Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / bmcweb / refs/heads/master / . / meson.options
blob: aee691d8f7038eb0b042b9723dfa318e7df7e941 [file] [log] [blame]
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]1# BMCWEB_KVM
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]2option(
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]3 'kvm',
4 type: 'feature',
5 value: 'enabled',
6 description: '''Enable the KVM host video WebSocket. Path is /kvm/0.
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]7 Video is from the BMCs /dev/videodevice.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]8)
9
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]10# BMCWEB_TESTS
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]11option(
12 'tests',
13 type: 'feature',
14 value: 'enabled',
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]15 description: 'Enable Unit tests for bmcweb',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]16)
17
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]18# BMCWEB_VM_WEBSOCKET
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]19option(
20 'vm-websocket',
21 type: 'feature',
22 value: 'enabled',
Ed Tanous36c0f2a2024-02-09 13:50:26 -0800[diff] [blame]23 description: '''Enable the Virtual Media WebSocket. Path is /vm/0/0 and /nbd/<id> to
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]24 open the websocket. See
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]25 https://github.com/openbmc/jsnbd/blob/master/README.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]26)
Ed Tanousefb80622021-02-20 11:04:01 -0800[diff] [blame]27
Ed Tanous56b81992024-12-02 10:36:37 -0800[diff] [blame]28option(
29 'redfish-use-3-digit-messageid',
30 type: 'feature',
31 value: 'disabled',
32 description: '''Prior to a bug fix, bmcweb exposed error messages with a
33 MessageId of Base.x.y.z.Message which was incorrect.
34 Enabling this option causes return codes to return the old
35 incorrect version for backward compatibility. Will be
Ed Tanous04adfbc2024-12-27 10:55:20 -0800[diff] [blame]36 removed Q2-2025''',
Ed Tanous56b81992024-12-02 10:36:37 -0800[diff] [blame]37)
38
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]39# BMCWEB_NBDPROXY
Ed Tanousefb80622021-02-20 11:04:01 -0800[diff] [blame]40# if you use this option and are seeing this comment, please comment here:
41# https://github.com/openbmc/bmcweb/issues/188 and put forward your intentions
42# for this code. At this point, no daemon has been upstreamed that implements
43# this interface, so for the moment this appears to be dead code; In leiu of
44# removing it, it has been disabled to try to give those that use it the
45# opportunity to upstream their backend implementation
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]46#option(
47# 'vm-nbdproxy',
Ed Tanous36c0f2a2024-02-09 13:50:26 -0800[diff] [blame]48# type: 'feature',
49# value: 'disabled',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]50# description: 'Enable the Virtual Media WebSocket.'
51#)
52
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]53# BMCWEB_REST
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]54option(
55 'rest',
56 type: 'feature',
57 value: 'disabled',
58 description: '''Enable Phosphor REST (D-Bus) APIs. Paths directly map
59 Phosphor D-Bus object paths, for example,
60 /xyz/openbmc_project/logging/entry/enumerate. See
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]61 https://github.com/openbmc/docs/blob/master/rest-api.md.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]62)
63
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]64# BMCWEB_REDFISH
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]65option(
66 'redfish',
67 type: 'feature',
68 value: 'enabled',
69 description: '''Enable Redfish APIs. Paths are under /redfish/v1/. See
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]70 https://github.com/openbmc/bmcweb/blob/master/DEVELOPING.md#redfish.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]71)
72
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]73# BMCWEB_HOST_SERIAL_SOCKET
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]74option(
75 'host-serial-socket',
76 type: 'feature',
77 value: 'enabled',
78 description: '''Enable host serial console WebSocket. Path is /console0.
