From c5ca978b5b3fc0c0f15a3f48c8f56233ed54a844 Mon Sep 17 00:00:00 2001
From: Daniel-Constantin Mierla <miconda@gmail.com>
Date: Tue, 17 Nov 2020 10:16:55 +0100
Subject: [PATCH] secsipid: docs for secsipid_check_identity_pubkey()

---
 src/modules/secsipid/doc/secsipid_admin.xml | 34 +++++++++++++++++++++
 1 file changed, 34 insertions(+)

diff --git a/src/modules/secsipid/doc/secsipid_admin.xml b/src/modules/secsipid/doc/secsipid_admin.xml
index 8f0a3d48db3..ecc9060ce31 100644
--- a/src/modules/secsipid/doc/secsipid_admin.xml
+++ b/src/modules/secsipid/doc/secsipid_admin.xml
@@ -171,6 +171,40 @@ request_route {
     ...
 }
 ...
+</programlisting>
+		</example>
+		<para>
+			Further checks can be done with config operations, decoding the JWT header
+			and payload using {s.select} and {s.decode.base64t} transformations
+			together with jansson module.
+		</para>
+	</section>
+	<section id="secsipid.f.secsipid_check_identity_pubkey">
+		<title>
+		<function moreinfo="none">secsipid_check_identity(pubkeyVal)</function>
+		</title>
+		<para>
+			Similar to secsipid_check_identity() with the public key value
+			provided in the parameter.
+		</para>
+		<para>
+		The parameters can contain pseudo-variables.
+		</para>
+		<para>
+		This function can be used from ANY_ROUTE.
+		</para>
+		<example>
+		<title><function>secsipid_check_identity_pubkey</function> usage</title>
+		<programlisting format="linespecific">
+...
+request_route {
+  ...
+  http_client_query("https://provider.com/stir-shaken/cert.pem", "$var(pubkey)");
+  ...
+  if(secsipid_check_identity_pubkey("$var(pubkey)")) { ... }
+  ...
+}
+...
 </programlisting>
 		</example>
 		<para>