groups: - name: WG-Easy Configuration description: Configure WG-Easy - name: Advanced Pod Configuration description: Configure Advanced Pod Options for WG-Easy - name: Network Configuration description: Configure Network for WG-Easy - name: Storage Configuration description: Configure Storage for WG-Easy - name: Resources Configuration description: Configure Resources for WG-Easy portals: web_portal: protocols: - "$kubernetes-resource_configmap_portal_protocol" host: - "$kubernetes-resource_configmap_portal_host" ports: - "$kubernetes-resource_configmap_portal_port" path: "$kubernetes-resource_configmap_portal_path" questions: - variable: wgNetwork label: "" group: Network Configuration schema: type: dict attrs: - variable: udpPort label: UDP Port description: The port for the WG-Easy Wireguard service. schema: type: int default: 30057 min: 9000 max: 65535 required: true - variable: webPort label: Web Port description: The port for the WG-Easy Web UI. schema: type: int default: 30058 min: 9000 max: 65535 required: true - variable: hostNetwork label: Host Network schema: type: boolean default: true - variable: podOptions label: "" group: Advanced Pod Configuration schema: type: dict attrs: - variable: dnsConfig label: Advanced DNS Configuration schema: type: dict attrs: - variable: options label: DNS Options schema: type: list items: - variable: optionsEntry label: DNS Option Entry schema: type: dict attrs: - variable: name label: Option Name schema: type: string required: true - variable: value label: Option Value schema: type: string required: true - variable: wgConfig label: "" group: WG-Easy Configuration schema: type: dict attrs: - variable: host label: Hostname or IP description: The public hostname or IP of your VPN server. schema: type: string required: true $ref: - "definitions/nodeIP" - variable: password label: Password for WebUI description: When set, requires a password when logging in to the Web UI. schema: type: string private: true default: "" - variable: keepAlive label: Persistent Keep Alive description: Value in seconds to keep the "connection" open. If this value is 0, then connections won't be kept alive. schema: type: int required: true default: 0 - variable: deviceName label: Device Name description: Ethernet device the wireguard traffic should be forwarded through. schema: type: string required: true default: eth0 - variable: clientMTU label: Clients MTU description: The MTU the clients will use. schema: type: int required: true default: 1420 - variable: clientAddressRange label: Clients IP Address Range description: Clients IP address range. schema: type: string required: true default: 10.8.0.x - variable: clientDNSServer label: Clients DNS Server description: Clients DNS Server. schema: type: string required: true default: "1.1.1.1" - variable: allowedIPs label: Allowed IPs description: Allowed IPs clients will use. If none provided, <0.0.0.0/0,::/0> will be used. schema: type: list default: [] items: - variable: entry label: Allowed IP Entry schema: type: string required: true default: "" - variable: additionalEnvs label: Additional Environment Variables description: Configure additional environment variables for WG-Easy. schema: type: list default: [] items: - variable: env label: Environment Variable schema: type: dict attrs: - variable: name label: Name schema: type: string required: true - variable: value label: Value schema: type: string required: true - variable: wgStorage label: "" group: Storage Configuration schema: type: dict attrs: - variable: config label: WG-Easy Config Storage description: The path to store WG-Easy Configuration. schema: type: dict attrs: - variable: type label: Type description: | ixVolume: Is dataset created automatically by the system.
Host Path: Is a path that already exists on the system. schema: type: string required: true immutable: true default: "ixVolume" enum: - value: "hostPath" description: Host Path (Path that already exists on the system) - value: "ixVolume" description: ixVolume (Dataset created automatically by the system) - variable: ixVolumeConfig label: ixVolume Configuration description: The configuration for the ixVolume dataset. schema: type: dict show_if: [["type", "=", "ixVolume"]] $ref: - "normalize/ixVolume" attrs: - variable: aclEnable label: Enable ACL description: Enable ACL for the dataset. schema: type: boolean default: false - variable: datasetName label: Dataset Name description: The name of the dataset to use for storage. schema: type: string required: true immutable: true hidden: true default: "config" - variable: aclEntries label: ACL Configuration schema: type: dict show_if: [["aclEnable", "=", true]] attrs: [] - variable: hostPathConfig label: Host Path Config schema: type: dict show_if: [["type", "=", "hostPath"]] attrs: - variable: aclEnable label: Enable ACL description: Enable ACL for the dataset. schema: type: boolean default: false - variable: acl label: ACL Configuration schema: type: dict show_if: [["aclEnable", "=", true]] attrs: [] $ref: - "normalize/acl" - variable: hostPath label: Host Path description: The host path to use for storage. schema: type: hostpath show_if: [["aclEnable", "=", false]] required: true - variable: additionalStorages label: Additional Storage description: Additional storage for WG-Easy. schema: type: list default: [] items: - variable: storageEntry label: Storage Entry schema: type: dict attrs: - variable: type label: Type description: | ixVolume: Is dataset created automatically by the system.
