API documentation and partial update to 0.3.7

Author: javuto

config.toml

@@ -13,7 +13,7 @@ unsafe= true
 home = [ "HTML", "RSS", "JSON"]
 
 [params]
-author = "Javier Marcos de Prado, JMPSec"
+author = "Javier Marcos, JMP Sec"
 description = "Documentation for osctrl: Fast and efficient osquery management"
 themeVariant = "osctrl"
 editURL = "https://github.com/jmpsec/osctrl-docs/edit/master/content/"

content/components/osctrl-api/_index.md

@@ -15,6 +15,4 @@ pre = ""
 
 The osctrl-api component of **osctrl** provides an API interface to interact with its enrolled nodes and with **osctrl** itself.
 
-The API is documented with Swagger:
-
-[https://app.swaggerhub.com/apis-docs/jmpsec/osctrl-api/](https://app.swaggerhub.com/apis-docs/jmpsec/osctrl-api/)
+You can find the updated [API documentation](/openapi/doc.html) for **osctrl**, generated using [stoplight.io](https://docs.stoplight.io/).

content/deployment/docker/_index.md

@@ -4,6 +4,6 @@ date = 2019-08-09T19:23:53+02:00
 weight = 2
 +++
 
-You can use docker to run **osctrl**. Each component has a separate `Dockerfile` to run independently. There is also a [docker-compose.yml](https://github.com/jmpsec/osctrl/blob/master/docker/docker-compose.yml) that ties all the components together to serve a functional deployment.
+You can use docker to run **osctrl** and all the components are defined in the `docker-compose-dev.yml` that ties all the components together, to serve a functional deployment.
 
-In the [Makefile](https://github.com/jmpsec/osctrl/blob/master/Makefile) there are docker specific commands to deploy **osctrl**, which are utilizing the [dockerize.sh](/usage/dockerize.sh/) command
+Ultimately you can just execute `make docker_dev` and it will automagically build and run **osctrl** locally in docker, for development purposes.

content/deployment/natively/_index.md

@@ -4,10 +4,14 @@ date = 2019-08-09T19:24:35+02:00
 weight = 3
 +++
 
-If you want to deploy **osctrl** in your own environment, you can use the [provision.sh](https://github.com/jmpsec/osctrl/blob/master/deploy/provision.sh) to install all necessary dependencies and to configure all components.
+If you want to deploy **osctrl** in your own environment, you can use the [provision.sh](https://github.com/jmpsec/osctrl/blob/master/deploy/provision.sh) script to install all necessary dependencies and to configure all components.
 
-It is a good idea to take a look at the [usage](/usage/provision.sh/) of the provisioning script to understand all the options and all the parameters. Check out also how the same script is used with [vagrant](/deployment/vagrant/) to deploy **osctrl** in a local virtual machine, with all components installed and configured.
+It is a good idea to take a look at the [usage](/usage/provision.sh/) of the provisioning script to understand all the options and all the parameters.
 
 ### Examples
 
-The most common use case for provisioning **osctrl** is very similar to how it gets provisioned for [vagrant](/deployment/vagrant/), which means in dev mode and using self-signed certificates.
+A very common use case for provisioning **osctrl** , would run in dev mode and using self-signed certificates. This is would be the preferred choice for development purposes:
+
+```properties
+./deploy/provision.sh -m dev -s /path/to/code --nginx --postgres --redis -p all --all-hostname "dev.osctrl.net" -E
+```

content/deployment/vagrant/_index.md

@@ -18,7 +18,7 @@ USAGE:
    osctrl-admin [global options] command [command options] [arguments...]
 
