Run bash (.sh) via launchd using a plist in /Library/LaunchAgents

Well, this is so frustrating. I spoke too soon.

The test script works fine as all it is doing is echoing to a log as a test. The real script works from a scheduling/launchd/plist perspective.. but however it is running, the script's rsync lines cannot access my user Documents and Pictures etc. directories (in some cases at all and in others without sufficient access to perform properly).

The script works perfectly fine if I manually run it. I mean come on, all I want to do is automate this to rsync every hour. Should not be this difficult.

Very frustrating. This is my computer, my files, my network, etc. If Apple is going to prohibit basic scripting, at least produce errors and documentation on what exactly is the prohibition. A perfectly well working script cannot be scheduled by the administrator of the system? So secure it is not useable?

I was hoping to use the Apple OS ecosystem/standards (in a sense) but nope. I guess I have to explore cron on macOS or something else.

And all this is due to I have significant investment in perfectly good, but older, network appliances that are unfortunately dependent on AFP for TimeMachine backups. So Apple kills AFP, but provides no workaround. In fact, my TimeMachines are literarily useless now. $ --> trash.

Vendors of older appliances certainly are not going to help either. So fine, rsync via ssh to the older NAS'.... only Apple is making that very difficult. Again, scripts work. Automation routes seem unsupported.

I guess rsync is a rabbit hole. Cool. Thank you for pointing out there are better ways to do backups than to use rsync. Perhaps a more specific pointer though? As in what did you have in mind?

I do like rsync -av -e ssh ... as it doesn't alter source and only operates on changed files and I don't particularly need time phased versioning of the individual backed up files; nice to have maybe, but not really necessary.

Happy to find a better way. I can fantasize a "Net change APFS snapshot to remote server" lol.

I have some old QNAP NAS'. They work great. They support SMB4 (command line enablement). However, they do not support Time Machine over SMB. Only AFP. Sad. And I don't really expect them to reopen dev on QTS 4 from EOL last year and other than replacing the DOM, I have not found away around this on the QNAPs.

But the NAS' work great as network destinations and new ones are $$$. Thus the desire to rsync ssh to them as one aspect of a back up plan. My TimeCapsules also still work well even though old. But now AFP is to actually finally die, they are not going to have any use case.

As for Apple Script, I actually have a version of this where an Automator step uses AppleScript to tell terminal to run the .sh. This is working same as manual running it. So now I need to find a manner for scheduling the AppleScript or Automator flow. The internet says as a Calendar event but this seems clunky as I want it running hourly. The internet also says cron and launchd too. But "internet says". LOL. I'll probably test calling the automator flow with cron and launchd and see if "operation not permitted" shows back up. And then maybe also a look at a stand alone Apple Script called by those as well.

Another poster on here said rsync isn't the way. So maybe there is something else to use/automate/script. I might also see if a python version of the scripts handles spaces and quotes and security more consistently when called via the differing automation avenues.

Unfortunately, not all QNAPs on QTS 4 are the same. My 859-Pro is an Atom. Consequently none of the SMB TimeMachine server options in those screens are available. The non-x86 QNAPs seem to require TM to be AFP.

I did figure out how to get SMB3 as highest level of SMB. This is via command line. But I cannot find any way of getting the TimeMachine server to be visible to a Mac without the QNAP having AFP enabled.

I also note when a TimeMachine backup starts, it is referencing an AFP share, not the SMB - again, as the SMB has no way of being told it is a TM backup destination. <insert frown face here>.

Like I found a command line for enabling SMB3 as the GUI on a non-x86 will not show the option, I was hoping to find a command for enabling SMB TimeMachine server. I have yet to find anything. QNAP support said buy a new QNAP. Hmmmm....

I use a lot of Python so might go there...

The space in the list is handled differently depending on how the .sh gets launched. Would need two versions. Not an option.

Backups to a cloud service would violate some of my client contracts. Or really, make it hard to show how I am protecting their data when transmitted and stored with a third party. Consequently I am zero cloud backups. I am not saying this is not possible.. it is just a legal department nightmare.

And true, I really do need to think of back ups differently. I have only SSDs (NAS, Externals, Internals) so actual loss from failure is unlikely. But... I travel full time. So the idea of back ups is about "house burns down" or laptop gets destroyed/stolen.... and cloud backups give me a legal headache. So.. ssh to other site (I own) plus external drives in safes (local and separate site).

I would love to just keep using TimeMachine.. but replacing NAS' that work... for the $$$ is just something I was hoping to avoid. And the manual approach has and does work well.... so... maybe play with the python approach. see if it is easy and then if not, stick with manual. It will work.

Yes, redundancy is necessary in case SSD(s) fail quickly. So even though they are pretty reliable, I still have multiple manners so as to spread the risk.

I went with a bit different approach for the NAS'. I put a Raspberry Pi on the network with an SMB share advertised as a TimeMachine destination. This SMB has a mount point that is actually an SMB share from a NAS that does not support advertising its SMBs as TimeMachine destinations. This does route the TM backup in and out of the PI through a single interface but the write speed of the RAID 10 (8 disk) NAS' are the limiting factor so the performance is no worse than direct to the NAS'.

Then I also have three external SSDs; one with direct manual executed TM backup and two with selected home directory manual rsync scripts.

All good now and I get to keep all my old hardware (except the Time Capsules) in place. Should be good until zombie apocalypse.

For my understanding… Isn’t everything, including the ~/Library directory, under /Users/<userName>/ technically the Home folder?

Correction; I meant SMB3.