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]79 See https://github.com/openbmc/docs/blob/master/console.md.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]80)
81
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]82# BMCWEB_STATIC_HOSTING
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]83option(
84 'static-hosting',
85 type: 'feature',
86 value: 'enabled',
87 description: '''Enable serving files from the /usr/share/www directory
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]88 as paths under /.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]89)
90
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]91# BMCWEB_REDFISH_BMC_JOURNAL
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]92option(
93 'redfish-bmc-journal',
94 type: 'feature',
Willy Tuf8483672022-05-10 15:08:10 -0700[diff] [blame]95 value: 'enabled',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]96 description: '''Enable BMC journal access through Redfish. Paths are under
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]97 /redfish/v1/Managers/bmc/LogServices/Journal.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]98)
99
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]100# BMCWEB_REDFISH_CPU_LOG
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]101option(
102 'redfish-cpu-log',
103 type: 'feature',
104 value: 'disabled',
105 description: '''Enable CPU log service transactions through Redfish. Paths
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]106 are under /redfish/v1/Systems/system/LogServices/Crashdump'.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]107)
108
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]109# BMCWEB_REDFISH_DUMP_LOG
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]110option(
111 'redfish-dump-log',
112 type: 'feature',
113 value: 'disabled',
114 description: '''Enable Dump log service transactions through Redfish. Paths
115 are under /redfish/v1/Systems/system/LogServices/Dump
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]116 and /redfish/v1/Managers/bmc/LogServices/Dump''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]117)
118
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]119# BMCWEB_REDFISH_DBUS_LOG
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]120option(
121 'redfish-dbus-log',
122 type: 'feature',
123 value: 'disabled',
124 description: '''Enable DBUS log service transactions through Redfish. Paths
125 are under
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]126 /redfish/v1/Systems/system/LogServices/EventLog/Entries''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]127)
128
Alexander Hansen6c58a032024-11-21 15:27:04 -0800[diff] [blame]129# BMCWEB_EXPERIMENTAL_REDFISH_DBUS_LOG_SUBSCRIPTION
130option(
131 'experimental-redfish-dbus-log-subscription',
132 type: 'feature',
133 value: 'disabled',
134 description: '''
135 Allows EventService subscriptions when the redfish-dbus-log option is
136 enabled.
137 This option is currently non-functional, given Redfish requirements for
138 MessageId support in Events.
139 Option will be removed begining of Q2-2025.
140 Should not be enabled on any production systems.
141 ''',
142)
143
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]144# BMCWEB_REDFISH_HOST_LOGGER
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]145option(
146 'redfish-host-logger',
147 type: 'feature',
148 value: 'enabled',
149 description: '''Enable host log service transactions based on
150 phosphor-hostlogger through Redfish. Paths are under
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]151 /redfish/v1/Systems/system/LogServices/HostLogger''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]152)
153
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]154# BMCWEB_REDFISH_PROVISIONING_FEATURE
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]155option(
156 'redfish-provisioning-feature',
157 type: 'feature',
158 value: 'disabled',
159 description: '''Enable provisioning feature support in redfish. Paths are
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]160 under /redfish/v1/Systems/system/''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]161)
162
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]163# BMCWEB_REDFISH_MANAGER_URI_NAME
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]164option(
Ed Tanous253f11b2024-05-16 09:38:31 -0700[diff] [blame]165 'redfish-manager-uri-name',
166 type: 'string',
167 value: 'bmc',
168 description: '''The static Redfish Manager ID representing the BMC
169 instance. This option will appear in the Redfish tree at
170 /redfish/v1/Managers/<redfish-manager-uri-name>.
171 Defaults to \'bmc\' which resolves to
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]172 /redfish/v1/Managers/bmc''',
Ed Tanous253f11b2024-05-16 09:38:31 -0700[diff] [blame]173)
174
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]175# BMCWEB_REDFISH_SYSTEM_URI_NAME
Ed Tanous253f11b2024-05-16 09:38:31 -0700[diff] [blame]176option(
177 'redfish-system-uri-name',
178 type: 'string',
179 value: 'system',
180 description: '''The static Redfish System ID representing the host
181 instance. This option will appear in the Redfish tree at
182 /redfish/v1/Systems/<redfish-system-uri-name>.
