HumationHuman + Automation
Back to Catalog

Automated rsync backup with password auth & alert system

Vigh SandorVigh Sandor
99 views
2/3/2026
Employee DataAutomationData ExtractionHRData Archiving
Official Page

Automated Rsync Backup with Password Auth & Alert System

Overview

This n8n workflow provides automated rsync backup capabilities between servers using password authentication. It automatically installs required dependencies, performs the backup operation from a source server to a target server, and sends status notifications via Telegram and SMS.

Features

  • Password-based SSH authentication (no key management required)
  • Automatic dependency installation (sshpass, rsync)
  • Cross-platform support (Ubuntu/Debian, RHEL/CentOS, Alpine)
  • Source-to-target backup execution
  • Multi-channel notifications (Telegram and SMS)
  • Detailed success/failure reporting
  • Manual trigger for on-demand backups

Setup Instructions

Prerequisites

  1. n8n Instance: Running n8n with Linux environment
  2. Server Access: SSH access to both source and target servers
  3. Telegram Bot: Created via @BotFather (optional)
  4. Textbelt API Key: For SMS notifications (optional)
  5. Network: Connectivity between n8n, source, and target servers

Server Requirements

Source Server:

  • SSH access enabled
  • User with sudo privileges (for package installation)
  • Read access to source folder

Target Server:

  • SSH access enabled
  • Write access to target folder
  • Sufficient storage space

Configuration Steps

1. Server Parameters Configuration

Open the Server Parameters node and configure:

Source Server Settings:

  • source_host: IP address or hostname of source server
  • source_port: SSH port (typically 22)
  • source_user: Username for source server
  • source_password: Password for source user
  • source_folder: Full path to folder to backup (e.g., /home/user/data)

Target Server Settings:

  • target_host: IP address or hostname of target server
  • target_port: SSH port (typically 22)
  • target_user: Username for target server
  • target_password: Password for target user
  • target_folder: Full path to destination folder (e.g., /backup/data)

Rsync Options:

  • rsync_options: Default is -avz --delete
    • -a: Archive mode (preserves permissions, timestamps, etc.)
    • -v: Verbose output
    • -z: Compression during transfer
    • --delete: Remove files from target that don't exist in source

2. Notification Setup (Optional)

Telegram Configuration:

  1. Create bot via @BotFather on Telegram
  2. Get bot token (format: 1234567890:ABCdefGHIjklMNOpqrsTUVwxyz)
  3. Create notification channel
  4. Add bot as administrator
  5. Get channel ID:
    • Send test message to channel
    • Visit: https://api.telegram.org/bot<YOUR_BOT_TOKEN>/getUpdates
    • Find "chat":{"id":-100XXXXXXXXXX}

SMS Configuration:

  1. Register at https://textbelt.com
  2. Purchase credits
  3. Obtain API key

Update Notification Node: Edit Process Finish Report --- Telegram & SMS node:

  • Replace YOUR-TELEGRAM-BOT-TOKEN with bot token
  • Replace YOUR-TELEGRAM-CHANNEL-ID with channel ID
  • Replace +36301234567 with target phone number(s)
  • Replace YOUR-TEXTBELT-API-KEY with Textbelt key

3. Security Considerations

Password Storage:

  • Consider using n8n credentials for sensitive passwords
  • Avoid hardcoding passwords in workflow
  • Use environment variables where possible

SSH Security:

  • Workflow uses StrictHostKeyChecking=no for automation
  • Consider adding known hosts manually for production
  • Review firewall rules between servers

Testing

  1. Start with small test folder
  2. Verify network connectivity: ping source_host and ping target_host
  3. Test SSH access manually first
  4. Run workflow with test data
  5. Verify backup completion on target server

How to Use

Automatic Operation

Once activated, the workflow runs automatically:

  • Frequency: Every days midnight

Manual Execution

  1. Open the workflow in n8n
  2. Click on Manual Trigger node
  3. Click "Execute Workflow"
  4. Monitor execution progress

Scheduled Execution

To automate backups:

  1. Replace Manual Trigger with Schedule Trigger node
  2. Configure schedule (e.g., daily at 2 AM)
  3. Save and activate workflow

Workflow Process

Step 1: Dependency Check

The workflow automatically:

