From 8711ea67fe1de426ac1aac0c2862724c84cda96e Mon Sep 17 00:00:00 2001
From: "bernhardreiter bernhardreiter@users.noreply.github.com"
 <actions@github.com>
Date: Tue, 12 Apr 2022 14:06:26 +0000
Subject: [PATCH] Apply automatic changes

---
 docs/client-certificate-setup.md   | 6 +++---
 docs/development-ca.md             | 4 ++--
 docs/install-server-certificate.md | 4 ++--
 3 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/docs/client-certificate-setup.md b/docs/client-certificate-setup.md
index 119a52f..7f3a5fe 100644
--- a/docs/client-certificate-setup.md
+++ b/docs/client-certificate-setup.md
@@ -9,15 +9,15 @@ adjust the content of the `server{}` block like shown in the following example:
 <!-- MARKDOWN-AUTO-DOCS:START (CODE:src=../docs/scripts/TLSClientConfigsForITest.sh&lines=25-40) -->
 <!-- The below code snippet is automatically added from ../docs/scripts/TLSClientConfigsForITest.sh -->
 ```sh
-        ssl_client_certificate '${SSL_CLIENT_CERTIFICATE}' # e.g. ssl_client_certificate /etc/ssl/rootca-cert.pem;
+        ssl_client_certificate '${SSL_CLIENT_CERTIFICATE}'; # e.g. ssl_client_certificate /etc/ssl/rootca-cert.pem;
         ssl_verify_client optional;
         ssl_verify_depth 2;
 
         # This example allows access to all three TLP locations for all certs.
         location ~ /.well-known/csaf/(red|green|amber)/{
-
+            # For atomic directory switches
+            disable_symlinks off;
             autoindex on;
-
             # in this location access is only allowed with client certs
             if  ($ssl_client_verify != SUCCESS){
                 # we use status code 404 == "Not Found", because we do not
diff --git a/docs/development-ca.md b/docs/development-ca.md
index 8ddb858..20f4b35 100644
--- a/docs/development-ca.md
+++ b/docs/development-ca.md
@@ -67,10 +67,10 @@ certtool --generate-certificate --load-privkey testserver-key.pem --outfile test
 cat testserver.crt rootca-cert.pem >bundle.crt
 
 SSL_CERTIFICATE=$(
-echo "$PWD/bundle.crt;"
+echo "$PWD/bundle.crt"
 )
 SSL_CERTIFICATE_KEY=$(
-echo "$PWD/testserver-key.pem;"
+echo "$PWD/testserver-key.pem"
 )
 ```
 <!-- MARKDOWN-AUTO-DOCS:END -->
diff --git a/docs/install-server-certificate.md b/docs/install-server-certificate.md
index 23eca72..56b4da9 100644
--- a/docs/install-server-certificate.md
+++ b/docs/install-server-certificate.md
@@ -53,8 +53,8 @@ finds your your private key and the certificate chain.
         listen 443 ssl default_server; # ipv4
         listen [::]:443 ssl http2 default_server;  # ipv6
 
-        ssl_certificate  '${SSL_CERTIFICATE}' # e.g. ssl_certificate /etc/ssl/csaf/bundle.crt
-        ssl_certificate_key '${SSL_CERTIFICATE_KEY}' # e.g. ssl_certificate_key /etc/ssl/csaf/testserver-key.pem;
+        ssl_certificate  '${SSL_CERTIFICATE}'; # e.g. ssl_certificate /etc/ssl/csaf/bundle.crt
+        ssl_certificate_key '${SSL_CERTIFICATE_KEY}'; # e.g. ssl_certificate_key /etc/ssl/csaf/testserver-key.pem;
 
         ssl_protocols TLSv1.2 TLSv1.3;
 ```