Configuration
wg-Qrotator key rotators are configured via a YAML configuration file. This file is divided into three configurations categories:
interface: <wireguard_network_interface>
port: <rotator_port_number>
secret_auth_key: <rotator_private_authentication_key_file>
debug: [true|false]
kms:
uri: <kms_location>
interface: <interface_identifier>
sae: <SAE_ID>
certificate: <SAE_certificate_file>
secret_key: <SAE_private_key_file>
root_certificate: <root_CA_certificate_file>
peers:
- <peer_wireguard_public_key>:
public_auth_key: <peer_public_authentication_key_file>
ip: <peer_rotator_ip>
port: <peer_rotator_port_number>
sae: <peer_SAE_ID>
mode: <local_role>
extra_handshakes:
- <KEM_id>:
secret_key: <secret_key_file>
public_key: <peer_public_key_file>
- ...