  1. Checks if sshpass is installed locally
  2. Installs if missing (supports apt, yum, dnf, apk)
  3. Checks sshpass on source server
  4. Installs on source if needed (with sudo)

Step 2: Backup Execution

  • Connects to source server via SSH
  • Executes rsync command from source to target
  • Uses password authentication for both connections
  • Transfers data directly between servers (not through n8n)

Step 3: Status Reporting

Success Message Format:

[Timestamp] -- SUCCESS :: source_host:/path -> target_host:/path :: [rsync output]

Failure Message Format:

[Timestamp] -- ERROR :: source_host -> target_host :: [exit code] -- [error message]

Rsync Options Guide

Common Options:

  • -a: Archive mode (recommended)
  • -v: Verbose output for monitoring
  • -z: Compression (useful for slow networks)
  • --delete: Mirror source (removes extra files from target)
  • --exclude: Skip specific files/folders
  • --dry-run: Test without actual transfer
  • --progress: Show transfer progress
  • --bwlimit: Limit bandwidth usage

Example Configurations:

# Basic backup
-avz

# Mirror with deletion
-avz --delete

# Exclude temporary files
-avz --exclude='*.tmp' --exclude='*.cache'

# Bandwidth limited (1MB/s)
-avz --bwlimit=1000

# Dry run test
-avzn --delete

Monitoring

Execution Logs

  • Check n8n Executions tab
  • Review stdout for rsync details
  • Check stderr for error messages

Verification

After backup:

  1. SSH to target server
  2. Check folder size: du -sh /target/folder
  3. Verify file count: find /target/folder -type f | wc -l
  4. Compare with source: ls -la /target/folder

Troubleshooting

Connection Issues

"Connection refused" error:

  • Verify SSH port is correct
  • Check firewall rules
  • Ensure SSH service is running

"Permission denied" error:

  • Verify username/password
  • Check user has required permissions
  • Ensure sudo works (for installation)

Installation Failures

"Unsupported package manager":

  • Workflow supports: apt, yum, dnf, apk
  • Manual installation may be required for others

"sudo: password required":

  • User needs passwordless sudo or
  • Modify installation commands

Rsync Errors

"rsync error: some files/attrs were not transferred":

  • Usually permission issues
  • Check file ownership
  • Review excluded files

"No space left on device":

  • Check target server storage
  • Clean up old backups
  • Consider compression options

Notification Issues

No Telegram message:

  • Verify bot token and channel ID
  • Check bot is admin in channel
  • Test with curl command manually

SMS not received:

  • Check Textbelt credit balance
  • Verify phone number format
  • Review API key validity

Best Practices

Backup Strategy

  1. Test First: Always test with small datasets
  2. Schedule Wisely: Run during low-traffic periods
  3. Monitor Space: Ensure adequate storage on target
  4. Verify Backups: Regularly test restore procedures
  5. Rotate Backups: Implement retention policies

Security

  1. Use Strong Passwords: Complex passwords for all accounts
  2. Limit Permissions: Use dedicated backup users
  3. Network Security: Consider VPN for internet transfers
  4. Audit Access: Log all backup operations
  5. Encrypt Sensitive Data: Consider rsync with encryption

Performance

  1. Compression: Use -z for slow networks
  2. Bandwidth Limits: Prevent network saturation
  3. Incremental Backups: Rsync only transfers changes
  4. Parallel Transfers: Consider multiple workflows for different folders
  5. Off-Peak Hours: Schedule during quiet periods

Advanced Configuration

Multiple Backup Jobs

Create separate workflows for:

  • Different server pairs
  • Various schedules
  • Distinct retention policies

Backup Rotation

Implement versioning:

# Add timestamp to target folder
target_folder="/backup/data_$(date +%Y%m%d)"

Pre/Post Scripts

Add nodes for:

  • Database dumps before backup
  • Service stops/starts
  • Cleanup operations
  • Verification scripts

Error Handling

Enhance workflow with:

  • Retry mechanisms
  • Fallback servers
  • Detailed error logging
  • Escalation procedures

Maintenance

Regular Tasks

  • Daily: Check backup completion
  • Weekly: Verify backup integrity
  • Monthly: Test restore procedure
  • Quarterly: Review and optimize rsync options
  • Annually: Audit security settings

