We are going to use moodle files storage for generated backup files. These areas seem necessary:
course_backup: course context
section_backup: course context, sectionid item
activity_backup: module context
All them will be protected against dowload/upload and only users with corresponding backup/restore perms will be able to see them.
Backups to be sent to HUB will be stored in (user context):
user_tohub: with the hub uploader being responsible to keep the area clean
Backups without user information will be stores in (user context):
user_backup: with the user being able to handle them completely
All them will be protected against dowload/upload and only users with corresponding backup/restore perms will be able to see them.
Then, for backups not containing private info (no users or annonymised backups), it should be possible to present to the user various alternatives:
Finally, we still have the backup->destinations (not implemented) stuff just in case we want to provide alternative storage / sending options. Not sure if we'll end deploying them some day, but for now it doesn't hurt to have them there.