Document versioning broken after restoring from cloud backup - version metadata misaligned with actual files

QMS Qualio
, , , , , , , ,
1

After restoring document-control data from a cloud backup following a data corruption incident, our document versioning is completely broken. The version metadata in Qualio shows incorrect version numbers and timestamps that don’t match the actual document files stored in cloud storage.

For example, SOP-001 shows as version 4.0 in Qualio with last modified date of 2025-04-10, but when users download it, they get version 3.2 from 2025-03-15. The API returns mismatched data too:

{
  "documentId": "SOP-001",
  "version": "4.0",
  "metadata_timestamp": "2025-04-10T14:30:00Z",
  "storage_file_version": "3.2",
  "storage_timestamp": "2025-03-15T11:20:00Z"
}

We’re on qual-2023.1 and restored from a backup taken 48 hours before the corruption. The cloud backup/restore process appeared successful but clearly the document version metadata didn’t sync properly with the actual file versions in cloud storage. This is a major compliance risk as users might be working from wrong document versions. How can we reconcile the metadata with actual files using the API?

2

They were backed up separately - database backup at 02:00 AM and storage bucket backup at 03:30 AM. So there was a 90-minute gap where document updates could have occurred. That explains the mismatch. But how do I fix it now? We have about 200 documents affected, and manually checking each one would take days. Is there an API-based approach to scan all documents and reconcile metadata with actual file versions?

3

This is a known issue with cloud backups when document metadata and file storage are backed up at different times. If your backup process captures the database (metadata) first and then file storage, there’s a time gap where new versions can be created. The restore then has a temporal mismatch. Did your backup include both the Qualio database and the cloud storage bucket in a single consistent snapshot, or were they backed up separately?

4

You’ll need to use the Qualio API to compare metadata versions against actual file versions in storage. The API has a document reconciliation endpoint specifically for this scenario. However, be careful - if you have documents that were legitimately updated after the backup but before the corruption, you don’t want to roll those back. You need to identify which discrepancies are backup-related versus legitimate updates.

5

For future prevention, switch to application-consistent snapshots that capture database and storage simultaneously. AWS has Backup with cross-region copy that can snapshot RDS and S3 together. Azure has similar capabilities with Recovery Services vault. This eliminates the timing gap that caused your mismatch. Also consider enabling versioning on your cloud storage bucket as an additional safety layer - then even if metadata gets corrupted, you can recover any file version from storage history.

6

From a compliance perspective, you need to document this incident thoroughly. Create a deviation report explaining the backup/restore issue, list all affected documents, and detail the reconciliation process. Also implement a validation step - have document owners review and approve the corrected versions before you update metadata. This creates an audit trail showing the issue was caught and properly remediated.

7

I’ll provide a complete solution covering the cloud backup/restore process improvement, document version metadata reconciliation, and API-based validation approach.

Understanding the Root Cause

Your backup process has a critical flaw: non-atomic backup of related data. The 90-minute gap between database backup (containing version metadata) and storage backup (containing actual files) creates a consistency window where document updates cause metadata-file misalignment.

During that 90-minute window on the night of your backup:

  1. Database backed up at 02:00 AM (captured metadata showing version 3.2)
  2. Users updated documents between 02:00-03:30 AM (SOP-001 advanced to version 4.0)
  3. Storage backed up at 03:30 AM (captured files at version 4.0)
  4. After restore: metadata shows 3.2, files are actually 4.0

Your JSON output shows the inverse pattern (metadata ahead of files), which suggests the corruption happened after the backup window, and the restore brought back older files but somehow metadata was partially preserved or updated post-restore.

Solution Part 1: Cloud Backup/Restore Process Fix

Implement application-consistent snapshots:

For AWS:


// Pseudocode - Atomic backup process:
1. Put Qualio in maintenance mode (prevent writes)
2. Create RDS snapshot of Qualio database
3. Simultaneously trigger S3 bucket versioning snapshot
4. Use AWS Backup to coordinate both snapshots with same timestamp
5. Tag both snapshots with same backup-id for restore correlation
6. Exit maintenance mode
// Maintenance window: ~5-10 minutes for snapshot initiation

For Azure: Use Recovery Services vault with application-consistent backup that coordinates Azure SQL and Blob Storage snapshots.

