| blob | a3331436229a135d2cb323d7ed689063bf81fdb8 |
1 /*
2 Unix SMB/CIFS implementation.
4 type definitions for loadparm
6 Copyright (C) Karl Auer 1993-1998
8 Largely re-written by Andrew Tridgell, September 1994
10 Copyright (C) Simo Sorce 2001
11 Copyright (C) Alexander Bokovoy 2002
12 Copyright (C) Stefan (metze) Metzmacher 2002
13 Copyright (C) Jim McDonough (jmcd@us.ibm.com) 2003.
14 Copyright (C) James Myers 2003 <myersjj@samba.org>
16 This program is free software; you can redistribute it and/or modify
17 it under the terms of the GNU General Public License as published by
18 the Free Software Foundation; either version 3 of the License, or
19 (at your option) any later version.
21 This program is distributed in the hope that it will be useful,
22 but WITHOUT ANY WARRANTY; without even the implied warranty of
23 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
24 GNU General Public License for more details.
26 You should have received a copy of the GNU General Public License
27 along with this program. If not, see <http://www.gnu.org/licenses/>.
28 */
30 #ifndef _LOADPARM_H
31 #define _LOADPARM_H
33 #include <talloc.h>
41 };
45 };
47 /* the following are used by loadparm for option lists */
60 };
77 * global variables such as debug level etc? */
79 };
83 parm_type type;
84 parm_class p_class;
85 offset_t offset;
97 };
106 };
114 /* This defines the section name in the configuration file that will
115 refer to the special "printers" service */
116 #ifndef PRINTERS_NAME
118 #endif
120 /* This defines the section name in the configuration file that will
121 refer to the special "homes" service */
122 #ifndef HOMES_NAME
124 #endif
126 /* This defines the section name in the configuration file that will contain */
127 /* global parameters - that is, parameters relating to the whole server, not */
128 /* just services. This name is then reserved, and may not be used as a */
129 /* a service name. It will default to "global" if not defined here. */
130 #ifndef GLOBAL_NAME
133 #endif
135 /* The default workgroup - usually overridden in smb.conf */
136 #ifndef DEFAULT_WORKGROUP
138 #endif
140 /* types of configuration backends for loadparm */
141 #define CONFIG_BACKEND_FILE 0
142 #define CONFIG_BACKEND_REGISTRY 1
144 /*
145 Do you want session setups at user level security with a invalid
146 password to be rejected or allowed in as guest? WinNT rejects them
147 but it can be a pain as it means "net view" needs to use a password
149 You have 3 choices in the setting of map_to_guest:
151 "NEVER_MAP_TO_GUEST" means session setups with an invalid password
152 are rejected. This is the default.
154 "MAP_TO_GUEST_ON_BAD_USER" means session setups with an invalid password
155 are rejected, unless the username does not exist, in which case it
156 is treated as a guest login
158 "MAP_TO_GUEST_ON_BAD_PASSWORD" means session setups with an invalid password
159 are treated as a guest login
161 Note that map_to_guest only has an effect in user or server
162 level security.
163 */
165 #define NEVER_MAP_TO_GUEST 0
166 #define MAP_TO_GUEST_ON_BAD_USER 1
167 #define MAP_TO_GUEST_ON_BAD_PASSWORD 2
168 #define MAP_TO_GUEST_ON_BAD_UID 3
170 /*
171 * This should be under the HAVE_KRB5 flag but since they're used
172 * in lp_kerberos_method(), they ned to be always available
173 * If you add any entries to KERBEROS_VERIFY defines, please modify USE.*KEYTAB macros
174 * so they remain accurate.
