are ignored and only values are used. The used values can be defined as object or string and are passed through tpl to render.