* Change nginx config to return 403 on unauthorized access to
the non-white TLP locations. We cannot hide the existence anyway,
as it is listed in the provider-metadata.json, even when restricted.
* Rephrase slightly and add hint that the issuer config
will be checked against the `$ssl_client_i_dn` variable, so the
example serves both uses.
resolve #46
* Add an OpenPGP test keypair.
* Move script parts of documentation into script, so they can be used on a fresh Ubuntu 20.04 system
for within a github action to setup a csaf_provider and upload documents to it for an integration test.
* Use dineshsonachalam/markdown-autodocs in github action to automatically
insert lines from the scripts into the docs.
Co-authored-by: Bernhard Reiter <bernhard@intevation.de>
* Documentation for the "issuer" option of the provider.
* More info of the format of the accepted file
* Print out the value of `SSL_CLIENT_I_DN` also when it is not match the issuer.
* Improve nginx setup to transfer auth information to the fcgiwrap
backend.
* Add instructions for creating client certs for testing.
* Add debug output to see if and which client cert has been used when
calling the csaf_provider.go .
