added GCP Cloud Function for Cloud SQL export backups

HariSekhon · HariSekhon · commit 1ccc1957630b · 2020-10-16T11:55:03.000+01:00
diff --git a/gcp_cloud_function_sql_export/.gcloudignore b/gcp_cloud_function_sql_export/.gcloudignore
@@ -0,0 +1,19 @@
+#
+#  Author: Hari Sekhon
+#  Date: 2020-10-16 11:44:51 +0100 (Fri, 16 Oct 2020)
+#
+#  vim:ts=4:sts=4:sw=4:et
+#
+#  https://github.com/HariSekhon/pytools
+#
+#  License: see accompanying Hari Sekhon LICENSE file
+#
+#  If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish
+#
+#  https://www.linkedin.com/in/HariSekhon
+#
+
+# see also: massive generic .gcloudignore at https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/.gcloudignore
+
+deploy.sh
+test/
diff --git a/gcp_cloud_function_sql_export/deploy.sh b/gcp_cloud_function_sql_export/deploy.sh
@@ -0,0 +1,22 @@
+#!/usr/bin/env bash
+#  vim:ts=4:sts=4:sw=4:et
+#
+#  Author: Hari Sekhon
+#  Date: 2020-10-16 10:12:26 +0100 (Fri, 16 Oct 2020)
+#
+
+set -euo pipefail
+[ -n "${DEBUG:-}" ] && set -x
+srcdir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
+
+cd "$srcdir"
+
+project="$(gcloud config list --format="value(core.project)")"
+region="europe-west3"  # not available in all regions yet
+
+name="cloud-sql-backups"
+topic="cloud-sql-backups"
+service_account="cloud-function-sql-backup@$project.iam.gserviceaccount.com"
+vpc_connector="cloud-sql-backups"  # for triggering across regions since Cloud Function may not be in the same region as the Cloud SQL instances to back up
+
+gcloud functions deploy "$name" --trigger-topic "$topic" --runtime python37 --entry-point main --service-account "$service_account" --region "$region" --timeout 60 --vpc-connector "$vpc_connector" --memory 128MB
diff --git a/gcp_cloud_function_sql_export/main.py b/gcp_cloud_function_sql_export/main.py
@@ -0,0 +1,105 @@
+#!/usr/bin/env python
+#  coding=utf-8
+#  vim:ts=4:sts=4:sw=4:et
+#
+#  Author: Hari Sekhon
+#  Date: 2020-10-14 15:29:38 +0100 (Wed, 14 Oct 2020)
+#
+#  https://github.com/HariSekhon/pytools
+#
+#  License: see accompanying Hari Sekhon LICENSE file
+#
+#  If you're using my code you're welcome to connect with me on LinkedIn
+#  and optionally send me feedback to help steer this or other code I publish
+#
+#  https://www.linkedin.com/in/HariSekhon
+#
+
+"""
+
+GCP Cloud Function to export a given Cloud SQL database to GCS via PubSub notifications from Cloud Scheduler
+
+Solution Documentation:
+
+    https://cloud.google.com/solutions/scheduling-cloud-sql-database-exports-using-cloud-scheduler
+
+GCP Cloud PubSub should be sent payloads like this by Cloud Scheduler (replacing the env vars with your literals):
+
+{
+    "project":  "${GOOGLE_PROJECT_ID}",
+    "instance": "${SQL_INSTANCE_HOST}",
+    "database": "${DATABASE}",
+    "bucket":   "${BUCKET_NAME}"
+}
+
+Tested on GCP Cloud Functions with Python 3.7
+
+"""
+
+# https://cloud.google.com/functions/docs/writing/specifying-dependencies-python
+
+# Code below is based on solution sample code from the link above
+
+#import os
+import base64
+import logging
+import json
+
+from datetime import datetime
+from httplib2 import Http
+
+from googleapiclient import discovery
+from googleapiclient.errors import HttpError
+from oauth2client.client import GoogleCredentials
+
+
+# pylint: disable=unused-argument
+def main(event, context):
+#    if os.getenv("DEBUG"):
+#        # debug level logs don't appear in function details logs tab even with
+#        # DEBUG=1 runtime env var set and logs severity filter set to >= DEBUG
+#        #logging.debug('event: %s', event)
+#        #logging.debug('context: %s', context)
+#        logging.info('event: %s', event)
+#        logging.info('context: %s', context)
+    data = json.loads(base64.b64decode(event['data']).decode('utf-8'))
+    credentials = GoogleCredentials.get_application_default()
+
+    service = discovery.build('sqladmin', 'v1beta4', http=credentials.authorize(Http()), cache_discovery=False)
+
+    project = data['project']
+    bucket = data['bucket']
+    bucket = bucket.lstrip('gs://')
+    instance = data['instance']
+    database = data['database']
+    timestamp = datetime.now().strftime("%Y-%m-%d_%H%M")
+
+    # .gz extension so it is auto-compressed, saving storage space + billing
+    backup_uri = "gs://{bucket}/backups/sql/{instance}--{database}--{timestamp}.sql.gz".format(
+        bucket=bucket,
+        instance=instance,
+        database=database,
+        timestamp=timestamp)
+
+    instances_export_request_body = {
+        "exportContext": {
+            "kind": "sql#exportContext",
+            "fileType": "SQL",
+            "uri": backup_uri,
+            "databases": [
+                database
+            ]
+        }
+    }
+
+    try:
+        request = service.instances().export(
+            project=project,
+            instance=instance,
+            body=instances_export_request_body
+        )
+        response = request.execute()
+    except HttpError as err:
+        logging.error("Backup FAILED. Reason: %s", err)
+    else:
+        logging.info("Backup task status: %s", response)
diff --git a/gcp_cloud_function_sql_export/requirements.txt b/gcp_cloud_function_sql_export/requirements.txt
@@ -0,0 +1,3 @@
+# https://cloud.google.com/functions/docs/writing/specifying-dependencies-python
+google-api-python-client
+Oauth2client

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+# https://cloud.google.com/functions/docs/writing/specifying-dependencies-python`
	`2`	`+google-api-python-client`
	`3`	`+Oauth2client`