feat(vpn): local config_file for self-hosted/personal VPN testing
downloads.vpn.config_file = path to a WireGuard .conf read directly by the daemon (skips the web fetch). Lets you point unarr at your own WireGuard server / personal VPN and split-tunnel torrent traffic through it without the web provisioning plumbing — for testing and self-hosted setups.
This commit is contained in:
Deivid Soto
parent
bf279ca5ad
commit
7de8955c4f
2 changed files with 18 additions and 1 deletions
|
|
@ -199,7 +199,19 @@ func runDaemonStart() error {
|
||||||
// the torrent client so peer + tracker traffic routes through it. Failure is
|
// the torrent client so peer + tracker traffic routes through it. Failure is
|
||||||
// non-fatal — log and download in the clear (better than refusing to run).
|
// non-fatal — log and download in the clear (better than refusing to run).
|
||||||
var vpnTunnel *vpn.Tunnel
|
var vpnTunnel *vpn.Tunnel
|
||||||
if cfg.Download.VPN.Enabled {
|
if cfg.Download.VPN.ConfigFile != "" {
|
||||||
|
// Self-hosted / personal-VPN mode: read a local .conf directly.
|
||||||
|
raw, rerr := os.ReadFile(cfg.Download.VPN.ConfigFile)
|
||||||
|
if rerr != nil {
|
||||||
|
log.Printf("[vpn] could not read config_file %q (%v) — downloading in the clear", cfg.Download.VPN.ConfigFile, rerr)
|
||||||
|
} else if t, uerr := vpn.Up(string(raw)); uerr != nil {
|
||||||
|
log.Printf("[vpn] tunnel failed to start from config_file (%v) — downloading in the clear", uerr)
|
||||||
|
} else {
|
||||||
|
vpnTunnel = t
|
||||||
|
defer vpnTunnel.Close()
|
||||||
|
log.Printf("[vpn] managed VPN active (local config_file) — torrent traffic split-tunnelled through WireGuard")
|
||||||
|
}
|
||||||
|
} else if cfg.Download.VPN.Enabled {
|
||||||
apiURL := cfg.Auth.APIURL
|
apiURL := cfg.Auth.APIURL
|
||||||
if apiURL == "" {
|
if apiURL == "" {
|
||||||
apiURL = "https://torrentclaw.com"
|
apiURL = "https://torrentclaw.com"
|
||||||
|
|
|
||||||
|
|
@ -63,6 +63,11 @@ type DownloadConfig struct {
|
||||||
// add-on on the account; otherwise the daemon logs and downloads in the clear.
|
// add-on on the account; otherwise the daemon logs and downloads in the clear.
|
||||||
type VPNConfig struct {
|
type VPNConfig struct {
|
||||||
Enabled bool `toml:"enabled"`
|
Enabled bool `toml:"enabled"`
|
||||||
|
// ConfigFile, when set, makes the daemon read a local WireGuard .conf instead
|
||||||
|
// of fetching one from the web API. For self-hosted / personal-VPN testing:
|
||||||
|
// point it at a peer .conf from your own WireGuard server and the torrent
|
||||||
|
// client split-tunnels through it with no web/provider plumbing.
|
||||||
|
ConfigFile string `toml:"config_file"`
|
||||||
}
|
}
|
||||||
|
|
||||||
// TranscodeConfig controls real-time transcoding for the in-browser player
|
// TranscodeConfig controls real-time transcoding for the in-browser player
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue