Improve documentation and its structure

* Add short description for each component in the main README * Move more Info in separated files. * Add hint that csaf_provider offers a service interface. * Explain why windows only has uploader and checker. Co-authored-by: Bernhard Reiter <bernhard@intevation.de>
2025-12-22 05:40:11 +01:00 · 2022-05-13 11:04:38 +02:00 · 2022-05-13 11:04:38 +02:00 · 6f02e6f5a5
commit 6f02e6f5a5
parent cd9f29ef2f
7 changed files with 134 additions and 58 deletions
--- a/README.md
+++ b/README.md
@ -1,12 +1,36 @@
 # csaf_distribution

-A proof of concept implementation of
-an CSAF 2.0 trusted provider, checker and aggregator.
-Includes an uploader command line tool for the trusted provider.
+A proof of concept implementation of a [CSAF 2.0](https://docs.oasis-open.org/csaf/csaf/v2.0/csd02/csaf-v2.0-csd02.html) trusted provider, checker and aggregator. Includes an uploader command line tool for the trusted provider.

 Status: Alpha (all planned functionality, but known defects, see issues.)

+
+## [csaf_provider](docs/csaf_provider.md)
+is an implementation of the role CSAF Trusted Provider, also offering
+a simple HTTPS based management service.
+
+## [csaf_uploader](docs/csaf_uploader.md)
+is a command line tool that uploads CSAF documents to the `csaf_provider`.
+
+## [csaf_aggregator](docs/csaf_aggregator.md)
+is an implementation of the role CSAF Aggregator.
+
+## [csaf_checker](docs/csaf_checker.md)
+is a tool for testing a CSAF Trusted Provider according to [Section 7 of the CSAF standard](https://docs.oasis-open.org/csaf/csaf/v2.0/csaf-v2.0.html#7-distributing-csaf-documents).
+
 ## Setup
+Note that the server side is only tested
+and the binaries available for GNU/Linux-Systems, e.g. Ubuntu LTS.
+It is likely to run on similar systems when build from sources.
+
+The windows binaries only include `csaf_uploader` and `csaf_checker`.
+
+### Prebuild binaries
+
+Download the binaries (from the most recent release assets on Github).
+
+
+### Build from sources

 - A recent version of **Go** (1.17+) should be installed. [Go installation](https://go.dev/doc/install)

@ -23,65 +47,14 @@ Status: Alpha (all planned functionality, but known defects, see issues.)

 Binaries will be placed in directories named like `bin-linux-amd64/` and `bin-windows-amd64/`.

+
+### Setup (Trusted Provider)
+
 - [Install](https://nginx.org/en/docs/install.html)  **nginx**
 - To install server certificate on nginx see [docs/install-server-certificate.md](docs/install-server-certificate.md)
 - To configure nginx see [docs/provider-setup.md](docs/provider-setup.md)
 - To configure nginx for client certificate authentication see [docs/client-certificate-setup.md](docs/client-certificate-setup.md)

-## csaf_uploader
-
-csaf_uploader is a command line tool that uploads CSAF documents to the trusted provider (CSAF_Provider).
-Following options are supported:
-
-| Options                                    | Description                                                                                |
-| ------------------------------------------ | ------------------------------------------------------------------------------------------ |
-| -a, --action=[upload\|create]              | Action to perform (default: upload)                                                        |
-| -u, --url=URL                              | URL of the CSAF provider (default:https:<span></span>//localhost/cgi-bin/csaf_provider.go) |
-| -t, --tlp=[csaf\|white\|green\|amber\|red] | TLP of the feed (default: csaf)                                                            |
-| -x, --external-signed                      | CSAF files are signed externally. Assumes .asc files beside CSAF files                     |
-| -k, --key=KEY-FILE                         | OpenPGP key to sign the CSAF files                                                         |
-| -p, --password=PASSWORD                    | Authentication password for accessing the CSAF provider                                    |
-| -P, --passphrase=PASSPHRASE                | Passphrase to unlock the OpenPGP key                                                       |
-| -i, --password-interactive                 | Enter password interactively                                                               |
-| -I, --passphrase-interacive                | Enter passphrase interactively                                                             |
-| -c, --config=INI-FILE                      | Path to config ini file                                                                    |
-| --insecure                                 | Do not check TLS certificates from provider                                                |
-| --client-cert                              | TLS client certificate file (PEM encoded data)                                             |
-| --client-key                               | TLS client private key file (PEM encoded data)                                             |
-| -h, --help                                 | Show help                                                                                  |
-
-E.g. creating the initial directiories and files
-
-```
-./csaf_uploader -a create  -u http://localhost/cgi-bin/csaf_provider.go
-```
-
-E.g. uploading a csaf-document
-
-```
-./csaf_uploader -a upload -I -t white -u http://localhost/cgi-bin/csaf_provider.go  CSAF-document-1.json
-```
-
-which asks to enter password interactively.
-
-csaf_uploader can be started with a config file like following:
-
-```
-./csaf_provider -c conf.ini
-```
-
-config.ini :
-
-```
-action=create
-u=http://localhost/cgi-bin/csaf_provider.go
-```
-
-## csaf_checker
-
-Provider checker is a tool for testing a CSAF trusted provider according to [Section 7 of the CSAF standard](https://docs.oasis-open.org/csaf/csaf/v2.0/csaf-v2.0.html#7-distributing-csaf-documents).       
-Usage example:
-``` ./csaf_checker example.com -f html -o check-results.html```

 ## License