From e41ae06700d1b2f9e99b917c783ce9d153fadaf0 Mon Sep 17 00:00:00 2001
From: josiah <me@jowj.net>
Date: Sat, 10 Oct 2020 19:00:28 -0500
Subject: [PATCH] add clarity to readme regarding adding a client for vpn.

---
 ansible/readme.org | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/ansible/readme.org b/ansible/readme.org
index fd2e2cb..c01878b 100644
--- a/ansible/readme.org
+++ b/ansible/readme.org
@@ -1,8 +1,19 @@
 * setup from scratch:
 ~ansible-playbook -i hosts.yml all.yml --ask-vault-pass --ask-become-pass~
 
-* wg
+** preparing open_the_vault
 
+* wg
+  
 ** clients
 you probably want to deploy clients individually most of the time. to do that, provide a tag, like:
 ~ansible-playbook -i hosts.yml client_matrix.yml --ask-vault-pass --ask-become-pass --tags matrix_client~
+
+** adding a client
+   - generate a new public/private keypair
+   - ~umask 077~
+   - ~wg genkey | tee privatekey | wg pubkey > publickey~
+   - add the pubkey to the groupvars/main.yml
+   - add the privkey to the groupvars/vault.yml
+   - add a task referencing the new client
+   - add a template with the groupvars embedded.