 VERSION:
-   0.3.4
+   0.3.7
 
 DESCRIPTION:
    Admin service for osctrl, a fast and efficient osquery management
@@ -65,9 +65,10 @@ GLOBAL OPTIONS:
    --jwt-file FILE                  Load JWT configuration from FILE (default: "config/jwt.json") [$JWT_CONFIG_FILE]
    --jwt-secret value               Password to be used for the backend [$JWT_SECRET]
    --jwt-expire value               Maximum amount of hours for the tokens to expire (default: 3) [$JWT_EXPIRE]
-   --osquery-version value          Set osquery version as default to be used (default: "5.10.2") [$OSQUERY_VERSION]
-   --osquery-tables FILE            Load osquery tables schema from FILE (default: "data/5.10.2.json") [$OSQUERY_TABLES]
+   --osquery-version value          Set osquery version as default to be used (default: "5.12.1") [$OSQUERY_VERSION]
+   --osquery-tables FILE            Load osquery tables schema from FILE (default: "data/5.12.1.json") [$OSQUERY_TABLES]
    --logger-file value, -F value    Logger configuration to handle status/results logs from nodes (default: "config/logger.json") [$LOGGER_FILE]
+   --logger-db-same                 Use the same DB configuration for the logger (default: false) [$LOGGER_DB_SAME]
    --static value, -s value         Directory with all the static files needed for the osctrl-admin UI (default: "./static") [$STATIC_FILES]
    --static-offline, -S             Use offline static files (js and css). Default is online files. (default: false) [$STATIC_ONLINE]
    --templates value                Directory with all the templates needed for the osctrl-admin UI (default: "./tmpl_admin") [$STATIC_FILES]

content/usage/dockerize.sh/_index.md

@@ -18,7 +18,7 @@ USAGE:
    osctrl-api [global options] command [command options] [arguments...]
 
 VERSION:
-   0.3.4
+   0.3.7
 
 DESCRIPTION:
    API service for osctrl, a fast and efficient osquery management

content/usage/osctrl-admin/_index.md

@@ -18,7 +18,7 @@ USAGE:
    osctrl-cli [global options] command [command options] [arguments...]
 
 VERSION:
-   0.3.4
+   0.3.7
 
 DESCRIPTION:
    CLI for osctrl, a fast and efficient osquery management

content/usage/osctrl-api/_index.md

@@ -18,7 +18,7 @@ USAGE:
    osctrl-tls [global options] command [command options] [arguments...]
 
 VERSION:
-   0.3.4
+   0.3.7
 
 DESCRIPTION:
    TLS service for osctrl, a fast and efficient osquery management
@@ -60,6 +60,7 @@ GLOBAL OPTIONS:
    --cert FILE, -T FILE             TLS termination certificate from FILE (default: "config/tls.crt") [$TLS_CERTIFICATE]
    --key FILE, -K FILE              TLS termination private key from FILE (default: "config/tls.key") [$TLS_KEY]
    --logger-file value, -F value    Logger configuration to handle status/results logs from nodes (default: "config/logger.json") [$LOGGER_FILE]
+   --logger-db-same                 Use the same DB configuration for the logger (default: false) [$LOGGER_DB_SAME]
    --always-log, -a, --always       Always log status and on-demand query logs from nodes in database (default: false) [$ALWAYS_LOG]
    --carver-type value              Carver to be used to receive files extracted from nodes (default: "db") [$CARVER_TYPE]
    --carver-file value              Carver configuration file to receive files extracted from nodes (default: "config/carver.json") [$CARVER_FILE]

content/usage/osctrl-cli/_index.md

@@ -17,57 +17,55 @@ $ ./deploy/provision.sh -h
 Usage: ./deploy/provision.sh [-h|--help] [PARAMETER [ARGUMENT]] [PARAMETER [ARGUMENT]] ...
 
 Parameters:
-  -h, --help   Shows this help message and exit.
-  -m MODE, --mode MODE  Mode of operation. Default value is dev
-  -t TYPE, --type TYPE  Type of certificate to use. Default value is self
-  -p PART, --part PART  Part of the service. Default is all
+  -h, --help 		Shows this help message and exit.
+  -m MODE, --mode MODE 	Mode of operation. Default value is dev
+  -t TYPE, --type TYPE 	Type of certificate to use. Default value is self
+  -p PART, --part PART 	Part of the service. Default is all
 
 Arguments for MODE:
-  dev   Provision will run in development mode. Certificate will be self-signed.
-  prod   Provision will run in production mode.
+  dev 		Provision will run in development mode. Certificate will be self-signed.
+  prod 		Provision will run in production mode.
 