Monitoring Metrics

Track:

  • Backup duration
  • Transfer size
  • Success/failure rate
  • Storage utilization
  • Network bandwidth usage

Recovery Procedures

Restore from Backup

To restore files:

# Reverse the rsync direction
rsync -avz target_server:/backup/folder/ source_server:/restore/location/

Disaster Recovery

  1. Document server configurations
  2. Maintain backup access credentials
  3. Test restore procedures regularly
  4. Keep workflow exports as backup

Support Resources

  • Rsync documentation: https://rsync.samba.org/
  • n8n community: https://community.n8n.io/
  • SSH troubleshooting guides
  • Network diagnostics tools

n8n Workflow: Automated rsync Backup with Password Authentication and Alert System

This n8n workflow provides a robust solution for automating rsync backups with password authentication. It allows you to schedule or manually trigger a backup operation, execute a shell command to perform the rsync, and then evaluate the command's exit code to determine the success or failure of the backup. Based on the outcome, it can trigger an alert system (though the alert system itself is not fully defined in this JSON, it sets up the logic for it).

What it does

  1. Triggers Execution: The workflow can be initiated either manually by clicking "Execute workflow" or automatically on a predefined schedule.
  2. Executes rsync Command: It runs a shell command, presumably an rsync command, on the server hosting n8n. This command is responsible for performing the backup operation.
  3. Processes Command Output: The output and exit code of the executed command are captured.
  4. Evaluates Backup Status: An If node checks the exit code of the Execute Command node.
    • If the exit code indicates success (e.g., 0), it proceeds down the "True" branch.
    • If the exit code indicates failure (e.g., non-zero), it proceeds down the "False" branch.
  5. Prepares Alert Data: Regardless of success or failure, an Edit Fields (Set) node is used to prepare data. This likely sets up messages or flags indicating the status of the backup, which would then be used by subsequent nodes (not included in this JSON) to send notifications.
  6. Provides Contextual Notes: A Sticky Note is included, likely for documentation or to provide instructions within the workflow itself.

Prerequisites/Requirements

  • n8n Instance: A running n8n instance where this workflow will be imported and executed.
  • Shell Access: The n8n instance must have the necessary permissions to execute shell commands (rsync, sshpass if used for password auth, etc.).
  • rsync: The rsync utility must be installed on the server hosting n8n.
  • SSH Access: The n8n server needs SSH access to the remote backup target.
  • Password Authentication: If using password authentication for rsync over SSH, tools like sshpass might be required on the n8n server, and the Execute Command node would need to be configured accordingly. Caution: Storing passwords directly in workflows is generally not recommended for security reasons. Consider SSH keys or other more secure methods if possible.
  • Alerting Service (Optional): To fully utilize the alert system, you would need to connect the "True" and "False" branches of the If node to appropriate notification services (e.g., Slack, Email, Telegram, Opsgenie, etc.) and configure their credentials.

Setup/Usage

  1. Import the Workflow:
    • Open your n8n instance.
    • Go to "Workflows" and click "New".
    • Click the "Import from JSON" button and paste the provided JSON content.
  2. Configure Execute Command Node:
    • Edit the Execute Command node.
    • Replace the placeholder command with your actual rsync command, including source, destination, and any necessary options (e.g., -avz).
    • If using password authentication, you might need to integrate sshpass or similar tools into your command. For example: sshpass -p "your_password" rsync -avz /path/to/source user@remote_host:/path/to/destination
    • Security Warning: Directly embedding passwords in the workflow is a security risk. Consider using SSH keys with an agent or other secure credential management practices instead.
  3. Configure If Node:
    • The If node is pre-configured to check the exitCode of the Execute Command node. Ensure it correctly evaluates {{ $node["Execute Command"].json["exitCode"] }}. A successful command typically returns an exit code of 0.
  4. Configure Edit Fields Node:
    • Adjust the Edit Fields node to create the desired message or data structure that will be passed to your alerting system. For example, you might set a status field to "Success" or "Failure" and a message field with details from the Execute Command output.
  5. Connect Alerting Nodes (Not in JSON):
    • Drag and drop your preferred notification nodes (e.g., "Slack", "Email", "Telegram") onto the canvas.
    • Connect the "True" branch of the If node to a success notification node.
    • Connect the "False" branch of the If node to a failure notification node.
    • Configure these notification nodes with your credentials and message templates, using the data prepared by the Edit Fields node.
  6. Configure Trigger:
    • Manual Trigger: Keep the "Manual Trigger" enabled if you want to run the backup on demand.
    • Schedule Trigger: Configure the "Schedule Trigger" node to define how often the backup should run (e.g., daily, weekly, hourly).
  7. Activate Workflow:
    • Save the workflow.
    • Activate the workflow by toggling the "Active" switch in the top right corner.

