Hello, I like your idea and project, thanks for the good work.

A suggestion towards the CLIENTS UI, i think it would be more useful to have the CLIENTS TAB as a Tabular list rather than each CLIENT being shown in Card form with the QR codealongside.

This is because the CLIENT and SERVER Tabs would normally be administered by an administrator not by the actual Client user. This way realestate screenspace can be better utilized , also not being the actual user there is no direct need for the QR code upfront on screen, a link should suffice (or a mouseover event).

just a thought, sadly i'm not a programmer to help out.

as said before good work ;)

Best Regards, Aniston

in browser console:

Error: "ApiService: TypeError: e is undefined"
    get api.service.js:14
App.vue:69
server report oauth2 is disabled, fake exchange auth.js:50:18
Updating authStatus from  to disabled App.vue:91
Updating authStatus from disabled to success App.vue:91

Hey I have a wireguard installer with over 2500 clones and 300 stars and I think this would be an amazing side thing to add to that so instead of a CLI only users would be able to use a GUI too.

What do you think about it??

Hi,

Great project - really like the flexibility of the UI which I haven't seen in any other gui's for wireguard yet. Super easy and the e-mail function works great!

I did discover something that may be due to how I setup my docker container, where the wg0.conf isn't updated but instead a wg0 file is being generated alongside.

In other words it seems like I need to the following to get new clients up and running:

mv wg0 wg0.conf
wg-quick down wg0; wg-quick up wg0

My questions is really if this is expected or if I should have done something else with the setup?

Running this docker compose file:

services:
  wg-gen-web:
    image: vx3r/wg-gen-web:latest
    container_name: wg-gen-web
    restart: unless-stopped
    ports:
      - "8080:8080"
    environment:
      - WG_CONF_DIR=/data
      - WG_INTERFACE_NAME=wg0.conf
      - SMTP_HOST=smtp.gmail.com
      - SMTP_PORT=587
      - SMTP_USERNAME=xx
      - SMTP_PASSWORD=xx
      - SMTP_FROM=xx
      - OAUTH2_PROVIDER_NAME=fake
      - WG_STATS_API=http://172.17.0.1:8182
    volumes:
      - /etc/wireguard:/data
  wg-api:
    image: james/wg-api:latest
    container_name: wg-json-api
    restart: unless-stopped
    ports:
      - "8182:8182"
    cap_add:
      - NET_ADMIN
    network_mode: "host"
    command: wg-api --device=wg0 --listen=localhost:8182

wg-gen-web works and I can request the wg-api succesfully:

curl http://172.17.0.1:8182 -H "Content-Type: application/json" -d '{"jsonrpc": "2.0", "method": "GetDeviceInfo", "params": {}}' {"jsonrpc":"2.0","result":{"device":{"name":"wg0","type":"Linux kernel","public_key":"thekeyhasbeenredacted=","listen_port":51820,"num_peers":1}},"id":null}

on the wg-gen-web status page this message is shown:

Error: 500 - Internal Server Error: Post "http://172.17.0.1:8182": dial tcp 172.17.0.1:8182: connect: connection refused

Since wg-api is running in Host mode and wg-gen-web is not, could this be the issue, or is there another solution?

pinging @h44z :)

Please add TLS support for SMTP, as most services mandate TLS connection.

d.TLSConfig = &tls.Config{InsecureSkipVerify: true} (or use env for setup)

Thanks,

I must be missing a step. I used to have PiVPN (Wireguard) installed and created configs with that, everything worked. Now I uninstalled PiVPN, uninstalled wireguard (which also removes wireguard-tools), deleted /etc/wireguard.

