Feature Request: Require admin access to import/edit WireGuard configs (allow connect without admin)

[yanquan06]

Hi,

Quick feature request for enterprise / zero-trust setups:

Proposal

Importing or editing WireGuard tunnel configs should require administrative privileges (UAC/elevation).

Connecting / disconnecting existing tunnels should remain available to non-admin users.

Why

Enforces least-privilege and prevents end users from adding or changing tunnels that IT should control.

Current behavior

Right now no admin privileges are required for anything - which is fine for connect/disconnect, but import/edit should be restricted.

UX idea (optional)

Grey out import/edit for non-admins or show a prompt to elevate; show a small lock icon/tooltip for admin-controlled configs.

Thanks for considering!

[kchudy]

@yanquan06 Thanks for the suggestion. We'll consider this feature while doing device posture functionalities in the following milestones.