Luci-app-fwknopd:add a couple config options to the interface

Minor tweaks to uci-defaults
refresh translation files
Signed-off-by: Jonathan Bennett <redacted>

diff --git a/applications/luci-app-fwknopd/luasrc/model/cbi/fwknopd.lua b/applications/luci-app-fwknopd/luasrc/model/cbi/fwknopd.lua
index 84a1a23d86d6df7fedda3b9bb559bebc9b048d3c..096724f735e36c8e65d5db9ff1cab4b3c26f6bce 100644 (file)
--- a/applications/luci-app-fwknopd/luasrc/model/cbi/fwknopd.lua
+++ b/applications/luci-app-fwknopd/luasrc/model/cbi/fwknopd.lua
@@ -46,6 +46,8 @@ s = m:section(TypedSection, "config", translate("fwknopd.conf config options"))
 s.anonymous=true
 s.dynamic=true
 s:option(Value, "MAX_SPA_PACKET_AGE", "MAX_SPA_PACKET_AGE", translate("Maximum age in seconds that an SPA packet will be accepted. defaults to 120 seconds"))
+s:option(Value, "PCAP_INTF", "PCAP_INTF", translate("Specify the ethernet interface on which fwknopd will sniff packets."))
+s:option(Value, "ENABLE_IPT_FORWARDING", "ENABLE_IPT_FORWARDING", translate("Allow SPA clients to request access to services through an iptables firewall instead of just to it."))
 s:option(DummyValue, "note2", translate("Enter custom fwknopd.conf variables below:"))
 
 return m

diff --git a/applications/luci-app-fwknopd/po/en/en.po b/applications/luci-app-fwknopd/po/en/fwknopd.po
similarity index 90%
rename from applications/luci-app-fwknopd/po/en/en.po
rename to applications/luci-app-fwknopd/po/en/fwknopd.po
index 1abc6a8f95e283892b702715f5ad41d8bc17e144..d75c99d524efa8489f7e64140b801a819cdaa6d2 100644 (file)
--- a/applications/luci-app-fwknopd/po/en/en.po
+++ b/applications/luci-app-fwknopd/po/en/fwknopd.po
@@ -10,6 +10,13 @@ msgstr ""
 "Content-Transfer-Encoding: 8bit\n"
 "Plural-Forms: nplurals=2; plural=(n != 1);\n"
 
+msgid ""
+"Allow SPA clients to request access to services through an iptables firewall "
+"instead of just to it."
+msgstr ""
+"Allow SPA clients to request access to services through an iptables firewall "
+"instead of just to it."
+
 msgid "Base 64 key"
 msgstr "Base 64 key"
 
@@ -83,6 +90,9 @@ msgstr ""
 msgid "Normal Key"
 msgstr "Normal Key"
 
+msgid "Specify the ethernet interface on which fwknopd will sniff packets."
+msgstr "Specify the ethernet interface on which fwknopd will sniff packets."
+
 msgid "The base64 hmac key"
 msgstr "The base64 hmac key"
 

diff --git a/applications/luci-app-fwknopd/po/templates/fwknopd.pot b/applications/luci-app-fwknopd/po/templates/fwknopd.pot
index ec15504627fedf6bd46222306a39ada14c81e558..4fb616f25eb0f8a0146f307dea14e3141c088b5a 100644 (file)
--- a/applications/luci-app-fwknopd/po/templates/fwknopd.pot
+++ b/applications/luci-app-fwknopd/po/templates/fwknopd.pot
@@ -1,6 +1,11 @@
 msgid ""
 msgstr "Content-Type: text/plain; charset=UTF-8"
 
+msgid ""
+"Allow SPA clients to request access to services through an iptables firewall "
+"instead of just to it."
+msgstr ""
+
 msgid "Base 64 key"
 msgstr ""
 
@@ -57,6 +62,9 @@ msgstr ""
 msgid "Normal Key"
 msgstr ""
 
+msgid "Specify the ethernet interface on which fwknopd will sniff packets."
+msgstr ""
+
 msgid "The base64 hmac key"
 msgstr ""
 

diff --git a/applications/luci-app-fwknopd/root/etc/uci-defaults/luci-fwknopd b/applications/luci-app-fwknopd/root/etc/uci-defaults/luci-fwknopd
index 689bedcd11abf0ce14b64318101a1ff722cbef92..01b85de25fbaf91c818d68261c5ac64044a1a0c3 100644 (file)
--- a/applications/luci-app-fwknopd/root/etc/uci-defaults/luci-fwknopd
+++ b/applications/luci-app-fwknopd/root/etc/uci-defaults/luci-fwknopd
@@ -1,6 +1,7 @@
 #!/bin/sh
 #-- Copyright 2015 Jonathan Bennett <jbennett@incomsystems.biz>
 #-- Licensed to the public under the GNU General Public License v2.
+. /lib/functions/network.sh
 
 uci batch <<EOF
        add ucitrack fwknopd
@@ -8,10 +9,14 @@ uci batch <<EOF
        commit ucitrack
 EOF
 
+uci delete fwknopd.@access[0].KEY
+uci delete fwknopd.@access[0].HMAC_KEY
 uci set fwknopd.@access[0].keytype='Base 64 key'
 uci set fwknopd.@access[0].hkeytype='Base 64 key'
 uci set fwknopd.@access[0].KEY_BASE64=`fwknopd --key-gen | awk '/^KEY/ {print $2;}'`
 uci set fwknopd.@access[0].HMAC_KEY_BASE64=`fwknopd --key-gen | awk '/^HMAC/ {print $2;}'`
+uci set fwknopd.@config[0].ENABLE_IPT_FORWARDING='y'
+
 uci commit fwknopd
 rm -f /tmp/luci-indexcache
 exit 0