 Arguments for TYPE:
-  self   Provision will use a self-signed TLS certificate that will be generated.
-  own   Provision will use the TLS certificate provided by the user.
-  certbot  Provision will generate a TLS certificate using letsencrypt/certbot. More info here: https://certbot.eff.org/
+  self 		Provision will use a self-signed TLS certificate that will be generated.
+  own 		Provision will use the TLS certificate provided by the user.
+  certbot 	Provision will generate a TLS certificate using letsencrypt/certbot. More info here: https://certbot.eff.org/
 
 Arguments for PART:
-  admin  Provision will deploy only the admin interface.
-  tls   Provision will deploy only the TLS endpoint.
-  api   Provision will deploy only the API endpoint.
-  all   Provision will deploy both the admin and the TLS endpoint.
+  admin 	Provision will deploy only the admin interface.
+  tls 		Provision will deploy only the TLS endpoint.
+  api 		Provision will deploy only the API endpoint.
+  all 		Provision will deploy both the admin and the TLS endpoint.
 
 Optional Parameters:
-  --public-tls-port PORT  Port for the TLS endpoint service. Default is 443
-  --public-admin-port PORT  Port for the admin service. Default is 8443
-  --public-api-port PORT  Port for the API service. Default is 8444
-  --private-tls-port PORT  Port for the TLS endpoint service. Default is 9000
-  --private-admin-port PORT  Port for the admin service. Default is 9001
-  --private-api-port PORT  Port for the API service. Default is 9002
-  --all-hostname HOSTNAME  Hostname for all the services. Default is 127.0.0.1
-  --tls-hostname HOSTNAME  Hostname for the TLS endpoint service. Default is 127.0.0.1
-  --admin-hostname HOSTNAME  Hostname for the admin service. Default is 127.0.0.1
-  --api-hostname HOSTNAME  Hostname for the API service. Default is 127.0.0.1
-  -X PASS     --password  Force the admin password for the admin interface. Default is random
-  -c PATH     --certfile PATH  Path to supplied TLS server PEM certificate(s) bundle
-  -d DOMAIN   --domain DOMAIN  Domain for the TLS certificate to be generated using letsencrypt
-  -e EMAIL    --email EMAIL  Domain for the TLS certificate to be generated using letsencrypt
-  -s PATH     --source PATH  Path to code. Default is /vagrant
-  -S PATH     --dest PATH  Path to binaries. Default is /opt/osctrl
-  -n          --nginx   Install and configure nginx as TLS termination
-  -P          --postgres  Install and configure PostgreSQL as backend
-  -M          --metrics  Install and configure all services for metrics (InfluxDB + Telegraf + Grafana)
-  -R          --redis   Install and configure Redis as cache
-  -E          --enroll   Enroll the serve into itself using osquery. Default is disabled
-  -N NAME     --env NAME  Initial environment name to be created. Default is the mode (dev or prod)
-  -U          --upgrade  Keep osctrl upgraded with the latest code from Github
+  --public-tls-port PORT 	Port for the TLS endpoint service. Default is 443
+  --public-admin-port PORT 	Port for the admin service. Default is 8443
+  --public-api-port PORT 	Port for the API service. Default is 8444
+  --private-tls-port PORT 	Port for the TLS endpoint service. Default is 9000
+  --private-admin-port PORT 	Port for the admin service. Default is 9001
+  --private-api-port PORT 	Port for the API service. Default is 9002
+  --all-hostname HOSTNAME 	Hostname for all the services. Default is 127.0.0.1
+  --tls-hostname HOSTNAME 	Hostname for the TLS endpoint service. Default is 127.0.0.1
+  --admin-hostname HOSTNAME 	Hostname for the admin service. Default is 127.0.0.1
+  --api-hostname HOSTNAME 	Hostname for the API service. Default is 127.0.0.1
+  -X PASS     --password 	Force the admin password for the admin interface. Default is random
+  -c PATH     --certfile PATH 	Path to supplied TLS server PEM certificate(s) bundle
+  -d DOMAIN   --domain DOMAIN 	Domain for the TLS certificate to be generated using letsencrypt
+  -e EMAIL    --email EMAIL 	Domain for the TLS certificate to be generated using letsencrypt
+  -s PATH     --source PATH 	Path to code. Default is ~/osctrl
+  -S PATH     --dest PATH 	Path to binaries. Default is /opt/osctrl
+  -n          --nginx 		Install and configure nginx as TLS termination
+  -P          --postgres 	Install and configure PostgreSQL as backend
+  -R          --redis 		Install and configure Redis as cache
+  -E          --enroll  	Enroll the serve into itself using osquery. Default is disabled
+  -N NAME     --env NAME 	Initial environment name to be created. Default is the mode (dev or prod)
+  -U          --upgrade 	Keep osctrl upgraded with the latest code from Github
 
