Add initial luci-app-fwknopd - a way to control the firewall knock daemon from luci

[project/luci.git] / applications / luci-app-fwknopd / root / etc / uci-defaults / luci-fwknopd

diff --git a/applications/luci-app-fwknopd/root/etc/uci-defaults/luci-fwknopd b/applications/luci-app-fwknopd/root/etc/uci-defaults/luci-fwknopd
new file mode 100644 (file)
index 0000000..a7c433f
--- /dev/null
+++ b/applications/luci-app-fwknopd/root/etc/uci-defaults/luci-fwknopd
@@ -0,0 +1,19 @@
+#!/bin/sh
+#-- Copyright 2015 Jonathan Bennett <jbennett@incomsystems.biz>
+#-- Licensed to the public under the GNU General Public License v2.
+
+uci batch <<EOF
+       add ucitrack fwknopd
+       set ucitrack.@fwknopd[-1].init=fwknopd
+       commit ucitrack
+EOF
+
+if [ -f /usr/bin/fwknop ]; then
+       uci set fwknopd.@access[0].keytype='Base 64 key'
+       uci set fwknopd.@access[0].hkeytype='Base 64 key'
+       uci set fwknopd.@access[0].KEY_BASE64=`fwknop --key-gen | awk '/^KEY/ {print $2;}'`
+       uci set fwknopd.@access[0].HMAC_KEY_BASE64=`fwknop --key-gen | awk '/^HMAC/ {print $2;}'`
+       uci commit fwknopd
+fi
+rm -f /tmp/luci-indexcache
+exit 0