After a reboot,, I do sudo apt install wireguard which also installs tools automatically. Then run my docker-compose up -d:

  vpn-server-ui:
    image: vx3r/wg-gen-web:latest
    container_name: vpn-server-ui
    restart: always
    networks:
      - management
    environment:
      WG_CONF_DIR: /data
      WG_INTERFACE_NAME: wg0.conf
      SMTP_HOST: $SMTP
      SMTP_PORT: 587
      SMTP_USERNAME: $SMTPUSER
      SMTP_PASSWORD: $SMTPPASS
      SMTP_FROM: $EMAIL
    volumes:
      - /etc/wireguard:/data
    ports:
      - "5100:8080"

I can access the webui on port 5100 just fine.

Server configuration: Public Key: .... Listen port: 51822 Server interface addresses: 10.6.6.1/24

Client Configuration: Public endpoint: mydomain.cloud:51822 DNS server: 1.1.1.1 Default allowed: 0.0.0/0, ::/0 No values for MTU and keepalive

I create a client:

email address: my address Addresses: 10.6.6.2/32 Allowed IP addresses: 0.0.0/0, ::/0 No values for MTU and keepalive

After saving, I do: sudo systemctl start [email protected] Reload doesn't work because wg hasn't been started before.

Then I scan the QR code with my Android phone and try to connect: nothing. 0 bytes received, some bytes send.

What am I missing?

EDIT: I can access my server LAN IP! Just no internet. Perhaps a DNS issue? But I simply used 1.1.1.1 for testing.. would expect that to work.

While trying to display stats, I get the following error:

Error: 500 - Internal Server Error: Post "http://172.17.0.1:8182": dial tcp 172.17.0.1:8182: i/o timeout (Client.Timeout exceeded while awaiting headers)

If I try and do a curl from the host, it reruns correctly:

ben@vpnserver:/opt/wg-ui$ curl http://172.17.0.1:8182 -H "Content-Type: application/json" -d '{"jsonrpc": "2.0", "method": "GetDeviceInfo", "params": {}}'
{"jsonrpc":"2.0","result":{"device":{"name":"wg0","type":"Linux kernel","public_key":"zzzzzzzzzzzzzzzzzzzzzzz=","listen_port":12345,"num_peers":4}},"id":null}

Here is my docker-compose.json:

version: '3.6'
services:
  wg-ui:
    image: vx3r/wg-gen-web:latest
    container_name: wg-ui
    restart: unless-stopped
    ports:
      - "80:8080"
    environment:
      - WG_CONF_DIR=/data
      - WG_INTERFACE_NAME=wg0.conf
      - OAUTH2_PROVIDER_NAME=fake
      - WG_STATS_API=http://172.17.0.1:8182
    volumes:
      - /etc/wireguard:/data
  wg-json-api:
    image: james/wg-api:latest
    container_name: wg-json-api
    restart: unless-stopped
    cap_add:
      - NET_ADMIN
    network_mode: "host"
    command: wg-api --device wg0 --listen 172.17.0.1:8182

A integration for https://github.com/jamescun/wg-api:

• display WireGuard interface details (from the GetDeviceInfo request)
• display WireGuard client status (from the ListPeers request)

This is how it looks like:

Hi, I installed this service successfully and configured systemd to monitor /etc/wireguard to reload wireguard configuration as per your instructions in the Readme. But it seems that on every simple GET of the web ui, without changing any setting wg0.conf gets updated and therefore wireguard restarted. Is this the expected behavior? Isn't this a problem because of service interruption? Thanks for this nice gui!

Latest docker release - Version: f90124a I can not create a user in UI, Submit button is not pressed

downgraded to Version: 867d79e - fix problem several servers are affected

Adds support for mesh peers by adding fields to the clients. Support for "VPN" clients was not added -- there were no preUp, preDown fields added.

Added simplified use of a secure connection for public networks in docker compose configuration

VIRTUAL_HOST, LETSENCRYPT_HOST = enter domain name DEFAULT_EMAIL = your email address to receive notifications from Let's Encrypt

1. It is not possible to add a new user / disconnect a user / remove a user without restarting the server. When adding / deactivating / deleting, only the web interface works, but the apology does not take effect. Those to the disconnected / removed peer can still be connected, but to the newly added peer, on the contrary, cannot be connected. It only helps to restart the server via guard with the command systemctl restart wg-quick@wg0

2. User statistics are not synchronized with the user list apology.

How can this problem be solved?

