Backups — Postgres and MariaDB

Polaris Express keeps state in two databases: a Postgres instance (the web app, billing sync, audit log, sync runs) and a MariaDB instance (SteVe — OCPP charge box registry, transactions, idTags). Both must be backed up. Losing either one breaks the platform; losing them together is unrecoverable.

This runbook covers daily logical dumps that you can ship off-box, plus how to verify them and how to restore.

When to run this

Nightly, automated, off-box. The procedure below is designed to run from cron on the host or from a sidecar container.
Before any upgrade of web/, SteVe, Postgres, or MariaDB. Take a manual dump and confirm it restores into a throwaway container before you touch production.
Before destructive ops — migrations that drop columns, manual data fixes, large idTag re-imports.

What gets backed up

Database	Container	Volume	Contents
Postgres 17	`postgres` (from `docker-compose.yml`)	`postgres_data`	Users, ChargeBoxes, tariffs, sync runs, audit log, Lago mappings, EV cards, reservations
MariaDB 10.4	`mariadb` (from `steve/docker-compose.yml`)	`/data/ocpp/mariadb` (host bind mount)	SteVe charge boxes, OCPP transactions, idTags, meter values, connector status

Prerequisites

The integrated stack (docker-compose.yml) and the SteVe stack (steve/docker-compose.yml) are running.
You know the database credentials. For Postgres these come from web/.env (used by the postgres service via env_file); for MariaDB they come from steve/docker-compose.mariadb.env.
You have a backup destination — object storage (S3, R2, B2), a remote host, or at minimum a separate disk. Do not write backups to the same volume as the database.
The host has gzip and either aws, rclone, restic, or your tool of choice installed.

Procedure — Postgres

Run pg_dump inside the running postgres container and stream the output to a compressed file on the host.

1
#!/usr/bin/env bash
2
set -euo pipefail
3

4
STAMP=$(date -u +%Y%m%dT%H%M%SZ)
5
DEST=/var/backups/polaris/postgres
6
mkdir -p "$DEST"
7

8
docker compose exec -T postgres \
9
  pg_dump -U ocpp_user -d ocpp_billing --format=custom --compress=9 \
10
  > "$DEST/ocpp_billing-$STAMP.dump"
11

12
# Optional: rotate — keep last 14 days locally
13
find "$DEST" -name 'ocpp_billing-*.dump' -mtime +14 -delete

Notes:

--format=custom produces a pg_restore-compatible archive, which restores faster and lets you restore individual tables.
The user ocpp_user and database ocpp_billing match the defaults set in web/.env.example. If you’ve overridden POSTGRES_USER or POSTGRES_DB, adjust accordingly.
docker compose exec -T (note the -T) disables TTY allocation, which is required when redirecting stdout.

Ship it off-box

Pick one. Run this immediately after the dump completes.

1
# S3 / R2
2
aws s3 cp "$DEST/ocpp_billing-$STAMP.dump" \
3
  "s3://my-backup-bucket/polaris/postgres/" \
4
  --storage-class STANDARD_IA
5

6
# rclone (any backend)
7
rclone copy "$DEST/ocpp_billing-$STAMP.dump" remote:polaris/postgres/
8

9
# restic (deduplicating)
10
restic -r s3:s3.amazonaws.com/my-backup-bucket/restic backup "$DEST"

Procedure — MariaDB (SteVe)

The MariaDB credentials live in steve/docker-compose.mariadb.env. You’ll need the root password (or a dedicated backup user) and the database name (default: stevedb).

1
#!/usr/bin/env bash
2
set -euo pipefail
3

4
STAMP=$(date -u +%Y%m%dT%H%M%SZ)
5
DEST=/var/backups/polaris/mariadb
6
mkdir -p "$DEST"
7

8
# MARIADB_ROOT_PASSWORD comes from steve/docker-compose.mariadb.env
9
source /opt/polaris/steve/docker-compose.mariadb.env
10

11
docker compose -f /opt/polaris/steve/docker-compose.yml exec -T mariadb \
12
  mysqldump \
13
    --user=root \
14
    --password="$MARIADB_ROOT_PASSWORD" \
15
    --single-transaction \
16
    --routines \
17
    --triggers \
18
    --databases stevedb \
19
  | gzip -9 > "$DEST/stevedb-$STAMP.sql.gz"
20

21
find "$DEST" -name 'stevedb-*.sql.gz' -mtime +14 -delete

Notes:

--single-transaction makes the dump consistent without locking tables, which matters because SteVe is actively writing transaction and meter-value rows while OCPP traffic is live.
--routines and --triggers are required — SteVe defines stored procedures and triggers that won’t survive a plain mysqldump.
Adjust the database name if your MARIADB_DATABASE differs from stevedb.

Schedule it

A minimal cron entry on the host:

1
# Postgres at 02:15 UTC, MariaDB at 02:30 UTC
2
15 2 * * * root /opt/polaris/backup-postgres.sh >> /var/log/polaris-backup.log 2>&1
3
30 2 * * * root /opt/polaris/backup-mariadb.sh  >> /var/log/polaris-backup.log 2>&1

Stagger the two jobs by 10–15 minutes so they don’t fight for I/O on a single-disk host.

Verify

A backup you haven’t restored is a hope, not a backup. Verify weekly.