175 */
177 #define KERBEROS_VERIFY_SECRETS 0
178 #define KERBEROS_VERIFY_SYSTEM_KEYTAB 1
179 #define KERBEROS_VERIFY_DEDICATED_KEYTAB 2
180 #define KERBEROS_VERIFY_SECRETS_AND_KEYTAB 3
182 #define KERBEROS_ETYPES_ALL 0
183 #define KERBEROS_ETYPES_STRONG 1
184 #define KERBEROS_ETYPES_LEGACY 2
186 /* ACL compatibility */
189 /* printing types */
193 #if defined(DEVELOPER) || defined(ENABLE_SELFTEST)
196 };
198 #define SERVER_TCP_LOW_PORT 49152
199 #define SERVER_TCP_HIGH_PORT 65535
201 #define SERVER_TCP_PORT_MIN 1024
202 #define SERVER_TCP_PORT_MAX 65535
206 /* ads auth control flags */
207 #define ADS_AUTH_DISABLE_KERBEROS 0x0001
208 #define ADS_AUTH_NO_BIND 0x0002
209 #define ADS_AUTH_ANON_BIND 0x0004
210 #define ADS_AUTH_SIMPLE_BIND 0x0008
211 #define ADS_AUTH_ALLOW_NTLMSSP 0x0010
212 #define ADS_AUTH_SASL_SIGN 0x0020
213 #define ADS_AUTH_SASL_SEAL 0x0040
214 #define ADS_AUTH_SASL_FORCE 0x0080
215 #define ADS_AUTH_USER_CREDS 0x0100
218 LDAP_SERVER_REQUIRE_STRONG_AUTH_NO,
219 LDAP_SERVER_REQUIRE_STRONG_AUTH_ALLOW_SASL_OVER_TLS,
220 LDAP_SERVER_REQUIRE_STRONG_AUTH_YES,
221 };
223 /* DNS update settings */
226 /* MDNS name sources */
229 /* LDAP SSL options */
232 /* LDAP PASSWD SYNC methods */
235 /* map readonly options */
238 /* case handling */
241 /* inherit owner options */
243 INHERIT_OWNER_NO,
244 INHERIT_OWNER_WINDOWS_AND_UNIX,
245 INHERIT_OWNER_UNIX_ONLY
246 };
248 /* mangled names options */
251 /* Spotlight backend options */
253 SPOTLIGHT_BACKEND_NOINDEX,
254 SPOTLIGHT_BACKEND_TRACKER,
255 SPOTLIGHT_BACKEND_ES,
256 };
258 /* FIPS values */
260 SAMBA_WEAK_CRYPTO_UNKNOWN,
261 SAMBA_WEAK_CRYPTO_ALLOWED,
262 SAMBA_WEAK_CRYPTO_DISALLOWED,
263 };
265 /*
266 * Default passwd chat script.
267 */
268 #ifndef DEFAULT_PASSWD_CHAT
270 #endif
272 /* Max number of jobs per print queue. */
273 #ifndef PRINT_MAX_JOBID
274 #define PRINT_MAX_JOBID 10000
275 #endif
277 /* the default guest account - allow override via CFLAGS */
278 #ifndef GUEST_ACCOUNT
280 #endif
282 /* SMB2 defaults */
283 #define DEFAULT_SMB2_MAX_READ (8*1024*1024)
284 #define DEFAULT_SMB2_MAX_WRITE (8*1024*1024)
285 #define DEFAULT_SMB2_MAX_TRANSACT (8*1024*1024)
286 #define DEFAULT_SMB2_MAX_CREDITS 8192
291 #define LOADPARM_EXTRA_LOCALS \
292 int usershare; \
293 struct timespec usershare_last_mod; \
294 char *szService; \
295 struct parmlist_entry *param_opt; \
296 struct bitmap *copymap; \
301 #define LOADPARM_EXTRA_GLOBALS \
302 struct parmlist_entry *param_opt; \
303 char *dnsdomain; \
304 int rpc_low_port; \
305 int rpc_high_port; \
306 enum samba_weak_crypto weak_crypto;
326 #ifdef LOADPARM_SUBSTITUTION_INTERNALS
334 };