sascha/wg-portal
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

refactor: credentials via SOPS/ENV (${WG_PORTAL_ADMIN_USER}/${WG_PORTAL_ADMIN_PASSWORD})

Browse source
This commit is contained in:
sascha 2026-04-28 11:23:17 +02:00
parent 63301502da
commit f5b7951a9f
1 changed files with 12 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

21
config.yml
View file

@ -1,17 +1,21 @@
# wg-portal Konfiguration für Pfannkuchen VPS # wg-portal Konfiguration für Pfannkuchen VPS
# Docs: https://wgportal.org/master/documentation/overview/ # Docs: https://wgportal.org/master/documentation/overview/
# Credentials kommen aus sops-entschlüsselter .env
advanced: advanced:
log_level: info log_level: info
config_storage_path: "/app/config/wg0.conf" # Exportiert Config zurück in Datei # config_storage_path: "" # DEAKTIVIERT wg0.conf wird manuell verwaltet!
startup_import_peers: []
startup_create_unknown_peers: false
startup_create_default_peer: false
restore_state: true
core: core:
admin_user: sascha@sascha-lutz.de admin_user: ${WG_PORTAL_ADMIN_USER}
admin_password: l91aZNfYP27XxT-JOZsMBQ admin_password: ${WG_PORTAL_ADMIN_PASSWORD}
admin_api_token: bjzpPsuuRIV9pEBmrULjzHv6PbXQCEOUI5HfPvRTXZw editable_keys: true
editable_keys: true # Erlaubt Key-Änderungen via UI/API import_existing: true
import_existing: true # Importiert alle bestehenden Peers aus wg0 restore_state: true
restore_state: true # Stellt Peer-State wieder her (Enabled/Disabled)
create_default_peer_on_login: false create_default_peer_on_login: false
create_default_peer_on_user_creation: false create_default_peer_on_user_creation: false
self_provisioning_allowed: false self_provisioning_allowed: false
@ -21,9 +25,8 @@ database:
dsn: "/app/data/wg_portal.db" dsn: "/app/data/wg_portal.db"
web: web:
external_url: "https://wg.sascha-lutz.de" external_url: "https://vpn.sascha-lutz.de"
request_logging: true request_logging: true
# listen_addr wird via Compose env gesetzt
listening_address: ":8888" listening_address: ":8888"
statistics: statistics: