Create vault.yml for > 1 playbook; move mojovarsvault.

ansible/group_vars/all/main.yml

@@ -5,3 +5,31 @@ gather_facts: True
 source_os: arch
 become: yes
 create_user: josiah
+
+
+# all of this is stolen from mrled, because fuck this is way better than what i was doing.
+# Wireguard docs
+# TODO: lookup plugin to generate the pubkey from the privkey
+# TODO: set all these as hostvars, use hostvars['HOSTNAME'].wireguard_privkey etc
+#       (should be ok even for e.g. glitch, which doesn't get provisioned from Ansible)
+# To generate the keys:
+# - wg genkey | tee privatekey | wg pubkey > publickey
+# - save the privkey in the vault and the pubkey here
+# - Delete the privatekey and publickey files
+wireguard_vpn_network: 10.200.219.0/24
+wireguard_server_privkey: "{{ vault_wireguard_server_privkey }}"
+wireguard_server_pubkey: e49UyNg/kqPETyT9K6nqIYjtTwlR8hY8Brm/P66xnmo=
+wireguard_server_offset: 1
+wireguard_clients:
+  - name: matrix
+    offset: 10
+    privkey: "{{ vault_wireguard_client_privkey_matrix }}"
+    pubkey: lNoFqmeHfSDb/VB0mutpFzb4cZELOjSVOYQCLEfQIRU=
+  - name: pvl
+    offset: 11
+    privkey: "{{ vault_wireguard_client_privkey_pvl }}"
+    pubkey: l/j+UXtrxTqqTTjxjgheQ3B2QppZWs07na4GypZw9GM=
+  - name: ling8
+    offset: 12
+    privkey: "{{ vault_wireguard_client_privkey_ling8 }}"
+    pubkey: YqGQE6yUz6rjBFRWgZyj5mPEaGavxrmO/cclO5o+VBQ=

ansible/group_vars/all/vault.yml

@@ -0,0 +1,22 @@
+$ANSIBLE_VAULT;1.1;AES256
+37626464343231323066306337616434313033366530356236336163353031396135333731306538
+3337343633343338383034636236393230396439346565390a343838643861363239326339613633
+33643363666233323631356661633164333538326566623736396138363063393366343261343932
+3165316631643363630a303830393962303732383439623938303364313937633338383333323564
+35646335313963373864646334336364386633326431393361393265306233343265303434613266
+33656636386432396431393034343738643366613163306530363562636564313863373138633738
+61376663303835333137653262393064396366316163373034646135633131336264343533313936
+64346163323930363266383863666139336337646232383135383635633064663334376532663439
+30306565643938323730373064353038306536646431623332623832326461663836656231346161
+34373563333363323364393135343234323334313462356234383563333566646339633935323037
+36663761366566633965336234323364376633343732396636363934613934666533343435616236
+31623934383462376637323637333039633536633336373662623430663337656461613437626330
+61626665643532393139383039393961316435626662313630343139386636343165303063616363
+30353261386639613563313233643538333134363235336263343634643833643538623065653264
+65396136373937663864326434656438323830393063313332623733383433333033613936393039
+64656537636161373033653231663631363661323361636637663234393634623738646263323035
+32323639653137643136313432396161346633343334616234393161366161323761626633636238
+39623161396235633138653736666164656465663733616238623136633934656162313936386666
+62396265323938633530383161643634303236346562336133663366333330623930313133653164
+64663638386261653763393338396637396539613366643637343361343838616561633033323037
+38373437613561303763383464626365333233303962363139373434306334393630