Related Templates

Track competitor SEO keywords with Decodo + GPT-4.1-mini + Google Sheets

This workflow automates competitor keyword research using OpenAI LLM and Decodo for intelligent web scraping. Who this is for SEO specialists, content strategists, and growth marketers who want to automate keyword research and competitive intelligence. Marketing analysts managing multiple clients or websites who need consistent SEO tracking without manual data pulls. Agencies or automation engineers using Google Sheets as an SEO data dashboard for keyword monitoring and reporting. What problem this workflow solves Tracking competitor keywords manually is slow and inconsistent. Most SEO tools provide limited API access or lack contextual keyword analysis. This workflow solves that by: Automatically scraping any competitor’s webpage with Decodo. Using OpenAI GPT-4.1-mini to interpret keyword intent, density, and semantic focus. Storing structured keyword insights directly in Google Sheets for ongoing tracking and trend analysis. What this workflow does Trigger — Manually start the workflow or schedule it to run periodically. Input Setup — Define the website URL and target country (e.g., https://dev.to, france). Data Scraping (Decodo) — Fetch competitor web content and metadata. Keyword Analysis (OpenAI GPT-4.1-mini) Extract primary and secondary keywords. Identify focus topics and semantic entities. Generate a keyword density summary and SEO strength score. Recommend optimization and internal linking opportunities. Data Structuring — Clean and convert GPT output into JSON format. Data Storage (Google Sheets) — Append structured keyword data to a Google Sheet for long-term tracking. Setup Prerequisites If you are new to Decode, please signup on this link visit.decodo.com n8n account with workflow editor access Decodo API credentials OpenAI API key Google Sheets account connected via OAuth2 Make sure to install the Decodo Community node. Create a Google Sheet Add columns for: primarykeywords, seostrengthscore, keyworddensity_summary, etc. Share with your n8n Google account. Connect Credentials Add credentials for: Decodo API credentials - You need to register, login and obtain the Basic Authentication Token via Decodo Dashboard OpenAI API (for GPT-4o-mini) Google Sheets OAuth2 Configure Input Fields Edit the “Set Input Fields” node to set your target site and region. Run the Workflow Click Execute Workflow in n8n. View structured results in your connected Google Sheet. How to customize this workflow Track Multiple Competitors → Use a Google Sheet or CSV list of URLs; loop through them using the Split In Batches node. Add Language Detection → Add a Gemini or GPT node before keyword analysis to detect content language and adjust prompts. Enhance the SEO Report → Expand the GPT prompt to include backlink insights, metadata optimization, or readability checks. Integrate Visualization → Connect your Google Sheet to Looker Studio for SEO performance dashboards. Schedule Auto-Runs → Use the Cron Node to run weekly or monthly for competitor keyword refreshes. Summary This workflow automates competitor keyword research using: Decodo for intelligent web scraping OpenAI GPT-4.1-mini for keyword and SEO analysis Google Sheets for live tracking and reporting It’s a complete AI-powered SEO intelligence pipeline ideal for teams that want actionable insights on keyword gaps, optimization opportunities, and content focus trends, without relying on expensive SEO SaaS tools.