Key configuration:

  • Enable “Application Consistent Backup” in vault settings
  • Set backup schedule to single coordinated job (not separate jobs)
  • Configure pre/post-backup scripts to verify version alignment

Solution Part 2: Document Version Metadata Reconciliation

Use Qualio API to scan and fix misaligned documents:

Step 1: Discovery Script Query all documents and compare metadata vs. actual file versions:

# Pseudocode - Document version audit:
1. GET /api/v1/documents?module=document-control
2. For each document:
   a. Extract metadata version and timestamp from API response
   b. Download actual file from cloud storage
   c. Read file version from document properties/header
   d. Compare metadata_version vs file_version
   e. If mismatch: add to reconciliation list with both versions
3. Export reconciliation list to CSV for review
// Output: List of 200 affected documents with version discrepancies

Step 2: Manual Review and Decision Before automated fix, document owners must review the reconciliation list:

  • Identify which version is correct (usually the file version from storage)
  • Flag any documents that had legitimate updates post-backup
  • Create deviation report listing all affected documents
  • Get QA approval to proceed with metadata updates

Solution Part 3: API-Based Reconciliation

Once approved, update metadata to match file versions:

# Pseudocode - Metadata correction:
1. For each document in approved reconciliation list:
   a. Retrieve current file version from cloud storage
   b. Extract file timestamp and version number
   c. PATCH /api/v1/documents/{documentId}/metadata
      - Update version field to match file version
      - Update timestamp to match file timestamp
      - Add reconciliation note to change history
   d. Verify update with GET request
   e. Log successful reconciliation
2. Generate reconciliation report with before/after versions
// Include audit trail entries for compliance documentation

Step 3: Validation Process

After reconciliation, validate the fixes:

# Pseudocode - Post-reconciliation validation:
1. Re-run discovery script to check for remaining mismatches
2. Sample 10% of reconciled documents:
   a. Download file via Qualio UI
   b. Verify version matches metadata in UI
   c. Check API returns consistent version info
3. Have document owners spot-check their critical documents
4. Document validation results in deviation report
// Expected result: Zero version mismatches

Solution Part 4: Prevent Future Issues

  1. Backup Process Enhancement:

    • Implement atomic snapshots (database + storage together)
    • Add pre-backup validation: compare metadata vs. files before backup
    • Store backup manifest listing all document versions captured
    • Test restore process quarterly to catch issues early

  2. Storage Layer Protection:

    • Enable versioning on cloud storage bucket (S3 Versioning or Azure Blob Versioning)
    • Configure lifecycle policy to retain version history for 90 days
    • This provides version recovery even if metadata corrupts

  3. Monitoring and Alerts:

    • Create scheduled job (daily) to detect version mismatches:
      • Compare metadata versions vs. file versions for recent updates
      • Alert if discrepancies exceed threshold (>5 documents)
    • Monitor backup job timing to ensure atomic completion

  4. Compliance Documentation:

    • Create SOP for backup/restore procedures
    • Document this incident as a CAPA with root cause and corrective actions
    • Include version reconciliation process in disaster recovery plan
    • Train document controllers on validation procedures

Implementation Timeline:

  • Immediate (Days 1-2): Run discovery script, generate reconciliation list, get QA approval
  • Short-term (Days 3-5): Execute API-based reconciliation, validate results, complete deviation report
  • Medium-term (Weeks 2-3): Implement atomic backup process, enable storage versioning
  • Long-term (Month 2): Deploy monitoring, update SOPs, conduct DR test

Key Insight:

The core issue is treating document metadata and files as separate backup entities when they’re logically coupled. Any backup/restore strategy for document management systems must ensure atomic consistency between metadata and files. The API reconciliation fixes the immediate problem, but process changes prevent recurrence.

Your 200 affected documents can be reconciled in a few hours using the API approach, versus days of manual work. The compliance risk is mitigated by thorough documentation and document owner validation before updating metadata.