magic_rb/dotfiles
1
0
Fork 0
mirror of https://git.sr.ht/~magic_rb/dotfiles synced 2024-11-26 10:06:13 +01:00
Code Issues Packages Projects Releases Wiki Activity
dotfiles/nix/secret-lib/wireguard.nix

98 lines
2.4 KiB
Nix
Raw Normal View History

Remove all semi-secret things Signed-off-by: Magic_RB <magic_rb@redalder.org>
2021-08-19 18:14:15 +02:00
{ lib, ... }:
with lib;
{
options = {
wireguard = mkOption {
description = ''
Wireguard machine specific settings.
'';
type = with types; attrsOf (submodule
{ options = {
ips = mkOption {
description = ''
IP addresses.
'';
type = listOf str;
default = [];
};
listenPort = mkOption {
description = ''
Listen port.
'';
type = port;
};
privateKeyFile = mkOption {
description = ''
Path to private key
'';
type = str;
};
peers = mkOption {
description = ''
List of peers.
'';
type = listOf (submodule
{
options = {
publicKey = mkOption {
description = ''
Peer public key.
'';
type = str;
};
allowedIPs = mkOption {
description = ''
Allowed IPs for peer.
'';
type = listOf str;
};
endpoint = mkOption {
description = ''
Peer endpoint.
'';
type = nullOr str;
default = null;
};
persistentKeepalive = mkOption {
description = ''
Persistent keepalive.
'';
type = nullOr int;
default = null;
};
};
}
);
default = [];
};
};
}
);
default = {};
example = literalExample
''
{
heater = {
ips =
[ "stuff" ];
listenPort = 0;
privateKeyFile = "stuff";
peers = [
{ publicKey =
"stuff";
allowedIPs =
[ "stuff"
];
};
];
}
}
'';
};
};
}
Reference in a new issue Copy permalink