diff options
| author | Lars Wirzenius <liw@sequoia-pgp.org> | 2022-06-12 14:56:37 +0300 |
|---|---|---|
| committer | Lars Wirzenius <liw@sequoia-pgp.org> | 2022-06-12 15:02:06 +0300 |
| commit | 1a8e91681f1930eabb6aa044e003b43572046f03 (patch) | |
| tree | bf6dc20cdcd8814bdf6814ddddc1fcacc7b248cd /sq | |
| parent | 0f7b9e316e1d9162aee2e4ebba5d5de002100d0d (diff) | |
sq: improve help text for "sq wkd generate"
Fixes #393
Sponsored-by: pep.foundation
Diffstat (limited to 'sq')
| -rw-r--r-- | sq/src/sq-usage.rs | 17 | ||||
| -rw-r--r-- | sq/src/sq_cli.rs | 23 |
2 files changed, 37 insertions, 3 deletions
diff --git a/sq/src/sq-usage.rs b/sq/src/sq-usage.rs index 61e87084..5a22ebcd 100644 --- a/sq/src/sq-usage.rs +++ b/sq/src/sq-usage.rs @@ -1236,6 +1236,16 @@ //! the new keys will be inserted and it is updated and existing ones will be //! updated. //! +//! A WKD is per-domain, and can be advanced or direct. For a given domain, the +//! advanced URL uses a subdomain 'openpgpkey'. The advanced URL is preferred. The +//! direct URL must only be used if the subdomain doesn't exist. The advanced URL +//! allows web key directories for several domains on one web server. +//! +//! The contentes of the generated WKD must be copied to a web server so that they +//! are accessible as https://openpgpkey.example.com/.well-known/openpgp/... for the +//! advanced version, and https://example.com/.well-known/openpgp/... for the direct +//! version. sq does not copy files to the web server. +//! //! USAGE: //! sq wkd generate [OPTIONS] <WEB-ROOT> <FQDN> [CERT-RING] //! @@ -1245,7 +1255,7 @@ //! webserver. //! //! <FQDN> -//! Generates a WKD for a fully qualified domain name +//! Generates a WKD for a fully qualified domain name for email //! //! <CERT-RING> //! Adds certificates from CERT-RING to the WKD @@ -1259,6 +1269,11 @@ //! //! -s, --skip //! Skips certificates that do not have User IDs for given domain. +//! +//! EXAMPLES: +//! +//! # Generate a WKD in /tmp/wkdroot from certs.pgp for example.com. +//! $ sq wkd generate /tmp/wkdroot example.com certs.ppg //! ``` //! //! ### Subcommand wkd get diff --git a/sq/src/sq_cli.rs b/sq/src/sq_cli.rs index 30f17997..79016444 100644 --- a/sq/src/sq_cli.rs +++ b/sq/src/sq_cli.rs @@ -2070,7 +2070,26 @@ pub struct WkdGetCommand { about = "Generates a Web Key Directory for the given domain and keys.", long_about = "Generates a Web Key Directory for the given domain and keys. \ If the WKD exists, the new keys will be inserted and it \ - is updated and existing ones will be updated.", + is updated and existing ones will be updated. \ + \n\ + \n\ + A WKD is per-domain, and can be advanced or direct. For a given \ + domain, the advanced URL uses a subdomain 'openpgpkey'. The advanced \ + URL is preferred. The direct URL must only be used if the subdomain \ + doesn't exist. The advanced URL allows web key directories for several \ + domains on one web server. \ + \n\ + \n\ + The contentes of the generated WKD must be copied to a web server so that \ + they are accessible as https://openpgpkey.example.com/.well-known/openpgp/... \ + for the advanced version, and https://example.com/.well-known/openpgp/... \ + for the direct version. sq does not copy files to the web server.", + after_help = +"EXAMPLES: + +# Generate a WKD in /tmp/wkdroot from certs.pgp for example.com. +$ sq wkd generate /tmp/wkdroot example.com certs.ppg +", )] pub struct WkdGenerateCommand { #[clap( @@ -2082,7 +2101,7 @@ pub struct WkdGenerateCommand { pub base_directory: String, #[clap( value_name = "FQDN", - help = "Generates a WKD for a fully qualified domain name", + help = "Generates a WKD for a fully qualified domain name for email", )] pub domain: String, #[clap( |