From f696e5fa7f9542cea0c4a3a7dc2993e0fa640341 Mon Sep 17 00:00:00 2001
From: Jake Howard <git@theorangeone.net>
Date: Sat, 25 May 2019 00:21:47 +0100
Subject: [PATCH] Install opensnitch

---
 files/opensnitch.json | 5 +++++
 tasks/autostart.yml   | 1 +
 tasks/packages.yml    | 1 +
 tasks/security.yml    | 9 ++++++++-
 4 files changed, 15 insertions(+), 1 deletion(-)
 create mode 100644 files/opensnitch.json

diff --git a/files/opensnitch.json b/files/opensnitch.json
new file mode 100644
index 0000000..13e3fff
--- /dev/null
+++ b/files/opensnitch.json
@@ -0,0 +1,5 @@
+{
+	"default_timeout": 60,
+	"default_action": "allow",
+	"default_duration": "until restart"
+}
diff --git a/tasks/autostart.yml b/tasks/autostart.yml
index 72d5c7e..1ac7e94 100644
--- a/tasks/autostart.yml
+++ b/tasks/autostart.yml
@@ -35,3 +35,4 @@
   with_items:
     - 'flameshot'
     - 'libinput-gestures'
+    - 'opensnitch_ui'
diff --git a/tasks/packages.yml b/tasks/packages.yml
index ae75087..ccd9d00 100644
--- a/tasks/packages.yml
+++ b/tasks/packages.yml
@@ -3,6 +3,7 @@
       - '1EDDE2CDFC025D17F6DA9EC0ADAE6AD28A8F901A'  # Sublime Text
       - 'EF6E286DDA85EA2A4BA7DE684E2C6E8793298290'  # Tor Browser
       - '9D5F1C051D146843CDA4858BDE64825E7CBC0D51'  # ArchStrike
+      - '748231EBCBD808A14F5E85D28C004C2F93481F6B'  # Opensnitch
 
 - name: "Get installed pacman keys"
   shell: "pacman-key --list-keys"
diff --git a/tasks/security.yml b/tasks/security.yml
index 7b081ab..ee335db 100644
--- a/tasks/security.yml
+++ b/tasks/security.yml
@@ -9,9 +9,16 @@
     - 'qomui'
     - 'wireguard-arch'
     - 'wireguard-tools'
+    - 'opensnitch-git'
 
 - copy:
     src: ./files/assh.yml
-    dest: "{{ home}}/.ssh/assh.yml"
+    dest: "{{ home }}/.ssh/assh.yml"
+    mode: 0644
+    owner: "{{ user }}"
+
+- copy:
+    src: ./files/opensnitch.json
+    dest: "{{ home }}/.opensnitch/ui-config.json"
     mode: 0644
     owner: "{{ user }}"