This assumes that you're using standard auth strategies, you have set a cookie secret, and you're using a separate cookie for store and admin APIs, e.g.
authOptions: {
tokenMethod: ['cookie'],
cookieOptions: {
name: { shop: 'vendshop', admin: 'vendadmin' },
secret: 'somethingthatIwillnevertellyouandyouwillneverguessthisisntitipromisenoreally',
| #!/bin/bash | |
| # Function to extract and decode certificate | |
| extract_cert() { | |
| echo "$1" | base64 -d 2>/dev/null | openssl x509 -noout -enddate 2>/dev/null | cut -d= -f2 | |
| } | |
| # Function to calculate days until expiry | |
| days_until_expiry() { | |
| local expiry_date="$1" |
| #!/bin/bash | |
| TMPFILE=$(mktemp) | |
| function cleanup { | |
| echo "Deleting $TMPFILE..." | |
| rm -rv "$TMPFILE" | |
| } | |
| trap cleanup EXIT | |
| function usage { |
Special thanks to Kanadaj from the #self-hosted channel on the sentry discord who helped me with a lot of the servers I hadn't used before
This is customized in a number of ways, so you'll probably want/need to change things, but it's working for me and I just set it up from scratch again, so I thought I'd share.
This seems to have worked for me, but might not work for you!
Before you try this make sure you've updated everything so that the only things referencing your old CIDR range are the node objects. I did this using calico by creating new ippools. I don't know what issues you may hit -- I avoided most of them by BGP peering with my router and doing all interesting stuff there.
| import emailaddr from 'email-addresses'; | |
| import disposable_domains from 'disposable-email-domains'; | |
| import dns from 'dns'; | |
| import { promisify } from 'util'; | |
| let resolveMx = promisify(dns.resolveMx); | |
| let resolve4 = promisify(dns.resolve4); | |
| let resolve6 = promisify(dns.resolve6); | |
| function reverseLookup(ip: string) { | |
| return new Promise<string[]>((resolve, reject) => { |
| <template> | |
| <v-card> | |
| <v-card-title> | |
| <slot name="title"> | |
| <span class="headline" v-text="dialogTitle"></span> | |
| </slot> | |
| </v-card-title> | |
| <v-card-subtitle> | |
| <slot name="subtitle"> |
| #!/bin/bash | |
| CONTEXT=$1 | |
| ALLCERTS=$(kubectl --context $CONTEXT get secret --field-selector type=kubernetes.io/tls -A | tail +2 | awk '{print $1 ":" $2}') | |
| TODAY=$(date +%s) | |
| COL1=30 | |
| COL2=10 | |
| COL3=15 |
| import { sendEmailTemplate, EmailDomains as ValidDomains } from '@/lib/email/mailer'; | |
| import { remoteMethod } from '@/lib/nats/types'; | |
| // NATS-capable email service | |
| class EmailService { | |
| @remoteMethod({ | |
| timeout: 10000, | |
| }) | |
| async sendEmail(domain: string, tplName: string, data: any, options: any) { |
This is no longer needed; OPNSense now has full CARP support in the wireguard plugin which works much better than these hacks ever did =] I'll leave it here as an example of a thing you can do and 'cause why delete it?
checkWireguard as /usr/local/opnsense/scripts/OPNsense/Wireguard/checkWireguardactions_wireguardCarp.conf as /usr/local/opnsense/service/conf/actions.d/actions_wireguardCarp.confservice configd restart