| blob | 7e9e5d2da3f8f5f4dab0798aacca710f86423b14 |
1 /*
2 Unix SMB/CIFS implementation.
4 type definitions for loadparm
6 Copyright (C) Karl Auer 1993-1998
8 Largely re-written by Andrew Tridgell, September 1994
10 Copyright (C) Simo Sorce 2001
11 Copyright (C) Alexander Bokovoy 2002
12 Copyright (C) Stefan (metze) Metzmacher 2002
13 Copyright (C) Jim McDonough (jmcd@us.ibm.com) 2003.
14 Copyright (C) James Myers 2003 <myersjj@samba.org>
16 This program is free software; you can redistribute it and/or modify
17 it under the terms of the GNU General Public License as published by
18 the Free Software Foundation; either version 3 of the License, or
19 (at your option) any later version.
21 This program is distributed in the hope that it will be useful,
22 but WITHOUT ANY WARRANTY; without even the implied warranty of
23 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
24 GNU General Public License for more details.
26 You should have received a copy of the GNU General Public License
27 along with this program. If not, see <http://www.gnu.org/licenses/>.
28 */
30 #ifndef _LOADPARM_H
31 #define _LOADPARM_H
33 #include <talloc.h>
41 };
45 };
47 /* the following are used by loadparm for option lists */
60 };
77 * global variables such as debug level etc? */
79 };
83 parm_type type;
84 parm_class p_class;
85 offset_t offset;
97 };
106 };
114 /* This defines the section name in the configuration file that will
115 refer to the special "printers" service */
116 #ifndef PRINTERS_NAME
118 #endif
120 /* This defines the section name in the configuration file that will
121 refer to the special "homes" service */
122 #ifndef HOMES_NAME
124 #endif
126 /* This defines the section name in the configuration file that will contain */
127 /* global parameters - that is, parameters relating to the whole server, not */
128 /* just services. This name is then reserved, and may not be used as a */
129 /* a service name. It will default to "global" if not defined here. */
130 #ifndef GLOBAL_NAME
133 #endif
135 /* The default workgroup - usually overridden in smb.conf */
136 #ifndef DEFAULT_WORKGROUP
138 #endif
140 /* types of configuration backends for loadparm */
141 #define CONFIG_BACKEND_FILE 0
142 #define CONFIG_BACKEND_REGISTRY 1
144 /*
145 Do you want session setups at user level security with a invalid
146 password to be rejected or allowed in as guest? WinNT rejects them
147 but it can be a pain as it means "net view" needs to use a password
149 You have 3 choices in the setting of map_to_guest:
151 "NEVER_MAP_TO_GUEST" means session setups with an invalid password
152 are rejected. This is the default.
154 "MAP_TO_GUEST_ON_BAD_USER" means session setups with an invalid password
155 are rejected, unless the username does not exist, in which case it
156 is treated as a guest login
158 "MAP_TO_GUEST_ON_BAD_PASSWORD" means session setups with an invalid password
159 are treated as a guest login
161 Note that map_to_guest only has an effect in user or server
162 level security.
163 */
165 #define NEVER_MAP_TO_GUEST 0
166 #define MAP_TO_GUEST_ON_BAD_USER 1
167 #define MAP_TO_GUEST_ON_BAD_PASSWORD 2
168 #define MAP_TO_GUEST_ON_BAD_UID 3
170 /*
171 * This should be under the HAVE_KRB5 flag but since they're used
172 * in lp_kerberos_method(), they need to be always available
173 * If you add any entries to KERBEROS_VERIFY defines, please modify USE.*KEYTAB macros
174 * so they remain accurate.
175 */
177 #define KERBEROS_VERIFY_SECRETS 0
178 #define KERBEROS_VERIFY_SYSTEM_KEYTAB 1
179 #define KERBEROS_VERIFY_DEDICATED_KEYTAB 2
180 #define KERBEROS_VERIFY_SECRETS_AND_KEYTAB 3
182 #define KERBEROS_ETYPES_ALL 0
183 #define KERBEROS_ETYPES_STRONG 1
184 #define KERBEROS_ETYPES_LEGACY 2
186 /* ACL compatibility */
189 /* printing types */
193 #if defined(DEVELOPER) || defined(ENABLE_SELFTEST)
196 };
198 #define SERVER_TCP_LOW_PORT 49152
199 #define SERVER_TCP_HIGH_PORT 65535
201 #define SERVER_TCP_PORT_MIN 1024
202 #define SERVER_TCP_PORT_MAX 65535
207 LDAP_SERVER_REQUIRE_STRONG_AUTH_NO,
208 LDAP_SERVER_REQUIRE_STRONG_AUTH_ALLOW_SASL_OVER_TLS,
209 LDAP_SERVER_REQUIRE_STRONG_AUTH_ALLOW_SASL_WITHOUT_TLS_CB,
210 LDAP_SERVER_REQUIRE_STRONG_AUTH_YES,
211 };
213 /* DNS update settings */
216 /* MDNS name sources */
219 /* LDAP SSL options */
222 /* LDAP PASSWD SYNC methods */
225 /* map readonly options */
228 /* case handling */
231 /* inherit owner options */
233 INHERIT_OWNER_NO,
234 INHERIT_OWNER_WINDOWS_AND_UNIX,
235 INHERIT_OWNER_UNIX_ONLY
236 };
238 /* mangled names options */
241 /* Spotlight backend options */
243 SPOTLIGHT_BACKEND_NOINDEX,
244 SPOTLIGHT_BACKEND_TRACKER,
245 SPOTLIGHT_BACKEND_ES,
246 };
248 /* FIPS values */
250 SAMBA_WEAK_CRYPTO_UNKNOWN,
251 SAMBA_WEAK_CRYPTO_ALLOWED,
252 SAMBA_WEAK_CRYPTO_DISALLOWED,
253 };
255 /* Controlling the storage of the NT password has on the AD DC */
257 NT_HASH_STORE_AUTO,
258 NT_HASH_STORE_NEVER,
259 NT_HASH_STORE_ALWAYS
260 };
262 /* Controlling the storage of the NT password has on the AD DC */
264 ACL_CLAIMS_EVALUATION_AD_DC_ONLY,
265 ACL_CLAIMS_EVALUATION_NEVER
266 };
268 /*
269 * Default passwd chat script.
270 */
271 #ifndef DEFAULT_PASSWD_CHAT
273 #endif
275 /* Max number of jobs per print queue. */
276 #ifndef PRINT_MAX_JOBID
277 #define PRINT_MAX_JOBID 10000
278 #endif
280 /* the default guest account - allow override via CFLAGS */
281 #ifndef GUEST_ACCOUNT
283 #endif
285 /* SMB2 defaults */
286 #define DEFAULT_SMB2_MAX_READ (8*1024*1024)
287 #define DEFAULT_SMB2_MAX_WRITE (8*1024*1024)
288 #define DEFAULT_SMB2_MAX_TRANSACT (8*1024*1024)
289 #define DEFAULT_SMB2_MAX_CREDITS 8192
294 #define LOADPARM_EXTRA_LOCALS \
295 int usershare; \
296 struct timespec usershare_last_mod; \
297 char *szService; \
298 struct parmlist_entry *param_opt; \
299 struct bitmap *copymap; \
304 #define LOADPARM_EXTRA_GLOBALS \
305 struct parmlist_entry *param_opt; \
306 char *dnsdomain; \
307 int rpc_low_port; \
308 int rpc_high_port; \
309 enum samba_weak_crypto weak_crypto;
329 #ifdef LOADPARM_SUBSTITUTION_INTERNALS
337 };