1.6 KiB
Environment
⚠ Available since version
v1.4.0
Sometimes it's favorable not having the encryption keys in the config files.
For that autorestic allows passing the env variables to backend password as ENV variables, or through an env file.
You can also pass whatever env variable to restic by prefixing it with AUTORESTIC_[BACKEND NAME]_.
ℹ️ Env variables and file overwrite the config file in the following order:
Env Variables > Env File (
.autorestic.env) > Config file (.autorestic.yaml)
Env file
Alternatively autorestic can load an env file, located next to .autorestic.yml called .autorestic.env.
AUTORESTIC_FOO_RESTIC_PASSWORD=secret123
Example with repository password
The syntax for the ENV variables is as follows: AUTORESTIC_[BACKEND NAME]_RESTIC_PASSWORD.
backend:
foo:
type: ...
path: ...
key: secret123 # => AUTORESTIC_FOO_RESTIC_PASSWORD=secret123
This means we could remove key: secret123 from .autorestic.yaml and execute as follows:
AUTORESTIC_FOO_RESTIC_PASSWORD=secret123 autorestic backup ...
Example with Backblaze B2
backends:
bb:
type: b2
path: myBucket
key: myPassword
env:
B2_ACCOUNT_ID: 123
B2_ACCOUNT_KEY: 456
You could create an .autorestic.env or pass the following ENV variables to autorestic:
AUTORESTIC_BB_RESTIC_PASSWORD=myPassword
AUTORESTIC_BB_B2_ACCOUNT_ID=123
AUTORESTIC_BB_B2_ACCOUNT_KEY=456
backends:
bb:
type: b2
path: myBucket
:ToCPrevNext