From ec69104d8f3ae50559f9922b16a2149a39e823d3 Mon Sep 17 00:00:00 2001
From: ajctrl <59609985+ajctrl@users.noreply.github.com>
Date: Thu, 20 Oct 2022 00:55:00 +0000
Subject: [PATCH] encrypt after pg_dump (#156)

---
 postgres-backup-s3/backup.sh | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/postgres-backup-s3/backup.sh b/postgres-backup-s3/backup.sh
index d656e44..86af4e9 100644
--- a/postgres-backup-s3/backup.sh
+++ b/postgres-backup-s3/backup.sh
@@ -94,7 +94,10 @@ else
 
     SRC_FILE=dump.sql.gz
     DEST_FILE=${DB}_$(date +"%Y-%m-%dT%H:%M:%SZ").sql.gz
-
+    
+    echo "Creating dump of ${DB} database from ${POSTGRES_HOST}..."
+    pg_dump $POSTGRES_HOST_OPTS $DB | gzip > $SRC_FILE
+    
     if [ "${ENCRYPTION_PASSWORD}" != "**None**" ]; then
       echo "Encrypting ${SRC_FILE}"
       openssl enc -aes-256-cbc -in $SRC_FILE -out ${SRC_FILE}.enc -k $ENCRYPTION_PASSWORD
@@ -106,9 +109,6 @@ else
       DEST_FILE="${DEST_FILE}.enc"
     fi
 
-    echo "Creating dump of ${DB} database from ${POSTGRES_HOST}..."
-    pg_dump $POSTGRES_HOST_OPTS $DB | gzip > $SRC_FILE
-
     echo "Uploading dump to $S3_BUCKET"
     cat $SRC_FILE | aws $AWS_ARGS s3 cp - "s3://${S3_BUCKET}${S3_PREFIX}${DEST_FILE}" || exit 2