183 Defaults to \'system\' which resolves to
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]184 /redfish/v1/Systems/system''',
Ed Tanous253f11b2024-05-16 09:38:31 -0700[diff] [blame]185)
186
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]187# BMCWEB_LOGGING_LEVEL
Ed Tanous253f11b2024-05-16 09:38:31 -0700[diff] [blame]188option(
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]189 'bmcweb-logging',
Myung Bae662aa6e2023-01-10 14:20:28 -0600[diff] [blame]190 type: 'combo',
Ed Tanous92e26be2024-08-21 13:39:14 -0700[diff] [blame]191 choices: [
192 'disabled',
193 'enabled',
194 'debug',
195 'info',
196 'warning',
197 'error',
198 'critical',
199 ],
Ed Tanous4d1db042024-02-16 13:08:34 -0800[diff] [blame]200 value: 'error',
Myung Bae662aa6e2023-01-10 14:20:28 -0600[diff] [blame]201 description: '''Enable output the extended logging level.
202 - disabled: disable bmcweb log traces.
203 - enabled: treated as 'debug'
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]204 - For the other logging level option, see DEVELOPING.md.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]205)
206
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]207# BMCWEB_BASIC_AUTH
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]208option(
209 'basic-auth',
210 type: 'feature',
211 value: 'enabled',
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]212 description: 'Enable basic authentication',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]213)
214
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]215# BMCWEB_SESSION_AUTH
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]216option(
217 'session-auth',
218 type: 'feature',
219 value: 'enabled',
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]220 description: 'Enable session authentication',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]221)
222
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]223# BMCWEB_XTOKEN_AUTH
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]224option(
225 'xtoken-auth',
226 type: 'feature',
227 value: 'enabled',
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]228 description: 'Enable xtoken authentication',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]229)
230
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]231# BMCWEB_COOKIE_AUTH
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]232option(
233 'cookie-auth',
234 type: 'feature',
235 value: 'enabled',
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]236 description: 'Enable cookie authentication',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]237)
238
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]239# BMCWEB_MUTUAL_TLS_AUTH
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]240option(
241 'mutual-tls-auth',
242 type: 'feature',
243 value: 'enabled',
244 description: '''Enables authenticating users through TLS client
245 certificates. The insecure-disable-ssl must be disabled for
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]246 this option to take effect.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]247)
248
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]249# BMCWEB_MUTUAL_TLS_COMMON_NAME_PARSING_DEFAULT
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]250option(
Ed Tanous3ce36882024-06-09 10:58:16 -0700[diff] [blame]251 'mutual-tls-common-name-parsing-default',
Marco Kawajiri0e373b52023-10-31 13:36:58 -0700[diff] [blame]252 type: 'combo',
Malik Akbar Hashemi Rafsanjania4943692025-05-27 13:23:44 -0700[diff] [blame]253 choices: ['CommonName', 'Whole', 'UserPrincipalName'],
254 description: '''Default MTLS parse mode to get username from the
255 client's x509 certificate''',
Marco Kawajiri0e373b52023-10-31 13:36:58 -0700[diff] [blame]256)
257
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]258# BMCWEB_IBM_MANAGEMENT_CONSOLE
Ed Tanous3ce36882024-06-09 10:58:16 -0700[diff] [blame]259option(
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]260 'ibm-management-console',
261 type: 'feature',
262 value: 'disabled',
263 description: '''Enable the IBM management console specific functionality.
