1c5bcf35fSEd Tanous# BMCWEB_KVM 28dc3ddf6SEd Tanousoption( 38dc3ddf6SEd Tanous 'kvm', 48dc3ddf6SEd Tanous type: 'feature', 58dc3ddf6SEd Tanous value: 'enabled', 68dc3ddf6SEd Tanous description: '''Enable the KVM host video WebSocket. Path is /kvm/0. 78dc3ddf6SEd Tanous Video is from the BMCs /dev/videodevice.''', 88dc3ddf6SEd Tanous) 98dc3ddf6SEd Tanous 10c5bcf35fSEd Tanous# BMCWEB_TESTS 118dc3ddf6SEd Tanousoption( 128dc3ddf6SEd Tanous 'tests', 138dc3ddf6SEd Tanous type: 'feature', 148dc3ddf6SEd Tanous value: 'enabled', 158dc3ddf6SEd Tanous description: 'Enable Unit tests for bmcweb', 168dc3ddf6SEd Tanous) 178dc3ddf6SEd Tanous 18c5bcf35fSEd Tanous# BMCWEB_VM_WEBSOCKET 198dc3ddf6SEd Tanousoption( 208dc3ddf6SEd Tanous 'vm-websocket', 218dc3ddf6SEd Tanous type: 'feature', 228dc3ddf6SEd Tanous value: 'enabled', 238dc3ddf6SEd Tanous description: '''Enable the Virtual Media WebSocket. Path is /vm/0/0 and /nbd/<id> to 248dc3ddf6SEd Tanous open the websocket. See 258dc3ddf6SEd Tanous https://github.com/openbmc/jsnbd/blob/master/README.''', 268dc3ddf6SEd Tanous) 278dc3ddf6SEd Tanous 2856b81992SEd Tanousoption( 2956b81992SEd Tanous 'redfish-use-3-digit-messageid', 3056b81992SEd Tanous type: 'feature', 3156b81992SEd Tanous value: 'disabled', 3256b81992SEd Tanous description: '''Prior to a bug fix, bmcweb exposed error messages with a 3356b81992SEd Tanous MessageId of Base.x.y.z.Message which was incorrect. 3456b81992SEd Tanous Enabling this option causes return codes to return the old 3556b81992SEd Tanous incorrect version for backward compatibility. Will be 3604adfbcaSEd Tanous removed Q2-2025''', 3756b81992SEd Tanous) 3856b81992SEd Tanous 39c5bcf35fSEd Tanous# BMCWEB_NBDPROXY 408dc3ddf6SEd Tanous# if you use this option and are seeing this comment, please comment here: 418dc3ddf6SEd Tanous# https://github.com/openbmc/bmcweb/issues/188 and put forward your intentions 428dc3ddf6SEd Tanous# for this code. At this point, no daemon has been upstreamed that implements 438dc3ddf6SEd Tanous# this interface, so for the moment this appears to be dead code; In leiu of 448dc3ddf6SEd Tanous# removing it, it has been disabled to try to give those that use it the 458dc3ddf6SEd Tanous# opportunity to upstream their backend implementation 468dc3ddf6SEd Tanous#option( 478dc3ddf6SEd Tanous# 'vm-nbdproxy', 488dc3ddf6SEd Tanous# type: 'feature', 498dc3ddf6SEd Tanous# value: 'disabled', 508dc3ddf6SEd Tanous# description: 'Enable the Virtual Media WebSocket.' 