-
Notifications
You must be signed in to change notification settings - Fork 0
/
example_config.json
98 lines (98 loc) · 2.3 KB
/
example_config.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
{
"Lockout": 5,
"HelpMail": "help@example.com",
"MaxSessionLifetimeMinutes": 2,
"SessionInactivityTimeoutMinutes": 1,
"ExternalAddress": "192.168.121.61",
"DatabaseLocation": "devices.db",
"Socket": "/tmp/wag.sock",
"Webserver": {
"Public": {
"ListenAddress": ":8081"
},
"Tunnel": {
"Port": "8080"
}
},
"ManagementUI": {
"ListenAddress": "127.0.0.1:4433",
"Enabled": true
},
"Authenticators": {
"Issuer": "vpn.test",
"DomainURL": "https://vpn.test:8080",
"DefaultMethod": "",
"Methods": [
"totp",
"webauthn",
"oidc"
],
"OIDC": {
"IssuerURL": "http://localhost:8080/",
"ClientSecret": "AN EXAMPLE KEY",
"ClientID": "account",
"GroupsClaimName": "groups"
},
"PAM": {
"ServiceName": "vpncheckpass"
}
},
"Wireguard": {
"DevName": "wg0",
"ListenPort": 53230,
"PrivateKey": "AN EXAMPLE KEY",
"Address": "192.168.1.1/24",
"MTU": 1420,
"DNS": [
"1.1.1.1/32"
]
},
"Acls": {
"Groups": {
"group:nerds": [
"toaster",
"tester",
"abc"
],
"group:administrators": [
"toaster",
"tester"
]
},
"Policies": {
"*": {
"Allow": [
"7.7.7.7",
"google.com"
]
},
"group:nerds": {
"Mfa": [
"192.168.3.4/32"
],
"Allow": [
"192.168.3.5/32"
]
},
"tester": {
"Mfa": [
"192.168.3.0/24",
"192.168.5.0/24"
],
"Allow": [
"4.3.3.3/32"
]
},
"group:administrators": {
"Mfa": [
"8.8.8.8"
]
},
"toaster": {
"Allow": [
"1.1.1.1/32"
]
}
}
}
}