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]264 Paths are under /ibm/v1/''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]265)
266
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]267# BMCWEB_GOOGLE_API
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]268option(
269 'google-api',
270 type: 'feature',
271 value: 'disabled',
272 description: '''Enable the Google specific functionality. Paths are under
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]273 /google/v1/''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]274)
275
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]276# BMCWEB_HTTP_BODY_LIMIT
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]277option(
278 'http-body-limit',
279 type: 'integer',
280 min: 0,
281 max: 512,
282 value: 30,
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]283 description: 'Specifies the http request body length limit',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]284)
285
Ed Tanousb2539062024-03-12 16:58:35 -0700[diff] [blame]286# BMCWEB_HTTP_ZSTD
287option(
288 'http-zstd',
289 type: 'feature',
290 value: 'enabled',
291 description: 'Allows compression/decompression using zstd',
292)
293
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]294# BMCWEB_REDFISH_NEW_POWERSUBSYSTEM_THERMALSUBSYSTEM
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]295option(
296 'redfish-new-powersubsystem-thermalsubsystem',
297 type: 'feature',
Gunnar Mills86159152024-02-06 14:54:39 -0600[diff] [blame]298 value: 'enabled',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]299 description: '''Enable/disable the new PowerSubsystem, ThermalSubsystem,
300 and all children schemas. This includes displaying all
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]301 sensors in the SensorCollection.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]302)
303
Janet Adkinsf664fd82025-07-23 14:01:43 -0500[diff] [blame]304# BMCWEB_REDFISH_ALLOW_DEPRECATED_INDICATORLED
305option(
306 'redfish-allow-deprecated-indicatorled',
307 type: 'feature',
308 value: 'disabled',
309 description: '''Enable/disable the deprecated IndicatorLED property. The
310 default condition is disabled. The code to enable this
311 option will be removed by March 2026.''',
312)
313
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]314# BMCWEB_REDFISH_ALLOW_DEPRECATED_POWER_THERMAL
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]315option(
316 'redfish-allow-deprecated-power-thermal',
317 type: 'feature',
318 value: 'enabled',
319 description: '''Enable/disable the old Power / Thermal. The default
Gunnar Mills86159152024-02-06 14:54:39 -0600[diff] [blame]320 condition is allowing the old Power / Thermal. This
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]321 will be disabled by default June 2024. ''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]322)
323
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]324# BMCWEB_REDFISH_OEM_MANAGER_FAN_DATA
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]325option(
Gunnar Mills54dce7f2022-08-05 17:01:32 +0000[diff] [blame]326 'redfish-oem-manager-fan-data',
327 type: 'feature',
328 value: 'enabled',
329 description: '''Enables Redfish OEM fan data on the manager resource.
330 This includes PID and Stepwise controller data. See
Myung Bae1d19d872024-09-10 09:42:32 -0400[diff] [blame]331 OpenBMCManager schema for more detail.''',
Gunnar Mills54dce7f2022-08-05 17:01:32 +0000[diff] [blame]332)
333
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]334# BMCWEB_REDFISH_UPDATESERVICE_USE_DBUS
Gunnar Mills54dce7f2022-08-05 17:01:32 +0000[diff] [blame]335option(
Jagpal Singh Gill57855662024-04-17 10:44:27 -0700[diff] [blame]336 'redfish-updateservice-use-dbus',
337 type: 'feature',
Jagpal Singh Gill64fa9162024-11-12 16:16:47 -0800[diff] [blame]338 value: 'enabled',
Jagpal Singh Gill57855662024-04-17 10:44:27 -0700[diff] [blame]339 description: '''Enables xyz.openbmc_project.Software.Update D-Bus interface
340 to propagate UpdateService requests to the corresponding
341 updater daemons instead of moving files to /tmp/images dir.
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]342 ''',
Jagpal Singh Gill57855662024-04-17 10:44:27 -0700[diff] [blame]343)
344
Ed Tanous6a371402024-12-03 14:01:25 -0800[diff] [blame]345# BMCWEB_REDFISH_ALLOW_SIMPLE_UPDATE
346option(
347 'redfish-allow-simple-update',
348 type: 'feature',
349 value: 'disabled',
350 description: '''Enables Redfish UpdateService SimpleUpdate Action. Note
351 that at this time this option is non-functional. Redfish
352 recommends using MultiPartUpdate.''',
353)
354
355
Jagpal Singh Gill57855662024-04-17 10:44:27 -0700[diff] [blame]356option(
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]357 'https_port',
358 type: 'integer',
Ed Tanous796ba932020-08-02 04:29:21 +0000[diff] [blame]359 min: -1,
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]360 max: 65535,
361 value: 443,
Ed Tanous796ba932020-08-02 04:29:21 +0000[diff] [blame]362 description: '''HTTPS default port number. Set to -1 to disable and rely
363 only on additional_ports''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]364)
Manojkiran Edaaf6298d2020-05-27 08:51:32 +0530[diff] [blame]365
Ed Tanous796ba932020-08-02 04:29:21 +0000[diff] [blame]366
367# Additional ports
368# This series of options below allows setting up non-trivial deployments of
369# bmcweb, binding specific ports, authentication profiles, and device binds to
370# multiple ports.
