- Separate `lmn_vpn` from `lmn_teacherlaptop`.
- Implement a check for the availability of the wireguard-server during the wg-config rollout.
- Enhance variable support with a standardized naming schema:
- VPN selection via `vpn` variable (`none`, `wg`).
- Wireguard configuration (endpoint, allowed IPs, ip_cdr, dns, searchpath).
- Run wg-config role in separate play with serial 1 to avoid conflicts, when the role attempts
to determine the next free Wireguard IP on the server when role try to Add a check to verify if the radius certificate is revoked.
- Ensure required packages and services are only installed and configured if the `vpn` variable is set.
- Provide documentation for `lmn_vpn` module.
During installation and automatic updates applied by the emmiter
permissions to access the wg server are not available.
Switch the task on with the tag: "--tags all,wgconfig".
- Wifi-devices will be managed by NetworkManager
- (USB-)Dockingstation with same MAC as internal device
will be assigned to virbr1
- users with role-teacher have privilege
- to create new NetworkManager connections
- install additional software
- change luks-key
- package plasma-discover will not be removed (for teacherlaptops)
- http-proxy-Settings will be configured by auto-detect
- providing sudo-script to mount default-school from server after
wireguard-connection is established