 Examples:
-  Provision service in development mode, code is in /vagrant and all components (admin, tls, api):
- ./deploy/provision.sh -m dev -s /vagrant -p all
+  Provision service in development mode, code is in /code/osctrl and all components (admin, tls, api):
+	./deploy/provision.sh -m dev -s /code/osctrl -p all
   Provision service in production mode using my own certificate and only with TLS endpoint:
- ./deploy/provision.sh -m prod -t own -k /etc/certs/my.key -c /etc/certs/cert.crt -p tls
+	./deploy/provision.sh -m prod -t own -k /etc/certs/my.key -c /etc/certs/cert.crt -p tls
   Upgrade service with the latest code from Github. Does not create services nor certificates:
- ./deploy/provision.sh -U -s /code/osctrl -S /srv/osctrl
-
+	./deploy/provision.sh -U -s /code/osctrl -S /srv/osctrl
 ```

content/usage/osctrl-tls/_index.md

@@ -3,21 +3,21 @@
 
 <head>
   <meta charset="utf-8"> <meta name="description" content="Documentation for osctrl: Fast and efficient osquery management">
-<meta name="author" content="Javier Marcos de Prado, JMPSec">
+<meta name="author" content="Javier Marcos, JMP Sec">
  <link rel="icon" href="/favicon.png" type="image/png">
 
   <title>404 Page not found</title>
 
 
-    <link href="/css/nucleus.css?1705261124" rel="stylesheet">
-    <link href="/css/fontawesome-all.min.css?1705261124" rel="stylesheet">
-    <link href="/css/hybrid.css?1705261124" rel="stylesheet">
-    <link href="/css/featherlight.min.css?1705261124" rel="stylesheet">
-    <link href="/css/perfect-scrollbar.min.css?1705261124" rel="stylesheet">
-    <link href="/css/theme.css?1705261124" rel="stylesheet">
-    <link href="/css/hugo-theme.css?1705261124" rel="stylesheet">
+    <link href="/css/nucleus.css?1723239180" rel="stylesheet">
+    <link href="/css/fontawesome-all.min.css?1723239180" rel="stylesheet">
+    <link href="/css/hybrid.css?1723239180" rel="stylesheet">
+    <link href="/css/featherlight.min.css?1723239180" rel="stylesheet">
+    <link href="/css/perfect-scrollbar.min.css?1723239180" rel="stylesheet">
+    <link href="/css/theme.css?1723239180" rel="stylesheet">
+    <link href="/css/hugo-theme.css?1723239180" rel="stylesheet">
 
-      <link href="/css/theme-osctrl.css?1705261124" rel="stylesheet">
+      <link href="/css/theme-osctrl.css?1723239180" rel="stylesheet">
 
 <style>
     :root #header + #content > #left > #rlblock_left {