Configuration Settings¶

The config file specifies your targets along with system settings such as working directory and secret encryption key.

Sample Configuration¶

~/.config/dbsnapper/dbnsapper.yml

authtoken: 1234567890abcdef1234567890abcdef....
working_directory: /Users/snappy/.dbsnapper
secret_key: 1234567890abcdef1234567890abcdef
docker:
  images:
    mysql: mysql:8-oracle
    postgres: postgres:16-alpine
# Target configurations
targets:
  sakila:
    name: sakila
    # Snapshot configuration
    snapshot:
      src_url: mysql://root:mysql@localhost:13306/sakila?tls=false
      dst_url: mysql://root:mysql@localhost:3306/sakila_snap?tls=false
    # Sanitization configuration
    sanitize:
      dst_url: mysql://root:mysql@localhost:3306/sakila_sanitized?tls=false
      query_file: "sakila.san.sql"
    # Subsetting configuration
    subset:
      src_url: mysql://root:mysql@localhost:13306/sakila?tls=false
      dst_url: mysql://root:mysql@localhost:3306/sakila_subset?tls=false
      subset_tables:
        - table: sakila.film
          where: "film_id < 20"
        - table: sakila.actor
          percent: 20
      copy_tables:
        - sakila.store
      excluded_tables:
        - sakila.staff
      added_relationships:
        - fk_table: sakila.address
          fk_columns: city_id
          ref_table: sakila.city
          ref_columns: id
      excluded_relationships:
        - fk_table: sakila.store
          ref_table: sakila.staff

  # New for 2.3.0: Sharing Targets
  dvdrental-share:
    name: dvdrental-share
    share:
      dst_url: postgres://postgres:postgres@localhost:5432/dvdrental_share
      storage_profile_name: s3-from-awscli-profile


# Storage profiles for sharing configurations
storage_profiles:
  # All Profiles:
  # Leave access_key and secret_key to use a profile
  # Leave the awscli_profile empty to use the default profile
  # If the endpoint is specified in the profile it will override the
  # endpoint specified in this configuration.

  # S3
  s3-from-credentials:
    provider: s3
    awscli_profile:
    access_key: <access_key>
    secret_key: <secret_key>
    region: <region>
    bucket: dbsnapper-test-s3
    prefix:

  s3-from-awscli-profile:
    provider: s3
    awscli_profile: dbsnapper_credentials
    bucket: dbsnapper-test-s3
    prefix:

  # R2
  # Uses the account ID to create the endpoint url.
  # Can be omitted if the r2 endpoint_url is specified in the awscli config.
  # Or set the following Env Variables and leave the awscli_profile empty:
  # AWS_ACCESS_KEY
  # AWS_SECRET_KEY"
  # AWS_ENDPOINT_URL"
  r2-from-credentials:
    provider: r2
    awscli_profile:
    access_key: <access_key>
    secret_key: <secret_key>
    account_id: <account_id>
    bucket: dbsnapper-test-r2
    prefix:

  r2-from-awscli-profile:
    provider: r2
    awscli_profile: r2_production
    account_id: # optional if enpoint_url set in profile
    bucket: dbsnapper-test-r2
    prefix: 

  r2-from-env-or-default-awscli_profile:
    provider: r2
    bucket: dbsnapper-test-r2
    prefix: sanitized

  # Minio
  minio-from-credentials:
    provider: minio
    awscli_profile:
    access_key: <access_key>
    secret_key: <secret_key>
    endpoint: http://localhost:9000
    bucket: dbsnapper-test-minio
    prefix:

  # Digital Ocean Spaces
  # Endpoint shold be set to the endpoint of the spaces region i.e. nyc3 below
  dospaces-from-credentials:
    provider: dospaces
    awscli_profile:
    access_key: <access_key>
    secret_key: <secret_key>
    endpoint: https://nyc3.digitaloceanspaces.com
    bucket: dbsnapper-test-do
    prefix:

New for v2.1.0 - Connection String Templates

All connection string URLs now support templating. This allows you to access environment variables in the connection string URLs. For example, you can now use the following connection string URL for a Postgres database:

snapshot:
  src_url: postgres://{{`DB_USER` | env}}:{{`DB_PASSWORD` | env}}@localhost:5432/{{`DB_NAME` | env}}

In this example we are indicating we want the username, password, and database name to be read from the DB_USER, DB_PASSWORD, and DB_NAME environment variables, respectively.

Templates conform to Go Templates syntax. Specify the env function to read the value from the environment.

{{`ENV_VAR` | env}} # substitute the value of the ENV_VAR environment variable
{{`CONSTANT`}} # substitute the supplied `CONSTANT` value

Configuration details by section¶

authtoken: 1234567890abcdef1234567890abcdef....
working_directory: /Users/snappy/.dbsnapper
secret_key: 1234567890abcdef1234567890abcdef

authtoken (string optional): Auth token used to authenticate with the DBSnapper Cloud. Can also be provided via the DBSNAPPER_AUTHTOKEN environment variable.
working_directory (string optional): Working directory used to store database snapshots. Defaults to ~/.dbsnapper
secret_key (string[32]): 16 byte hexadecimal string (32 characters) that acts as your encryption key. Created on init. Can be provided via the DBSNAPPER_SECRET_KEY environment variable instead of in configuration file.

Docker¶

docker:
  images:
    mysql: mysql:8-oracle
    postgres: postgres:16-alpine

docker: Docker specific configuration setings
docker: images: Docker images to use for database engines
docker: images: <image_name>: <value>: specifies the docker image to use for a given database engine. In the example above the mysql and postgres docker images have been defined. See Database Engines for more information.