371# Setting these options incorrectly can have severe security consequences and
372# should be reserved for platform experts familiar with their particular
373# platforms security requirements.
374
375option(
376 'additional-ports',
377 type: 'array',
378 value: [],
379 description: '''Additional ports to listen to. Allows bmcweb to listen to
380 multiple ports at a given protocol''',
381)
382
383option(
384 'additional-protocol',
385 type: 'array',
386 value: [],
387 description: '''Allows specifying a specific protocol type for a given
388 additional-ports index. Allows setting http, https, or both
389 to each socket index. If not provided for a given
390 additional-ports index, assumes https.''',
391)
392
393option(
394 'additional-bind-to-device',
395 type: 'array',
396 value: [],
397 description: '''Allows specifying an SO_BINDTODEVICE or BindToDevice systemd
398 directive for each additional socket file. If not provided
399 for a given additional-ports index, assumes bind to all
400 devices''',
401)
402
403option(
404 'additional-auth',
405 type: 'array',
406 value: [],
407 description: '''Allows specifying an authentication profile for each socket
408 created with additional-ports. Allows auth or noauth, and
409 defaults to auth if not provided. If noauth is provided,
410 authentication will not be performed for a given socket/port
411 index.''',
412)
413# end additional ports
414
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]415# BMCWEB_DNS_RESOLVER
Carson Labrado7fb33562022-04-18 23:26:56 +0000[diff] [blame]416option(
Ed Tanousf8ca6d72022-06-28 12:12:03 -0700[diff] [blame]417 'dns-resolver',
418 type: 'combo',
419 choices: ['systemd-dbus', 'asio'],
420 value: 'systemd-dbus',
421 description: '''Sets which DNS resolver backend should be used.
422 systemd-dbus uses the Systemd ResolveHostname on dbus, but requires dbus
423 support. asio relies on boost::asio::tcp::resolver, but cannot resolve
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]424 names when boost threading is disabled.''',
Ed Tanousf8ca6d72022-06-28 12:12:03 -0700[diff] [blame]425)
426
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]427# BMCWEB_REDFISH_AGGREGATION
Ed Tanousf8ca6d72022-06-28 12:12:03 -0700[diff] [blame]428option(
Carson Labrado7fb33562022-04-18 23:26:56 +0000[diff] [blame]429 'redfish-aggregation',
430 type: 'feature',
431 value: 'disabled',
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]432 description: 'Allows this BMC to aggregate resources from satellite BMCs',
Carson Labrado7fb33562022-04-18 23:26:56 +0000[diff] [blame]433)
434
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]435# BMCWEB_HYPERVISOR_COMPUTER_SYSTEM
Ed Tanous7f3e84a2022-12-28 16:22:54 -0800[diff] [blame]436option(
Gunnar Mills68896202024-08-21 11:34:20 -0500[diff] [blame]437 'hypervisor-computer-system',
438 type: 'feature',
439 value: 'disabled',
440 description: '''This puts a hypervisor computer system resource at
441 /redfish/v1/Systems/hypervisor. This system resource has children
442 resources such as EthernetInterfaces and ComputerSystem.Reset.''',
443)
444
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]445# BMCWEB_EXPERIMENTAL_REDFISH_MULTI_COMPUTER_SYSTEM
Gunnar Mills68896202024-08-21 11:34:20 -0500[diff] [blame]446option(
Ed Tanous7f3e84a2022-12-28 16:22:54 -0800[diff] [blame]447 'experimental-redfish-multi-computer-system',
448 type: 'feature',
449 value: 'disabled',
450 description: '''This is a temporary option flag for staging the
451 ComputerSystemCollection transition to multi-host. It, as well as the code
Oliver Brewka06827462025-07-13 18:29:31 +0200[diff] [blame]452 still beneath it will be removed on 1/1/2026. Do not enable in a
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]453 production environment, or where API stability is required.''',
Ed Tanous7f3e84a2022-12-28 16:22:54 -0800[diff] [blame]454)
455
Ed Tanous39fe3af2025-02-17 11:34:12 -0800[diff] [blame]456# BMCWEB_HTTP2
Ed Tanousfca2cbe2021-01-28 14:49:59 -0800[diff] [blame]457option(
Ed Tanous39fe3af2025-02-17 11:34:12 -0800[diff] [blame]458 'http2',
Ed Tanousfca2cbe2021-01-28 14:49:59 -0800[diff] [blame]459 type: 'feature',
Ed Tanous39fe3af2025-02-17 11:34:12 -0800[diff] [blame]460 value: 'enabled',
461 description: 'Enable HTTP/2 protocol support using nghttp2.',
Ed Tanousfca2cbe2021-01-28 14:49:59 -0800[diff] [blame]462)
463
rohitpaicf9085a2025-02-24 12:33:59 +0530[diff] [blame]464# BMCWEB_WATCHDOG_TIMEOUT
465option(
466 'watchdog-timeout-seconds',
467 type: 'integer',
468 min: 0,
469 max: 600,
470 value: 120,
471 description: '''Specifies the systemd watchdog timeout interval in seconds.
