From 6013e18a1bc0d4adbde9a0e06712001d141a0c8b Mon Sep 17 00:00:00 2001
From: Martin GRUDLER <devel@grudler.eu>
Date: Thu, 2 May 2024 16:20:27 +0200
Subject: [PATCH] Fixes the wireguard_ui service to be able to display devices
 in the connected peers page

---
 conf/wireguard_ui.service | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/conf/wireguard_ui.service b/conf/wireguard_ui.service
index 4338659..fa3484e 100644
--- a/conf/wireguard_ui.service
+++ b/conf/wireguard_ui.service
@@ -42,6 +42,10 @@ CapabilityBoundingSet=~CAP_MAC_ADMIN CAP_MAC_OVERRIDE
 #CapabilityBoundingSet=~CAP_NET_ADMIN CAP_NET_BROADCAST CAP_NET_RAW
 CapabilityBoundingSet=~CAP_SYS_ADMIN CAP_SYS_PTRACE CAP_SYSLOG 
 
+# Allowing this capabilities to display devices in "Connected peers" page
+CapabilityBoundingSet=CAP_DAC_READ_SEARCH CAP_NET_ADMIN CAP_NET_RAW
+AmbientCapabilities=CAP_DAC_READ_SEARCH CAP_NET_ADMIN CAP_NET_RAW
+
 # Exception to ProtectSystem
 ReadWritePaths=/etc/wireguard