Postgres — restore into a throwaway container

1
docker run --rm -d --name pg-verify \
2
  -e POSTGRES_PASSWORD=verify \
3
  -e POSTGRES_USER=ocpp_user \
4
  -e POSTGRES_DB=ocpp_billing \
5
  postgres:17-alpine
6

7
# Wait for it to come up
8
until docker exec pg-verify pg_isready -U ocpp_user; do sleep 1; done
9

10
# Restore the latest dump
11
docker exec -i pg-verify pg_restore -U ocpp_user -d ocpp_billing --clean --if-exists \
12
  < /var/backups/polaris/postgres/ocpp_billing-LATEST.dump
13

14
# Sanity-check row counts
15
docker exec pg-verify psql -U ocpp_user -d ocpp_billing -c \
16
  "SELECT 'charge_boxes' AS t, count(*) FROM charge_boxes
17
   UNION ALL SELECT 'users', count(*) FROM users
18
   UNION ALL SELECT 'sync_runs', count(*) FROM sync_runs;"
19

20
docker rm -f pg-verify

If row counts roughly match production, the dump is good.

MariaDB — restore into a throwaway container

1
docker run --rm -d --name mdb-verify \
2
  -e MARIADB_ROOT_PASSWORD=verify \
3
  mariadb:10.4.30
4

5
until docker exec mdb-verify mariadb -uroot -pverify -e "SELECT 1" >/dev/null 2>&1; do sleep 1; done
6

7
gunzip -c /var/backups/polaris/mariadb/stevedb-LATEST.sql.gz \
8
  | docker exec -i mdb-verify mariadb -uroot -pverify
9

10
docker exec mdb-verify mariadb -uroot -pverify -e \
11
  "USE stevedb; SELECT
12
     (SELECT count(*) FROM charge_box) AS charge_boxes,
13
     (SELECT count(*) FROM ocpp_tag) AS idtags,
14
     (SELECT count(*) FROM transaction) AS transactions;"
15

16
docker rm -f mdb-verify

Audit and rollback — restoring to production

Postgres restore

1
# 1. Stop everything that writes to Postgres
2
docker compose stop app sync migrate
3

4
# 2. Take a forensic dump of the current state
5
docker compose exec -T postgres \
6
  pg_dump -U ocpp_user -d ocpp_billing --format=custom \
7
  > /var/backups/polaris/postgres/PRE-RESTORE-$(date -u +%Y%m%dT%H%M%SZ).dump
8

9
# 3. Drop and recreate the database
10
docker compose exec -T postgres psql -U ocpp_user -d postgres -c \
11
  "DROP DATABASE ocpp_billing;"
12
docker compose exec -T postgres psql -U ocpp_user -d postgres -c \
13
  "CREATE DATABASE ocpp_billing OWNER ocpp_user;"
14

15
# 4. Restore from the chosen backup
16
docker compose exec -T postgres \
17
  pg_restore -U ocpp_user -d ocpp_billing --no-owner \
18
  < /var/backups/polaris/postgres/ocpp_billing-CHOSEN.dump
19

20
# 5. Bring the stack back up
21
docker compose up -d app sync

The migrate service runs once on startup against app’s dependency chain; if your restored dump is from an older schema version, migrate will catch it up. If your dump is from a newer schema than your current web/ image, stop — downgrade web/ first, or you’ll corrupt state.

MariaDB restore

1
# 1. Stop SteVe so it isn't talking to OCPP during the restore
2
docker compose -f /opt/polaris/steve/docker-compose.yml stop app
3

4
# 2. Forensic dump of current state
5
source /opt/polaris/steve/docker-compose.mariadb.env
6
docker compose -f /opt/polaris/steve/docker-compose.yml exec -T mariadb \
7
  mysqldump -uroot -p"$MARIADB_ROOT_PASSWORD" --single-transaction --routines --triggers --databases stevedb \
8
  | gzip > /var/backups/polaris/mariadb/PRE-RESTORE-$(date -u +%Y%m%dT%H%M%SZ).sql.gz
9

10
# 3. Drop and recreate
11
docker compose -f /opt/polaris/steve/docker-compose.yml exec -T mariadb \
12
  mariadb -uroot -p"$MARIADB_ROOT_PASSWORD" -e \
13
  "DROP DATABASE stevedb; CREATE DATABASE stevedb CHARACTER SET utf8mb4;"
14

15
# 4. Restore
16
gunzip -c /var/backups/polaris/mariadb/stevedb-CHOSEN.sql.gz \
17
  | docker compose -f /opt/polaris/steve/docker-compose.yml exec -T mariadb \
18
    mariadb -uroot -p"$MARIADB_ROOT_PASSWORD"
19

20
# 5. Restart SteVe
21
docker compose -f /opt/polaris/steve/docker-compose.yml up -d app

After SteVe restarts, charge boxes will reconnect over OCPP within 30–90 seconds. Watch steve/logs/ for reconnect activity, and confirm the SteVe admin UI shows the expected ChargeBox count.

If something goes wrong

pg_dump fails with “role does not exist” — your web/.env POSTGRES_USER doesn’t match what’s actually in the running container. Either fix the env or pass -U postgres (the superuser) instead.

mysqldump fails with “Access denied” — MARIADB_ROOT_PASSWORD in your shell doesn’t match what the container was initialized with. The container’s password is set on first startup from the env file and persists in the volume; changing the env file later does not change it. Use the original password, or reset it via docker exec.

Dump file is suspiciously small (a few KB) — almost always an auth failure that wrote an error message to the file instead of a dump. Check the file with head; if it starts with pg_dump: error: or mysqldump: Got error:, treat the dump as failed.

Restore fails on foreign keys (MariaDB) — make sure you dumped with --databases (which includes CREATE DATABASE and proper ordering) rather than dumping a single database without it. Re-dump if necessary.

Restore appears to succeed but SteVe won’t start — SteVe runs Liquibase on startup. If you restored a dump from a different SteVe version, schema migrations may conflict. Match the SteVe image version to the version that produced the dump.

Upgrading the stack — always take a verified backup first.
Secret rotation — covers rotating the database passwords referenced here.