3a6949dfaf
This tool can be used to automatically create wireguard tunnels. Using
rpcd a new wireguard interface is created on the server where the client
can connect to.
Wiregurad server automatically installs a user and associated ACL to use
the wireguard-installer-server features. The user is called wginstaller
and so is the password.
Get Usage:
wg-client-installer get_usage --ip 127.0.0.1 --user wginstaller
--password wginstaller
Register Interface:
wg-client-installer register --ip 127.0.0.1 --user wginstaller
--password wginstaller --bandwidth 10 --mtu 1400
Signed-off-by: Nick Hainke <vincent@systemli.org>
134 lines
2.7 KiB
Bash
134 lines
2.7 KiB
Bash
. /usr/share/libubox/jshn.sh
|
|
|
|
query_gw () {
|
|
local ip=$1
|
|
local req=$2
|
|
|
|
# first try https
|
|
ret=$(curl https://$ip/ubus -d "$req") 2>/dev/null
|
|
if [ $? -eq 0 ]; then
|
|
echo $ret
|
|
return 0
|
|
fi
|
|
|
|
# try with --insecure
|
|
if [ $(uci get wgclient.@client[0].try_insecure) == '1' ]; then
|
|
ret=$(curl --insecure https://$ip/ubus -d "$req") 2>/dev/null
|
|
if [ $? -eq 0 ]; then
|
|
echo $ret
|
|
return 0
|
|
fi
|
|
fi
|
|
|
|
# try with http
|
|
if [ $(uci get wgclient.@client[0].try_http) == '1' ]; then
|
|
ret=$(curl http://$ip/ubus -d "$req") 2>/dev/null
|
|
if [ $? -eq 0 ]; then
|
|
echo $ret
|
|
return 0
|
|
fi
|
|
fi
|
|
|
|
return 1
|
|
}
|
|
|
|
request_token () {
|
|
local ip=$1
|
|
local user=$2
|
|
local password=$3
|
|
|
|
json_init
|
|
json_add_string "jsonrpc" "2.0"
|
|
json_add_int "id" "1"
|
|
json_add_string "method" "call"
|
|
json_add_array "params"
|
|
json_add_string "" "00000000000000000000000000000000"
|
|
json_add_string "" "session"
|
|
json_add_string "" "login"
|
|
json_add_object
|
|
json_add_string "username" $user
|
|
json_add_string "password" $password
|
|
json_close_object
|
|
json_close_array
|
|
req=$(json_dump)
|
|
ret=$(query_gw $ip "$req") 2>/dev/null
|
|
if [ $? != 0 ]; then
|
|
return 1
|
|
fi
|
|
json_load "$ret"
|
|
json_get_vars result result
|
|
json_select result
|
|
json_select 2
|
|
json_get_var ubus_rpc_session ubus_rpc_session
|
|
echo $ubus_rpc_session
|
|
}
|
|
|
|
wg_rpcd_get_usage () {
|
|
local token=$1
|
|
local ip=$2
|
|
local secret=$3
|
|
|
|
json_init
|
|
json_add_string "jsonrpc" "2.0"
|
|
json_add_int "id" "1"
|
|
json_add_string "method" "call"
|
|
json_add_array "params"
|
|
json_add_string "" $token
|
|
json_add_string "" "wginstaller"
|
|
json_add_string "" "get_usage"
|
|
json_add_object
|
|
json_close_object
|
|
json_close_array
|
|
req=$(json_dump)
|
|
ret=$(query_gw $ip "$req") 2>/dev/null
|
|
if [ $? != 0 ]; then
|
|
return 1
|
|
fi
|
|
|
|
# return values
|
|
json_load "$ret"
|
|
json_get_vars result result
|
|
json_select result
|
|
json_select 2
|
|
json_get_var num_interfaces num_interfaces
|
|
echo "num_interfaces: ${num_interfaces}"
|
|
}
|
|
|
|
wg_rpcd_register () {
|
|
local token=$1
|
|
local ip=$2
|
|
local uplink_bw=$3
|
|
local mtu=$4
|
|
local public_key=$5
|
|
|
|
json_init
|
|
json_add_string "jsonrpc" "2.0"
|
|
json_add_int "id" "1"
|
|
json_add_string "method" "call"
|
|
json_add_array "params"
|
|
json_add_string "" $token
|
|
json_add_string "" "wginstaller"
|
|
json_add_string "" "register"
|
|
json_add_object
|
|
json_add_int "uplink_bw" $uplink_bw
|
|
json_add_int "mtu" $mtu
|
|
json_add_string "public_key" $public_key
|
|
json_close_object
|
|
json_close_array
|
|
req=$(json_dump)
|
|
ret=$(query_gw $ip "$req") 2>/dev/null
|
|
if [ $? != 0 ]; then
|
|
return 1
|
|
fi
|
|
|
|
json_load "$ret"
|
|
json_get_vars result result
|
|
json_select result
|
|
json_select 2
|
|
json_get_var pubkey pubkey
|
|
json_get_var gw_ip gw_ip
|
|
json_get_var port port
|
|
echo "pubkey: ${pubkey}"
|
|
echo "gw_ip: ${gw_ip}"
|
|
echo "port: ${port}"
|
|
}
|