Ranjan DailataBy Ranjan Dailata
161

Generate song lyrics and music from text prompts using OpenAI and Fal.ai Minimax

Spark your creativity instantly in any chat—turn a simple prompt like "heartbreak ballad" into original, full-length lyrics and a professional AI-generated music track, all without leaving your conversation. 📋 What This Template Does This chat-triggered workflow harnesses AI to generate detailed, genre-matched song lyrics (at least 600 characters) from user messages, then queues them for music synthesis via Fal.ai's minimax-music model. It polls asynchronously until the track is ready, delivering lyrics and audio URL back in chat. Crafts original, structured lyrics with verses, choruses, and bridges using OpenAI Submits to Fal.ai for melody, instrumentation, and vocals aligned to the style Handles long-running generations with smart looping and status checks Returns complete song package (lyrics + audio link) for seamless sharing 🔧 Prerequisites n8n account (self-hosted or cloud with chat integration enabled) OpenAI account with API access for GPT models Fal.ai account for AI music generation 🔑 Required Credentials OpenAI API Setup Go to platform.openai.com → API keys (sidebar) Click "Create new secret key" → Name it (e.g., "n8n Songwriter") Copy the key and add to n8n as "OpenAI API" credential type Test by sending a simple chat completion request Fal.ai HTTP Header Auth Setup Sign up at fal.ai → Dashboard → API Keys Generate a new API key → Copy it In n8n, create "HTTP Header Auth" credential: Name="Fal.ai", Header Name="Authorization", Header Value="Key [Your API Key]" Test with a simple GET to their queue endpoint (e.g., /status) ⚙️ Configuration Steps Import the workflow JSON into your n8n instance Assign OpenAI API credentials to the "OpenAI Chat Model" node Assign Fal.ai HTTP Header Auth to the "Generate Music Track", "Check Generation Status", and "Fetch Final Result" nodes Activate the workflow—chat trigger will appear in your n8n chat interface Test by messaging: "Create an upbeat pop song about road trips" 🎯 Use Cases Content Creators: YouTubers generating custom jingles for videos on the fly, streamlining production from idea to audio export Educators: Music teachers using chat prompts to create era-specific folk tunes for classroom discussions, fostering interactive learning Gift Personalization: Friends crafting anniversary R&B tracks from shared memories via quick chats, delivering emotional audio surprises Artist Brainstorming: Songwriters prototyping hip-hop beats in real-time during sessions, accelerating collaboration and iteration ⚠️ Troubleshooting Invalid JSON from AI Agent: Ensure the system prompt stresses valid JSON; test the agent standalone with a sample query Music Generation Fails (401/403): Verify Fal.ai API key has minimax-music access; check usage quotas in dashboard Status Polling Loops Indefinitely: Bump wait time to 45-60s for complex tracks; inspect fal.ai queue logs for bottlenecks Lyrics Under 600 Characters: Tweak agent prompt to enforce fuller structures like [V1][C][V2][B][C]; verify output length in executions

