Skip to content
This repository has been archived by the owner on Dec 1, 2024. It is now read-only.
/ jc2headscale Public archive

CLI tool for managing user groups in a Headscale policy file.

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

YouSysAdmin/jc2headscale

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

13 Commits
.github/workflows
.github/workflows
 
 
cmd/jc2headscale
cmd/jc2headscale
 
 
pkg
pkg
 
 
scripts
scripts
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

DEPRECATED

Please following to the repository https://github.com/YouSysAdmin/headscale-pf

jc2headscale

CLI tool for managing user groups in a Headscale policy file.

This tool generates a policy file based on a policy template,
template is your policy file to which the specified groups with users from Jump Cloud will be added.

Stand with Ukraine

Install

go install github.com/yousysadmin/jc2headscale/cmd/jc2headscale@latest
# By default install to $HOME/.bin dir
curl -L https://raw.githubusercontent.com/yousysadmin/jc2headscale/master/scripts/install.sh | bash

Usage

Collects information about Jumpcloud groups, group members
and prepare a group list for Headscale policy.

Usage:
  jc2headscale [command]

Available Commands:
  prepare     Prepare policy

Flags:
      --input-policy string    Headscale/Tailscale policy file template (default "./policy.hjson")
      --jc-api-key string      The Jumpcloud API key (can use env var JC_API_KEY) (default "")
      --output-policy string   Headscale prepared policy file (default "./current.json")
      --strip-email-domain     Strip e-mail domain (default true)

The --strip-email-domain flag must be set eq to oid.strip_email_domain in your Headscale server config, this flag determines whether it is necessary to trim the domain from the user's email or not, by default is true.

Example

// Fill policy user groups from Jumpcloud
JC_API_KEY=0000000 jc2headscale prepare --input-policy=policy.hjson --output-policy=out.json

// Setup policy to Headscale
headscale policy set -f out.json

You can specify the Jumpcloud group in your Headscale policy file, group name in the Jumcploud should be eq to a policy group name without the 'group:' prefix.

In the below example,
group not-jc isn't present in the Jumpcloud, and as a result, this group stays as is,
the network-all group present in the Jumpcloud and will be supplemented by users from Jumpcloud if users exist for this group and the admin user stays in the group,
the network-prod group is present in the Jumpcloud and will be filled by users from Jumpcloud if users exist for this group.

{
  "groups": {
    "group:not-jc": ["admin"],
    "group:network-all": ["admin"],
    "group:network-prod": []
  },
  ....
}

About

CLI tool for managing user groups in a Headscale policy file.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 3

v0.0.3 Latest
Oct 4, 2024
+ 2 releases

Languages