Host Path: Is a path that already exists on the system.
SMB Share: Is a SMB share that is mounted to a persistent volume claim. schema: type: string required: true default: "ixVolume" immutable: true enum: - value: "hostPath" description: Host Path (Path that already exists on the system) - value: "ixVolume" description: ixVolume (Dataset created automatically by the system) - value: "smb-pv-pvc" description: SMB Share (Mounts a persistent volume claim to a SMB share) - variable: readOnly label: Read Only description: Mount the volume as read only. schema: type: boolean default: false - variable: mountPath label: Mount Path description: The path inside the container to mount the storage. schema: type: path required: true - variable: hostPathConfig label: Host Path Config schema: type: dict show_if: [["type", "=", "hostPath"]] attrs: - variable: aclEnable label: Enable ACL description: Enable ACL for the dataset. schema: type: boolean default: false - variable: acl label: ACL Configuration schema: type: dict show_if: [["aclEnable", "=", true]] attrs: [] $ref: - "normalize/acl" - variable: hostPath label: Host Path description: The host path to use for storage. schema: type: hostpath show_if: [["aclEnable", "=", false]] required: true - variable: ixVolumeConfig label: ixVolume Configuration description: The configuration for the ixVolume dataset. schema: type: dict show_if: [["type", "=", "ixVolume"]] $ref: - "normalize/ixVolume" attrs: - variable: aclEnable label: Enable ACL description: Enable ACL for the dataset. schema: type: boolean default: false - variable: datasetName label: Dataset Name description: The name of the dataset to use for storage. schema: type: string required: true immutable: true default: "storage_entry" - variable: aclEntries label: ACL Configuration schema: type: dict show_if: [["aclEnable", "=", true]] attrs: [] - variable: smbConfig label: SMB Share Configuration description: The configuration for the SMB Share. schema: type: dict show_if: [["type", "=", "smb-pv-pvc"]] attrs: - variable: server label: Server description: The server for the SMB share. schema: type: string required: true - variable: share label: Share description: The share name for the SMB share. schema: type: string required: true - variable: domain label: Domain (Optional) description: The domain for the SMB share. schema: type: string - variable: username label: Username description: The username for the SMB share. schema: type: string required: true - variable: password label: Password description: The password for the SMB share. schema: type: string required: true private: true - variable: size label: Size (in Gi) description: The size of the volume quota. schema: type: int required: true min: 1 default: 1 - variable: resources group: Resources Configuration label: "" schema: type: dict attrs: - variable: limits label: Limits schema: type: dict attrs: - variable: cpu label: CPU description: CPU limit for WG-Easy. schema: type: string max_length: 6 valid_chars: '^(0\.[1-9]|[1-9][0-9]*)(\.[0-9]|m?)$' valid_chars_error: | Valid CPU limit formats are
- Plain Integer - eg. 1
- Float - eg. 0.5
- Milicpu - eg. 500m default: "4000m" required: true - variable: memory label: Memory description: Memory limit for WG-Easy. schema: type: string max_length: 12 valid_chars: '^[1-9][0-9]*([EPTGMK]i?|e[0-9]+)?$' valid_chars_error: | Valid Memory limit formats are
- Suffixed with E/P/T/G/M/K - eg. 1G
- Suffixed with Ei/Pi/Ti/Gi/Mi/Ki - eg. 1Gi
- Plain Integer in bytes - eg. 1024
- Exponent - eg. 134e6 default: "8Gi" required: true