-
-
Notifications
You must be signed in to change notification settings - Fork 20
/
secsipidx.1
129 lines (129 loc) · 2.55 KB
/
secsipidx.1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
.TH SECSIPIDX 1 "2021-01-07"
.\" Please adjust this date whenever revising the manpage.
.SH NAME
secsipidx \- CLI tool and HTTP API server to check or build SIP identity headers
.SH SYNOPSIS
.B secsipidx
.RI [ options ]
.SH DESCRIPTION
Command line application to check or build SIP identity headers as per IETF
RFC8224 and RFC8588 (STIR and SHAKEN). It also can be run in daemon mode,
providing HTTP REST API to ease the adoption of STIR and SHAKEN by external
applications.
.SH OPTIONS
.TP
.B \-H, \-http-srv
http server bind address
.TP
.B \-https-srv
https server bind address
.TP
.B \-https-pubkey
https server public key
.TP
.B \-https-prvkey
https server private key
.TP
.B \-http-dir
directory to serve over http
.TP
.B \-k, \-fprvkey
path to private key
.TP
.B \-p, \-fpubkey
path to public key
.TP
.B \-fheader
path to file with header value in JSON format
.TP
.B \-header
header value in JSON format
.TP
.B \-fpayload
path to file with payload value in JSON format
.TP
.B \-payload
payload value in JSON format
.TP
.B \-fidentity
path to file with identity value
.TP
.B \-identity
identity value
.TP
.B \-alg
encryption algorithm (default: ES256)
.TP
.B \-ppt
used extension (default: shaken)
.TP
.B \-typ
token type (default: passport)
.TP
.B \-x5u
value of the field with the location of the certificate used to sign the token
(default: '')
.TP
.B \-a, \-attest
attestation level (default: 'C')
.TP
.B \-d, \-dest-tn
destination (called) number (default: '')
.TP
.B \-o, \-orig-th
origination (calling) number (default: '')
.TP
.B \-iat
timestamp when the token was created
.TP
.B \-orig-id
origination identifier (default: '')
.TP
.B \-c, \-check
check validity of the signature
.TP
.B \-s, \-sign
sign the header and payload
.TP
.B \-S, -sign-full
sign the header and payload, with parameters
.TP
.B \-json-parse
parse and re-serialize JSON header and payaload values
.TP
.B \-expire
duration of token validity (in seconds)
.TP
.B \-timeout
http get timeout (in seconds, default: 3)
.TP
.B \-l, \-ltest
run local basic test
.TP
.B \-version
print version
.TP
.B \-cache-dir
path to the directory with cached certificates (default: '')
.TP
.B \-cache-expire
duration of cached certificates (in seconds, default 3600)
.TP
.B \-ca-file
file with root CA certificates in pem format
.TP
.B \-ca-inter
file with intermediate CA certificates in pem format
.TP
.B \-cert-verify
certificate verification mode (default: 0)
.TP
.B \-crl-file
file with CRL
.TP
.SH EXAMPLES
TODO
.SH AUTHOR
.PP
This manual page was written by Victor Seva <[email protected]>,
for the Debian project (and may be used by others).