---

- name: "private-key einlesen und in Variable übergeben"
  ansible.builtin.command:
    cmd: cat /etc/wireguard/client_private.key
  register: wg_client_privatekey
  changed_when: false

- name: "public-key einlesen und in Variable übergeben"
  ansible.builtin.command:
    cmd: cat /etc/wireguard/client_public.key
  register: wg_client_publickey
  changed_when: false

- name: "Socket ermitteln"
  ansible.builtin.set_fact:
    ffmuc_wireguard_port: "{{ item.value }}"
  loop: "{{ lookup('dict', wireguard_ports) }}"
  when: "ffmuc_segment in item.key"

- name: "link-local des Gateways ermitteln"
  ansible.builtin.set_fact:
    ffmuc_wireguard_linklocal: "{{ item.value }}"
  loop: "{{ lookup('dict', gw_linklocal) }}"
  when: "ffmuc_gateway in item.key"

- name: "publickey des Gateways ermitteln"
  ansible.builtin.set_fact:
    ffmuc_wireguard_gwpubkey: "{{ item.value }}"
  loop: "{{ lookup('dict', gw_publickey) }}"
  when: "ffmuc_gateway in item.key"

- name: "Konfigurationsdatei des wireguard-Tunnels erzeugen"
  ansible.builtin.template:
    src: templates/uplink.j2
    dest: /etc/wireguard/wg-uplink.conf
    owner: root
    group: root
    mode: '0644'

...