From 026d7124cfa423625db6ee020913d719b828780e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Robert=20Edstr=C3=B6m?= <github@legogris.se>
Date: Thu, 16 Jul 2020 21:43:52 +0900
Subject: [PATCH] Add wireguard_preshared_key variable

---
 CHANGELOG.md         | 4 ++++
 README.md            | 3 +++
 templates/wg.conf.j2 | 3 +++
 3 files changed, 10 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index a1a4441..60a3497 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,6 +1,10 @@
 Changelog
 ---------
 
+**6.4.0**
+
+- Support specifying optional `wireguard_preshared_key` (contribution by @legogris)
+
 **6.3.1**
 
 - Support Openstack Debian images (contribution by @pallinger)
diff --git a/README.md b/README.md
index 2c09cfb..77eb41a 100644
--- a/README.md
+++ b/README.md
@@ -38,6 +38,9 @@ wireguard_port: "51820"
 
 # The default interface name that wireguard should use if not specified otherwise.
 wireguard_interface: "wg0"
+
+# Preshared key to use for all peers (optional)
+wireguard_preshared_key: "abc123"
 ```
 
 The following variable is mandatory and needs to be configured for every host in `host_vars/`:
diff --git a/templates/wg.conf.j2 b/templates/wg.conf.j2
index 0ab144b..f834863 100644
--- a/templates/wg.conf.j2
+++ b/templates/wg.conf.j2
@@ -50,6 +50,9 @@ SaveConfig = true
     {% else %}
     AllowedIPs = {{hostvars[host].wireguard_ip}}/32
     {% endif %}
+    {% if wireguard_preshared_key is defined %}
+    PresharedKey = {{wireguard_preshared_key}}
+    {% endif %}
     {% if hostvars[host].wireguard_persistent_keepalive is defined %}
     PersistentKeepalive = {{hostvars[host].wireguard_persistent_keepalive}}
     {% endif %}