Change add command to use public key as optional param

README.md

@@ -83,6 +83,24 @@ $ docker-compose run wg add
 
 This will create new client configuration and adds peer configuration to server config file. Restart service.
 
+To add a client with existing public key run
+
+```
+$ docker-compose run wg add <given public key>
+```
+
+and replace `<given public key>` in command with public key created using `wg genkey`.
+The created client config will contain a placeholder for clients secret key in interface config.
+
+```
+...
+[Interface]
+Address = 192.168.42.123/24
+ListenPort = 51820
+PrivateKey = <place secret key here>
+...
+```
+
 ### Remove client
 
 Stop the service and run

scripts/add-client.sh

@@ -15,8 +15,13 @@ if [ -z $CLIENT_ID ]; then
   exit 1
 fi
 
-CLIENT_SEC_KEY=$(wg genkey)
+if [ -z $1 ]; then
-CLIENT_PUB_KEY=$(echo $CLIENT_SEC_KEY | wg pubkey)
+  CLIENT_SEC_KEY=$(wg genkey)
+  CLIENT_PUB_KEY=$(echo $CLIENT_SEC_KEY | wg pubkey)
+else
+  CLIENT_SEC_KEY="<place secret key here>"
+  CLIENT_PUB_KEY=$1
+fi
 
 # Add peer config
 cat << EOF >> $DEVICE.conf
@@ -53,4 +58,8 @@ AllowedIPs = 0.0.0.0/0, ::/0
 Endpoint = $SERVER_HOST:$SERVER_PORT
 EOF
 
-echo "Added Client # $CLIENT_ID"
+if [ -z $1 ]; then
+  echo "Added Client # $CLIENT_ID"
+else
+  echo "Added Client # $CLIENT_ID with existing public key"
+fi

scripts/entrypoint.sh

@@ -13,6 +13,11 @@ case "$1" in
     exit 0
     ;;
   'add-client' | 'add')
+    if [ ! -z $2 ]; then
+      cd /etc/wireguard
+      /scripts/add-client.sh $2
+      exit 0
+    fi
     cd /etc/wireguard
     /scripts/add-client.sh
     exit 0