Hi !

This is a very good project！This is a very good project. I can't send email right now.

1. logs：

• wg-gen-web | 2022-04-04T14:56:41.147946940Z time="2022-04-04T14:56:41Z" level=error msg="failed to send email to client" err="534 5.7.14 <https://accounts.google.com/signin/continue?sarp=1&scc=1&plt=AKgnsbt\n5.7.14 23hmA_oclTIUbFePKukcRnydT7YNqsd6qSRIb7jw5Q82HhO5obeOgvyl9KxB4UdB-yN7_\n5.7.14 M1lrtLL1IMWdLm7dA6dhgSeYPsfO0tdGUlU2NmY33fMoz-zGVTwjWSZmuuFLqOoM>\n5.7.14 Please log in via your web browser and then try again.\n5.7.14 Learn more at\n5.7.14 https://support.google.com/mail/answer/78754 g5-20020a056a0023c500b004fae15ab86dsm12239530pfc.52 - gsmtp"

• wg-gen-web | 2022-04-04T14:56:41.148369402Z [GIN] 2022/04/04 - 14:56:41 | 500 | 1.311139946s | 103.172.53.140 | GET "/api/v1.0/client/eac1702e-4f37-4896-9fda-f186c416d408/email"

• wg-gen-web | 2022-04-04T14:58:43.603979494Z time="2022-04-04T14:58:43Z" level=error msg="failed to send email to client" err="534 5.7.14 <https://accounts.google.com/signin/continue?sarp=1&scc=1&plt=AKgnsbu\n5.7.14 zED9hKRRquRgPGWeSfWSp0cOJdcagMexvGYQbNSZcYWmjUBJajwdXkQJQxO2apfQmYA53\n5.7.14 1DSVPV40au8uaVeMem4mvi1RNLkfO1OnyhMYjeF-VOrvtbUUz86ooLAr4Ks1NGRA>\n5.7.14 Please log in via your web browser and then try again.\n5.7.14 Learn more at\n5.7.14 https://support.google.com/mail/answer/78754 c4-20020a17090a4d0400b001ca5cf3271csm7870237pjg.14 - gsmtp"

• wg-gen-web | 2022-04-04T14:58:43.604564499Z [GIN] 2022/04/04 - 14:58:43 | 500 | 1.480325319s | 103.172.53.140 | GET "/api/v1.0/client/eac1702e-4f37-4896-9fda-f186c416d408/email"

2. cocker-compose.yml

version: '3.6' services: wg-gen-web: image: vx3r/wg-gen-web:latest container_name: wg-gen-web restart: always expose: - "8080/tcp" ports: - "127.0.0.1:8080:8080" environment: - WG_CONF_DIR=/data - WG_INTERFACE_NAME=wg0.conf - WG_STATS_API=http://192.168.201.1:8182 - SMTP_HOST=smtp.gmail.com - SMTP_PORT=587 - SMTP_USERNAME=***@gmail.com - SMTP_PASSWORD=*** - SMTP_FROM=your wireguard info ***@gmail.com - OAUTH2_PROVIDER_NAME=github - OAUTH2_PROVIDER=https://github.com - OAUTH2_CLIENT_ID=*** - OAUTH2_CLIENT_SECRET=*** - OAUTH2_REDIRECT_URL=*** volumes: - /etc/wireguard:/data wg-json-api: image: james/wg-api:latest container_name: wg-json-api restart: always cap_add: - NET_ADMIN network_mode: "host" command: wg-api --device wg0 --listen 192.168.201.1:8182 networks: default: name: docker_wg_net1 driver: bridge ipam: driver: default config: - subnet: "192.168.201.0/24"

3. I did proxying and 443 handling using nginx.