cybex / laravel-protector
Protect Databases by generating Backups and Import those on non-productive Environments.
Installs: 4 832
Dependents: 0
Suggesters: 0
Security: 0
Stars: 5
Watchers: 1
Forks: 0
Open Issues: 10
Requires
- php: ^8.2
- ext-curl: *
- ext-json: *
- ext-mbstring: *
- ext-pdo: *
- ext-sodium: *
- guzzlehttp/guzzle: ^7.4
- illuminate/support: ^11.0
- laravel/framework: ^11.0
- laravel/sanctum: ^4.0
Requires (Dev)
- laravel/sail: ^1.26
- orchestra/testbench: ^9.0
- phpunit/phpunit: ^10.5
- dev-master
- v3.0.0
- v2.2.0
- v2.1.0
- v2.0.1
- v2.0.0
- v1.6.0
- v1.5.0
- v1.4.1
- v1.4.0
- v1.3.1
- v1.3.0
- v1.2.0
- v1.1.1
- v1.1.0
- v1.0.1
- v1.0.0
- dev-fix/readme
- dev-v2/fix/readme
- dev-feature/pint-formatting
- dev-release/v3
- dev-release/v2
- dev-feature/set-connection
- dev-feature/add-pint-auto-linting-action
- dev-release/v1
- dev-fix/option-latest-with-force
- dev-feature/dump-meta-data
This package is auto-updated.
Last update: 2024-05-02 10:32:23 UTC
README
This package allows you to download, export and import your application's database backups.
Common usage scenarios
- Store your local database in a file
- Non-productive developer machines can download the live server database
- A central backup server can collect backups from multiple live servers
Feature set
- Download and optionally import databases from a server
- Import existing database files
- Export the local database to a file
- User authentication through Laravel Sanctum tokens
- Transport encryption using Sodium
Supported databases
- Protector only supports MySQL databases at this point.
- MariaDB databases may work, but are currently not actively tested and supported.
- Source and destination databases are currently not checked. Please make sure you run the same software in the same versions to prevent issues.
- Because of different dump formats, pulling dumps from MariaDB and restoring them to MySQL will not work.
Notes
- Enabling Laravel Telescope will prevent remote files from being downloaded, as it opens and discards the HTTP stream!
Table of contents
Usage
Export to file
To save a copy of your local database, run
php artisan protector:export
By default, dumps are stored in storage/app/protector on your default project disk.
You can configure the target disk, filename, etc. by publishing the protector config file to your project
artisan vendor:publish --tag=protector.config
Import
Run the following command for an interactive shell
php artisan protector:import
Importing a specific source
To download and import the server database in one go, run
php artisan protector:import --remote
When used with other options, remote will serve as fallback behavior.
To import a specific database file that you downloaded earlier, run
php artisan protector:import --file=<absolute path to database file>
Or just reference the database file name in the protector folder (default folder is storage/app/protector).
php artisan protector:import --dump=<name of database file>
To import the latest existing database file, run
php artisan protector:import --latest
Options
If you want to run migrations after the import of the database file, run
php artisan protector:import --migrate
For automation, also consider the flush option to clean up older database files, and the force option to bypass user interaction.
php artisan protector:import --remote --migrate --flush --force
To learn more about import options, run
php artisan protector:import --help
Setup instructions
Find below three common scenarios of usage. These are not mutually exclusive.
Setup for storing the local database
If you only want to store a copy of your local database to a disk, the setup is pretty simple.
Installing protector in your local Laravel project
Install the package via composer.
composer require cybex/laravel-protector
You can optionally publish the protector config to set the following options
fileName: the file name of the database dumpbaseDirectory: where files are being storeddiskName: a dedicated Laravel disk defined in config/filesystems.php. These can point to a specific local folder or a cloud file bucket like AWS S3
artisan vendor:publish --tag=protector.config
Local usage
You can now use the artisan command to write a backup to the protector storage folder.
php artisan protector:export
By default, the file will be stored in storage/protector and have a timestamp in the name. You can also specify the filename.
You could also automate this by
- installing a cronjob on linux
- running it when you deploy to your server
- creating a Laravel Job and queueing it
php artisan protector:export --file=storage/database.sql
Setup for importing the database of a remote server
This package can run on both servers and client machines of the same software repository. You set up authorized developers on the server, and give them the key for their local machine.
Installing protector in your Laravel project
Install the package via composer.
composer require cybex/laravel-protector
In your User model class, add the following trait.
use Laravel\Sanctum\HasApiTokens; class User extends Authenticatable { use HasApiTokens; ... }
Publish the protector database migration, and optionally modify it to work with your project.
php artisan vendor:publish --tag=protector.migrations
Run the migration on the client and server repository.
php artisan migrate
You can optionally publish the protector config to set options regarding the storage, access and transmission of the files.
php artisan vendor:publish --tag=protector.config
On the client machine
Run the following command to receive
- the public key to give to your server admin
- the private key to save in your .env file
php artisan protector:keys
Your server admin will then give you the token and server-url to save in your .env file. Unless specified otherwise in your software, the .env keys are
PROTECTOR_AUTH_TOKEN= PROTECTOR_SERVER_URL=
Do not give your private key to anyone and keep it protected at all time
See Usage on how to import the remote database.
Downloaded database dump files are stored unencrypted
On the server
Make sure that the server is accessible to the client machine via HTTPS.
When one of your developers gives you their public key from the previous step, you can authorize them with:
php artisan protector:token --publicKey=<public key> <user id>
You will receive the token and url to give back to the developer, who has to save them in their .env file.
The developer can then download and import the server database on their own.
Setup for collecting backups from multiple servers
You can develop a custom client that can access and store remote server backups. The servers can be different Laravel projects that have the protector package installed.
See the previous chapter on how to give your backup client access to all servers. The backup client will need an according user on each target server.
- All the backup users on the target servers will have the same public key from the client
- For each target server, the client will store the according url and token
See cybex-gmbh/collector for an example implementation.
Migration guide from Protector v1.x to v2.x
Likelihood of impact: high
- If your app does not explicitly require the laravel/sanctum package, upgrading Protector to version 2.x may also upgrade Sanctum to version 3.x. This will require you to follow its upgrade guide. Alternatively you can explicitly require laravel/sanctum ^2.4 in your app to lock its version.
Likelihood of impact: low
- Access to the formerly public methods
getGitRevision(),getGitHeadDate()orgetGitBranch()is now protected. You now need to call getMetaData() and extract the information from the returned array.
Contributing
Please see CONTRIBUTING for details.
Security
If you discover any security related issues, please email webdevelopment@cybex-online.com instead of using the issue tracker.
Credits
License
The MIT License (MIT). Please see License File for more information.
Laravel Package Boilerplate
This package was generated using the Laravel Package Boilerplate.