Skip to main content

State Management

The Actvt installation creates state files, backups, and logs to track configuration. This page documents what gets created and where.

Directory Structure

/var/lib/actvt/              # Main state directory
├── install.state            # Installation metadata
├── domain                   # Configured domain name
└── backups/                 # Configuration backups
    ├── vector.toml.backup.XXXXXX
    ├── mtls-ca.crt.backup.XXXXXX
    └── actvt-vector.nginx.backup.XXXXXX

/var/log/
└── actvt-install.log        # Detailed installation log

/etc/vector/
├── vector.toml              # Vector configuration
├── certs/                   # TLS certificates
│   ├── server.crt
│   ├── server.key
│   └── mtls/                # mTLS certificates (if enabled)
│       ├── ca.crt
│       ├── ca.key
│       ├── clients/
│       │   ├── actvt-client-001.crt
│       │   └── actvt-client-001.key
│       ├── actvt-client-001-bundle.tar.gz
│       └── generate-client.sh

/etc/letsencrypt/
├── live/                    # Current certificates
│   └── yourdomain.com/
│       ├── fullchain.pem
│       └── privkey.pem
└── renewal-hooks/           # Auto-renewal hooks
    └── deploy/
        └── actvt-vector.sh

State File

/var/lib/actvt/install.state contains installation metadata:

version=1.0.0
installed_at=2024-01-15T10:30:00Z
mode=proxy
webserver=nginx
mtls=enabled
mtls_client_cn=actvt-client-001

Backups

The installation script automatically backs up existing configuration before making changes. Backups are stored in /var/lib/actvt/backups/ with timestamped filenames.

To restore a backup:

# Restore Vector config
sudo cp /var/lib/actvt/backups/vector.toml.backup.XXXXXX /etc/vector/vector.toml
sudo systemctl restart vector

Logs

# View installation log
sudo less /var/log/actvt-install.log

# View Vector service logs
sudo journalctl -u vector -f

Sensitive Files

These files contain private keys — protect them accordingly:

  • /etc/vector/certs/server.key
  • /etc/vector/certs/mtls/ca.key
  • /etc/vector/certs/mtls/clients/*.key

Never share these publicly, commit them to version control, or send via unencrypted channels.

Full Backup and Restore

# Backup all Actvt configuration
sudo tar -czf ~/actvt-backup-$(date +%Y%m%d).tar.gz \
  /var/lib/actvt /etc/vector/vector.toml /etc/vector/certs

# Restore
sudo tar -xzf ~/actvt-backup-*.tar.gz -C /
sudo chown -R vector:vector /etc/vector
sudo systemctl restart vector

For troubleshooting state-related issues, see the Troubleshooting Guide.