cronekorkn/bundlewrap
1
0
Fork 0
Code Issues Pull requests 8 Projects Releases Wiki Activity

acme allow wireguard ips

Browse source
This commit is contained in:
mwiegand 2021-11-08 22:48:24 +01:00
parent b9896960ff
commit 93d9f1af39
2 changed files with 11 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
bundles/bind-acme/metadata.py
View file

@ -24,14 +24,21 @@ def acme_records(metadata):
@metadata_reactor.provides(
'bind/acls/acme',
'bind/keys/acme',
'bind/views/external/keys/acme',
'bind/views/external/zones',
)
def acme_zone(metadata):
allowed_ips = {
*{
str(ip_interface(other_node.metadata.get('network/internal/ipv4')).ip)
for other_node in repo.nodes
if other_node.metadata.get('letsencrypt/domains', {})
},
*{
str(ip_interface(other_node.metadata.get('wireguard/my_ip')).ip)
for other_node in repo.nodes
if other_node.has_bundle('wireguard')
},
}
return {

5
nodes/home.openhab3.py
View file

@ -40,11 +40,6 @@
},
},
},
'letsencrypt': {
'domains': {
'test12.ckn.li': {},
}
},
'java': {
'version': 11,
},