From c2735d8696d0cca8fd8c6e7af329f985b60c716b Mon Sep 17 00:00:00 2001
From: Tine <tine@tjo.space>
Date: Tue, 11 Mar 2025 21:00:38 +0100
Subject: [PATCH] feat(id.tjo.space): stop authentik when doing backup

---
 .../etc/systemd/system/postgresql-backup.service | 16 ++++++++++++++--
 1 file changed, 14 insertions(+), 2 deletions(-)

diff --git a/id.tjo.space/root/etc/systemd/system/postgresql-backup.service b/id.tjo.space/root/etc/systemd/system/postgresql-backup.service
index 3ec0a13..4746fcc 100644
--- a/id.tjo.space/root/etc/systemd/system/postgresql-backup.service
+++ b/id.tjo.space/root/etc/systemd/system/postgresql-backup.service
@@ -2,11 +2,23 @@
 Description=Backup PostgreSQL databases
 
 [Service]
-Type=oneshot
+Delegate=yes
+Type=notify
+NotifyAccess=all
+SyslogIdentifier=%N
+Environment=PODMAN_SYSTEMD_UNIT=%n
+KillMode=mixed
+
 EnvironmentFile=/etc/postgresql/secrets.env
 EnvironmentFile=/etc/postgresql/postgresql.env
 Environment=BACKUP_DIR=/srv/postgresql/backups
 Environment=POSTGRES_HOST=systemd-postgresql
 
+ExecStartPre=/usr/bin/systemd stop authentik-server authentik-worker
 ExecStartPre=/usr/bin/mkdir -p $BACKUP_DIR
-ExecStart=/usr/bin/podman run --name=systemd-%N --replace --rm --network systemd-main -v ${BACKUP_DIR}:/backups -e PGPASSWORD=${POSTGRES_PASSWORD} docker.io/library/postgres:17.4 pg_dump --username=${POSTGRES_USER} --host=${POSTGRES_HOST} --format=custom --file=/backups/${CURRENT_DATETIME}.sql ${POSTGRES_DB}
+
+ExecStart=/usr/bin/podman run --name=systemd-%N --cidfile=%t/%N.cid --cgroups=split --sdnotify=conmon --detach --replace --rm --network systemd-main -v ${BACKUP_DIR}:/backups -e PGPASSWORD=${POSTGRES_PASSWORD} docker.io/library/postgres:17.4 pg_dump --username=${POSTGRES_USER} --host=${POSTGRES_HOST} --format=custom --file=/backups/${CURRENT_DATETIME}.sql ${POSTGRES_DB}
+
+ExecStop=/usr/bin/podman rm -v -f -i --cidfile=%t/%N.cid
+ExecStopPost=-/usr/bin/podman rm -v -f -i --cidfile=%t/%N.cid
+ExecStopPost=/usr/bin/systemd start authentik-server authentik-worker