518dc3ddf6SEd Tanous#) 528dc3ddf6SEd Tanous 53c5bcf35fSEd Tanous# BMCWEB_REST 548dc3ddf6SEd Tanousoption( 558dc3ddf6SEd Tanous 'rest', 568dc3ddf6SEd Tanous type: 'feature', 578dc3ddf6SEd Tanous value: 'disabled', 588dc3ddf6SEd Tanous description: '''Enable Phosphor REST (D-Bus) APIs. Paths directly map 598dc3ddf6SEd Tanous Phosphor D-Bus object paths, for example, 608dc3ddf6SEd Tanous /xyz/openbmc_project/logging/entry/enumerate. See 618dc3ddf6SEd Tanous https://github.com/openbmc/docs/blob/master/rest-api.md.''', 628dc3ddf6SEd Tanous) 638dc3ddf6SEd Tanous 64c5bcf35fSEd Tanous# BMCWEB_REDFISH 658dc3ddf6SEd Tanousoption( 668dc3ddf6SEd Tanous 'redfish', 678dc3ddf6SEd Tanous type: 'feature', 688dc3ddf6SEd Tanous value: 'enabled', 698dc3ddf6SEd Tanous description: '''Enable Redfish APIs. Paths are under /redfish/v1/. See 708dc3ddf6SEd Tanous https://github.com/openbmc/bmcweb/blob/master/DEVELOPING.md#redfish.''', 718dc3ddf6SEd Tanous) 728dc3ddf6SEd Tanous 73c5bcf35fSEd Tanous# BMCWEB_HOST_SERIAL_SOCKET 748dc3ddf6SEd Tanousoption( 758dc3ddf6SEd Tanous 'host-serial-socket', 768dc3ddf6SEd Tanous type: 'feature', 778dc3ddf6SEd Tanous value: 'enabled', 788dc3ddf6SEd Tanous description: '''Enable host serial console WebSocket. Path is /console0. 798dc3ddf6SEd Tanous See https://github.com/openbmc/docs/blob/master/console.md.''', 808dc3ddf6SEd Tanous) 818dc3ddf6SEd Tanous 82c5bcf35fSEd Tanous# BMCWEB_STATIC_HOSTING 838dc3ddf6SEd Tanousoption( 848dc3ddf6SEd Tanous 'static-hosting', 858dc3ddf6SEd Tanous type: 'feature', 868dc3ddf6SEd Tanous value: 'enabled', 878dc3ddf6SEd Tanous description: '''Enable serving files from the /usr/share/www directory 888dc3ddf6SEd Tanous as paths under /.''', 898dc3ddf6SEd Tanous) 908dc3ddf6SEd Tanous 91c5bcf35fSEd Tanous# BMCWEB_REDFISH_BMC_JOURNAL 928dc3ddf6SEd Tanousoption( 938dc3ddf6SEd Tanous 'redfish-bmc-journal', 948dc3ddf6SEd Tanous type: 'feature', 958dc3ddf6SEd Tanous value: 'enabled', 968dc3ddf6SEd Tanous description: '''Enable BMC journal access through Redfish. Paths are under 978dc3ddf6SEd Tanous /redfish/v1/Managers/bmc/LogServices/Journal.''', 988dc3ddf6SEd Tanous) 998dc3ddf6SEd Tanous 100c5bcf35fSEd Tanous# BMCWEB_REDFISH_CPU_LOG 1018dc3ddf6SEd Tanousoption( 1028dc3ddf6SEd Tanous 'redfish-cpu-log', 1038dc3ddf6SEd Tanous type: 'feature', 1048dc3ddf6SEd Tanous value: 'disabled', 1058dc3ddf6SEd Tanous description: '''Enable CPU log service transactions through Redfish. Paths 1068dc3ddf6SEd Tanous are under /redfish/v1/Systems/system/LogServices/Crashdump'.''', 1078dc3ddf6SEd Tanous) 1088dc3ddf6SEd Tanous 109c5bcf35fSEd Tanous# BMCWEB_REDFISH_DUMP_LOG 1108dc3ddf6SEd Tanousoption( 1118dc3ddf6SEd Tanous 'redfish-dump-log', 1128dc3ddf6SEd Tanous type: 'feature', 1138dc3ddf6SEd Tanous value: 'disabled', 1148dc3ddf6SEd Tanous description: '''Enable Dump log service transactions through Redfish. Paths 1158dc3ddf6SEd Tanous are under /redfish/v1/Systems/system/LogServices/Dump 1168dc3ddf6SEd Tanous and /redfish/v1/Managers/bmc/LogServices/Dump''', 1178dc3ddf6SEd Tanous) 1188dc3ddf6SEd Tanous 119c5bcf35fSEd Tanous# BMCWEB_REDFISH_DBUS_LOG 1208dc3ddf6SEd Tanousoption( 1218dc3ddf6SEd Tanous 'redfish-dbus-log', 1228dc3ddf6SEd Tanous type: 'feature', 1238dc3ddf6SEd Tanous value: 'disabled', 1248dc3ddf6SEd Tanous