Daniel NkenchoBy Daniel Nkencho
601

Automate invoice processing with OCR, GPT-4 & Salesforce opportunity creation

PDF Invoice Extractor (AI) End-to-end pipeline: Watch Drive ➜ Download PDF ➜ OCR text ➜ AI normalize to JSON ➜ Upsert Buyer (Account) ➜ Create Opportunity ➜ Map Products ➜ Create OLI via Composite API ➜ Archive to OneDrive. --- Node by node (what it does & key setup) 1) Google Drive Trigger Purpose: Fire when a new file appears in a specific Google Drive folder. Key settings: Event: fileCreated Folder ID: google drive folder id Polling: everyMinute Creds: googleDriveOAuth2Api Output: Metadata { id, name, ... } for the new file. --- 2) Download File From Google Purpose: Get the file binary for processing and archiving. Key settings: Operation: download File ID: ={{ $json.id }} Creds: googleDriveOAuth2Api Output: Binary (default key: data) and original metadata. --- 3) Extract from File Purpose: Extract text from PDF (OCR as needed) for AI parsing. Key settings: Operation: pdf OCR: enable for scanned PDFs (in options) Output: JSON with OCR text at {{ $json.text }}. --- 4) Message a model (AI JSON Extractor) Purpose: Convert OCR text into strict normalized JSON array (invoice schema). Key settings: Node: @n8n/n8n-nodes-langchain.openAi Model: gpt-4.1 (or gpt-4.1-mini) Message role: system (the strict prompt; references {{ $json.text }}) jsonOutput: true Creds: openAiApi Output (per item): $.message.content → the parsed JSON (ensure it’s an array). --- 5) Create or update an account (Salesforce) Purpose: Upsert Buyer as Account using an external ID. Key settings: Resource: account Operation: upsert External Id Field: taxid_c External Id Value: ={{ $json.message.content.buyer.tax_id }} Name: ={{ $json.message.content.buyer.name }} Creds: salesforceOAuth2Api Output: Account record (captures Id) for downstream Opportunity. --- 6) Create an opportunity (Salesforce) Purpose: Create Opportunity linked to the Buyer (Account). Key settings: Resource: opportunity Name: ={{ $('Message a model').item.json.message.content.invoice.code }} Close Date: ={{ $('Message a model').item.json.message.content.invoice.issue_date }} Stage: Closed Won Amount: ={{ $('Message a model').item.json.message.content.summary.grand_total }} AccountId: ={{ $json.id }} (from Upsert Account output) Creds: salesforceOAuth2Api Output: Opportunity Id for OLI creation. --- 7) Build SOQL (Code / JS) Purpose: Collect unique product codes from AI JSON and build a SOQL query for PricebookEntry by Pricebook2Id. Key settings: pricebook2Id (hardcoded in script): e.g., 01sxxxxxxxxxxxxxxx Source lines: $('Message a model').first().json.message.content.products Output: { soql, codes } --- 8) Query PricebookEntries (Salesforce) Purpose: Fetch PricebookEntry.Id for each Product2.ProductCode. Key settings: Resource: search Query: ={{ $json.soql }} Creds: salesforceOAuth2Api Output: Items with Id, Product2.ProductCode (used for mapping). --- 9) Code in JavaScript (Build OLI payloads) Purpose: Join lines with PBE results and Opportunity Id ➜ build OpportunityLineItem payloads. Inputs: OpportunityId: ={{ $('Create an opportunity').first().json.id }} Lines: ={{ $('Message a model').first().json.message.content.products }} PBE rows: from previous node items Output: { body: { allOrNone:false, records:[{ OpportunityLineItem... }] } } Notes: Converts discount_total ➜ per-unit if needed (currently commented for standard pricing). Throws on missing PBE mapping or empty lines. --- 10) Create Opportunity Line Items (HTTP Request) Purpose: Bulk create OLIs via Salesforce Composite API. Key settings: Method: POST URL: https://<your-instance>.my.salesforce.com/services/data/v65.0/composite/sobjects Auth: salesforceOAuth2Api (predefined credential) Body (JSON): ={{ $json.body }} Output: Composite API results (per-record statuses). --- 11) Update File to One Drive Purpose: Archive the original PDF in OneDrive. Key settings: Operation: upload File Name: ={{ $json.name }} Parent Folder ID: onedrive folder id Binary Data: true (from the Download node) Creds: microsoftOneDriveOAuth2Api Output: Uploaded file metadata. --- Data flow (wiring) Google Drive Trigger → Download File From Google Download File From Google → Extract from File → Update File to One Drive Extract from File → Message a model Message a model → Create or update an account Create or update an account → Create an opportunity Create an opportunity → Build SOQL Build SOQL → Query PricebookEntries Query PricebookEntries → Code in JavaScript Code in JavaScript → Create Opportunity Line Items --- Quick setup checklist 🔐 Credentials: Connect Google Drive, OneDrive, Salesforce, OpenAI. 📂 IDs: Drive Folder ID (watch) OneDrive Parent Folder ID (archive) Salesforce Pricebook2Id (in the JS SOQL builder) 🧠 AI Prompt: Use the strict system prompt; jsonOutput = true. 🧾 Field mappings: Buyer tax id/name → Account upsert fields Invoice code/date/amount → Opportunity fields Product name must equal your Product2.ProductCode in SF. ✅ Test: Drop a sample PDF → verify: AI returns array JSON only Account/Opportunity created OLI records created PDF archived to OneDrive --- Notes & best practices If PDFs are scans, enable OCR in Extract from File. If AI returns non-JSON, keep “Return only a JSON array” as the last line of the prompt and keep jsonOutput enabled. Consider adding validation on parsing.warnings to gate Salesforce writes. For discounts/taxes in OLI: Standard OLI fields don’t support per-line discount amounts directly; model them in UnitPrice or custom fields. Replace the Composite API URL with your org’s domain or use the Salesforce node’s Bulk Upsert for simplicity.

Le NguyenBy Le Nguyen
942