acme allow wireguard ips

2021-11-08 22:48:24 +01:00 · 2021-11-08 22:48:24 +01:00 · 93d9f1af39
commit 93d9f1af39
parent b9896960ff
2 changed files with 11 additions and 9 deletions
--- a/bundles/bind-acme/metadata.py
+++ b/bundles/bind-acme/metadata.py
@ -24,14 +24,21 @@ def acme_records(metadata):

@metadata_reactor.provides(
    'bind/acls/acme',
-    'bind/keys/acme',
+    'bind/views/external/keys/acme',
    'bind/views/external/zones',
 )
 def acme_zone(metadata):
    allowed_ips = {
-        str(ip_interface(other_node.metadata.get('network/internal/ipv4')).ip)
-            for other_node in repo.nodes
-            if other_node.metadata.get('letsencrypt/domains', {})
+        *{
+            str(ip_interface(other_node.metadata.get('network/internal/ipv4')).ip)
+                for other_node in repo.nodes
+                if other_node.metadata.get('letsencrypt/domains', {})
+        },
+        *{
+            str(ip_interface(other_node.metadata.get('wireguard/my_ip')).ip)
+                for other_node in repo.nodes
+                if other_node.has_bundle('wireguard')
+        },
    }
    
    return {
--- a/nodes/home.openhab3.py
+++ b/nodes/home.openhab3.py
@ -40,11 +40,6 @@
                },
            },
        },
-        'letsencrypt': {
-            'domains': {
-                'test12.ckn.li': {},
-            }
-        },
        'java': {
            'version': 11,
        },