Targets¶

targets:
  sakila:
    name: sakila

targets: One or more target definitions to be used for snapshotting, subsetting, and sanitization.
targets: <target_name>: Identifier for the target definition, must be unique.
targets: <target_name>: name: The name of the target - can be different from the target identifier, but the target identifier is used in the agent.

Target Snapshot¶

snapshot:
  src_url: mysql://root:mysql@localhost:13306/sakila?tls=false
  dst_url: mysql://root:mysql@localhost:3306/sakila_snap?tls=false

snapshot: Snapshot configuration for the target
src_url: Connection string of source database
dst_url: Connection string of destination database

Danger

A database specified on the dst_url will be DROPPED and RECREATED when the load, sanitize, and subset commands are used

Target Sanitization¶

sanitize:
  dst_url: mysql://root:mysql@localhost:3306/sakila_sanitized?tls=false
  query_file: "sakila.san.sql"

sanitize: Sanitization configuration for the target
dst_url: Connection string for the database where you will sanitize the snapshot (will be overwritten)
query_file: Specifies the filename of the query to be used for sanitization. This query should be located in the working_directory specified in the configuration.

Target Subsetting¶

subset:
  src_url: mysql://root:mysql@localhost:13306/sakila?tls=false
  dst_url: mysql://root:mysql@localhost:3306/sakila_subset?tls=false
  subset_tables:
    - table: sakila.film
      where: "film_id < 20"
    - table: sakila.actor
      percent: 20
  copy_tables:
    - sakila.store
  excluded_tables:
    - sakila.staff
  added_relationships:
    - fk_table: sakila.address
      fk_columns: city_id
      ref_table: sakila.city
      ref_columns: id
  excluded_relationships:
    - fk_table: sakila.store
      ref_table: sakila.staff

Let's look at each section of this configuration in detail.

Subset Connection Strings¶

subset:
  src_url: mysql://root:mysql@localhost:13306/sakila?tls=false
  dst_url: mysql://root:mysql@localhost:3306/sakila_subset?tls=false

subset: Subset configuration for the target
src_url: Connection string of source database
dst_url: Connection string for the database where the subset will be created (will be overwritten)

Initial Tables to Subset¶

subset_tables:
  - table: sakila.film
    where: "film_id < 20"
  - table: sakila.actor
    percent: 20

subset_tables: List of tables to be subsetted. The subset tables are the initial tables of interest, and the where and percent clauses can be used to control the portion of each table to be included in the subset. Rows from other tables are included as needed to maintain referential integrity with the subset tables.
table: The name of the table to be subsetted. All tables are specified in the format schema.table.
where: Providing a where clause will subset the table based on the condition specified.
percent: Specifying the percent clause will take a random sample of the table based on the percentage specified.

subset_tables clauses

One (and only one) of the where or percent clauses must be provided for each table in the subset_tables list.

Tables to Copy or Exclude¶

copy_tables:
  - sakila.store
excluded_tables:
  - sakila.staff

copy_tables: List of tables to be copied in whole to the subset database (dst_url). These tables are copied as-is from the source database to the subset database.
excluded_tables: List of tables to be excluded from the subset database (dst_url). These tables are not copied to the subset database.

Defining Relationships¶

added_relationships:
  - fk_table: sakila.address
    fk_columns: city_id
    ref_table: sakila.city
    ref_columns: id
excluded_relationships:
  - fk_table: sakila.store
    ref_table: sakila.staff

added_relationships

List of table relationships to be considered. These relationships are added to the configuration when a set of tables have a foreign key relationship that is not defined in the database schema via foreign key constraints.

Each added_relationships entry is defined by the fk_table, fk_columns, ref_table, and ref_columns attributes.

excluded_relationships

List of table relationships to be excluded. A relationship should be excluded when a circular dependency is detected in the database schema. This can occur when a table has a foreign key relationship to another table that also has a foreign key relationship back to the original table.

Each excluded_relationships entry is defined by the fk_table and ref_table attributes.

Added in v2.3.0, a sharing target allows you to specify a target definition that can be used to access shared snapshots on a cloud storage provider.

In v.2.2.0, we added the ability to specify different cloud storage locations for original (unsanitized) and sanitized snapshots. This allows you to securely share sanitized snapshots with developers and other third parties while keeping the unsanitized snapshots private. You specify the different storage locations in the on the target settings page of the DBSnapper Cloud.

To access the shared snapshots, you need to create a new target definition in your configuration file. The target definition should include the share section with the dst_url and storage_profile_name attributes.

Specifying a Sharing Target

# New for 2.3.0: Sharing Targets
dvdrental-share:
  name: dvdrental-share
  share:
    dst_url: postgres://postgres:postgres@localhost:5432/dvdrental_share
    storage_profile_name: s3-dbsnapper-sanitized

The example above shows a sharing target named dvdrental-share. The dst_url attribute specifies the connection string that will be used when loading any of the shared snapshots.

The storage_profile_name attribute specifies the name of a storage profile that will be used to access the shared snapshots. In the example above we are using the s3-dbsnapper-sanitized storage profile to access the shared snapshots. This storage profile must be defined in the storage_profiles section of the configuration file.

Storage profile configuration

storage_profiles:
  s3-dbsnapper-sanitized
    provider: s3
    awscli_profile:
    access_key: <access_key>
    secret_key: <secret_key>
    region: <region>
    bucket: dbsnapper-sanitized
    prefix:

The example above shows the configuration for the s3-dbsnapper-sanitized storage profile. This storage profile specifies the connection details for the cloud storage provider where the shared snapshots are stored. It also specifies the bucket and prefix where the shared snapshots are stored.