zerotier: Allow the controller to accept external Ips

Allow the controller to accept external zerotier Ips into the network through declarative settings. Closes: #3787
2025-06-05 17:50:59 +02:00
parent cd4e39151d
commit 7b0ffe7e5c
1 changed files with 17 additions and 1 deletions
--- a/clanServices/zerotier/default.nix
+++ b/clanServices/zerotier/default.nix
@@ -84,10 +84,26 @@
  };

  roles.controller = {
+    interface =
+      { lib, ... }:
+      {
+        options.allowedIps = lib.mkOption {
+          type = lib.types.listOf lib.types.str;
+          description = ''
+            Extra machines by their zerotier ip that the zerotier controller
+            should accept. These could be external machines.
+          '';
+          example = ''
+            [ "fd5d:bbe3:cbc5:fe6b:f699:935d:bbe3:cbc5" ]
+          '';
+        };
+      };
+
    perInstance =
      {
        instanceName,
        roles,
+        settings,
        ...
      }:
      {
@@ -133,7 +149,7 @@
                    else
                      ips
                  ) [ ] machines;
-                  allHostIPs = networkIps;
+                  allHostIPs = settings.allowedIps ++ networkIps;
                in
                {
                  wantedBy = [ "multi-user.target" ];