feat: update configs

nixos/proxmox/zerotier.ts

@@ -0,0 +1,112 @@
+const BASE_URL = "http://localhost:9993";
+const token = await Deno.readTextFile("/var/lib/zerotier-one/authtoken.secret");
+async function main() {
+  const nodeId = (await get("/status")).address;
+  // check if networks exist
+  const networks = await getNetworks();
+  let networkId = "";
+  if (networks.length > 0) {
+    networkId = networks[0];
+  } else {
+    const network = await createNetwork(nodeId);
+    networkId = network.nwid;
+  }
+
+  console.log(
+    `Node should join the network ${networkId} Once joined, fill in the node address below`,
+  );
+  const nodeAddress = prompt("Node address")?.trim();
+  if (!nodeAddress) {
+    console.log("Node address is required");
+    return;
+  }
+
+  await authorizeNode(networkId, nodeAddress);
+  console.log("Node authorized");
+}
+
+async function getNetworks() {
+  const data = await get("/controller/network") as string[];
+  return data;
+}
+
+async function createNetwork(nodeId: string) {
+  const data = await post(`/controller/network/${nodeId}______`, {
+    name: "k3sNetwork",
+    "ipAssignmentPools": [{
+      "ipRangeStart": "10.222.0.0",
+      "ipRangeEnd": "10.222.0.254",
+    }],
+    "routes": [{ "target": "10.222.0.0/23", "via": null }],
+    "rules": [
+      {
+        "etherType": 2048,
+        "not": true,
+        "or": false,
+        "type": "MATCH_ETHERTYPE",
+      },
+      {
+        "etherType": 2054,
+        "not": true,
+        "or": false,
+        "type": "MATCH_ETHERTYPE",
+      },
+      {
+        "etherType": 34525,
+        "not": true,
+        "or": false,
+        "type": "MATCH_ETHERTYPE",
+      },
+      { "type": "ACTION_DROP" },
+      { "type": "ACTION_ACCEPT" },
+    ],
+    "v4AssignMode": "zt",
+    "private": true,
+  }) as {
+    name: string;
+    nwid: string;
+    id: string;
+  };
+  // configure network routes
+  return data;
+}
+
+async function _getNetwork(id: string) {
+  const data = await get(`/controller/network/${id}`);
+  return data;
+}
+
+async function authorizeNode(networkId: string, nodeId: string) {
+  const data = await post(`/controller/network/${networkId}/member/${nodeId}`, {
+    authorized: true,
+  });
+  return data;
+}
+
+async function get(url: string) {
+  console.log(`getting ${url}`);
+  const res = await fetch(`${BASE_URL}${url}`, {
+    headers: {
+      "X-ZT1-AUTH": token,
+    },
+  });
+  const json = await res.json();
+  console.log(`Response: ${JSON.stringify(json)}`);
+  return json;
+}
+
+async function post(url: string, body?: unknown) {
+  console.log(`post: ${url}, body: ${JSON.stringify(body)}`);
+  const res = await fetch(`${BASE_URL}${url}`, {
+    method: "POST",
+    body: JSON.stringify(body),
+    headers: {
+      "X-ZT1-AUTH": token,
+    },
+  });
+  const json = res.json();
+  console.log(`Response: ${JSON.stringify(json)}`);
+  return json;
+}
+
+await main();