472 Set to 0 to disable the watchdog.''',
473)
474
Manojkiran Edaaf6298d2020-05-27 08:51:32 +0530[diff] [blame]475# Insecure options. Every option that starts with a `insecure` flag should
476# not be enabled by default for any platform, unless the author fully comprehends
477# the implications of doing so.In general, enabling these options will cause security
478# problems of varying degrees
479
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]480# BMCWEB_INSECURE_DISABLE_CSRF
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]481option(
482 'insecure-disable-csrf',
483 type: 'feature',
484 value: 'disabled',
485 description: '''Disable CSRF prevention checks.Should be set to false for
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]486 production systems.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]487)
488
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]489# BMCWEB_INSECURE_DISABLE_SSL
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]490option(
491 'insecure-disable-ssl',
492 type: 'feature',
493 value: 'disabled',
494 description: '''Disable SSL ports. Should be set to false for production
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]495 systems.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]496)
497
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]498# BMCWEB_INSECURE_DISABLE_AUTH
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]499option(
500 'insecure-disable-auth',
501 type: 'feature',
502 value: 'disabled',
Nan Zhoua43ea822022-05-27 00:42:44 +0000[diff] [blame]503 description: '''Disable authentication and authoriztion on all ports.
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]504 Should be set to false for production systems.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]505)
506
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]507# BMCWEB_INSECURE_IGNORE_CONTENT_TYPE
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]508option(
Ed Tanous1aa0c2b2022-02-08 12:24:30 +0100[diff] [blame]509 'insecure-ignore-content-type',
510 type: 'feature',
Ed Tanousdb398022023-06-07 16:38:08 -0700[diff] [blame]511 value: 'disabled',
Ed Tanous1aa0c2b2022-02-08 12:24:30 +0100[diff] [blame]512 description: '''Allows parsing PUT/POST/PATCH content as JSON regardless
513 of the presence of the content-type header. Enabling this
514 conflicts with the input parsing guidelines, but may be
515 required to support old clients that may not set the
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]516 Content-Type header on payloads.''',
Ed Tanous1aa0c2b2022-02-08 12:24:30 +0100[diff] [blame]517)
518
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]519# BMCWEB_INSECURE_PUSH_STYLE_NOTIFICATION
Ed Tanous1aa0c2b2022-02-08 12:24:30 +0100[diff] [blame]520option(
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]521 'insecure-push-style-notification',
522 type: 'feature',
523 value: 'disabled',
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]524 description: 'Enable HTTP push style eventing feature',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]525)
526
Ed Tanousc5bcf352024-09-25 16:41:10 -0700[diff] [blame]527# BMCWEB_INSECURE_ENABLE_REDFISH_QUERY
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]528option(
529 'insecure-enable-redfish-query',
530 type: 'feature',
531 value: 'disabled',
532 description: '''Enables Redfish expand query parameter. This feature is
533 experimental, and has not been tested against the full
534 limits of user-facing behavior. It is not recommended to
535 enable on production systems at this time. Other query
Ed Tanous50b37022024-06-25 13:00:04 -0700[diff] [blame]536 parameters such as only are not controlled by this option.''',
Ed Tanous0cd5f782022-04-26 16:09:09 -0700[diff] [blame]537)