description: '''Enable DBUS log service transactions through Redfish. Paths 1258dc3ddf6SEd Tanous are under 1268dc3ddf6SEd Tanous /redfish/v1/Systems/system/LogServices/EventLog/Entries''', 1278dc3ddf6SEd Tanous) 1288dc3ddf6SEd Tanous 1296c58a03eSAlexander Hansen# BMCWEB_EXPERIMENTAL_REDFISH_DBUS_LOG_SUBSCRIPTION 1306c58a03eSAlexander Hansenoption( 1316c58a03eSAlexander Hansen 'experimental-redfish-dbus-log-subscription', 1326c58a03eSAlexander Hansen type: 'feature', 1336c58a03eSAlexander Hansen value: 'disabled', 1346c58a03eSAlexander Hansen description: ''' 1356c58a03eSAlexander Hansen Allows EventService subscriptions when the redfish-dbus-log option is 1366c58a03eSAlexander Hansen enabled. 1376c58a03eSAlexander Hansen This option is currently non-functional, given Redfish requirements for 1386c58a03eSAlexander Hansen MessageId support in Events. 1396c58a03eSAlexander Hansen Option will be removed begining of Q2-2025. 1406c58a03eSAlexander Hansen Should not be enabled on any production systems. 1416c58a03eSAlexander Hansen ''', 1426c58a03eSAlexander Hansen) 1436c58a03eSAlexander Hansen 144c5bcf35fSEd Tanous# BMCWEB_REDFISH_HOST_LOGGER 1458dc3ddf6SEd Tanousoption( 1468dc3ddf6SEd Tanous 'redfish-host-logger', 1478dc3ddf6SEd Tanous type: 'feature', 1488dc3ddf6SEd Tanous value: 'enabled', 1498dc3ddf6SEd Tanous description: '''Enable host log service transactions based on 1508dc3ddf6SEd Tanous phosphor-hostlogger through Redfish. Paths are under 1518dc3ddf6SEd Tanous /redfish/v1/Systems/system/LogServices/HostLogger''', 1528dc3ddf6SEd Tanous) 1538dc3ddf6SEd Tanous 154c5bcf35fSEd Tanous# BMCWEB_REDFISH_PROVISIONING_FEATURE 1558dc3ddf6SEd Tanousoption( 1568dc3ddf6SEd Tanous 'redfish-provisioning-feature', 1578dc3ddf6SEd Tanous type: 'feature', 1588dc3ddf6SEd Tanous value: 'disabled', 1598dc3ddf6SEd Tanous description: '''Enable provisioning feature support in redfish. Paths are 1608dc3ddf6SEd Tanous under /redfish/v1/Systems/system/''', 1618dc3ddf6SEd Tanous) 1628dc3ddf6SEd Tanous 163c5bcf35fSEd Tanous# BMCWEB_REDFISH_MANAGER_URI_NAME 1648dc3ddf6SEd Tanousoption( 1658dc3ddf6SEd Tanous 'redfish-manager-uri-name', 1668dc3ddf6SEd Tanous type: 'string', 1678dc3ddf6SEd Tanous value: 'bmc', 1688dc3ddf6SEd Tanous description: '''The static Redfish Manager ID representing the BMC 1698dc3ddf6SEd Tanous instance. This option will appear in the Redfish tree at 1708dc3ddf6SEd Tanous /redfish/v1/Managers/<redfish-manager-uri-name>. 1718dc3ddf6SEd Tanous Defaults to \'bmc\' which resolves to 1728dc3ddf6SEd Tanous /redfish/v1/Managers/bmc''', 1738dc3ddf6SEd Tanous) 1748dc3ddf6SEd Tanous 175c5bcf35fSEd Tanous# BMCWEB_REDFISH_SYSTEM_URI_NAME 1768dc3ddf6SEd Tanousoption( 1778dc3ddf6SEd Tanous 'redfish-system-uri-name', 1788dc3ddf6SEd Tanous type: 'string', 1798dc3ddf6SEd Tanous value: 'system', 1808dc3ddf6SEd Tanous description: '''The static Redfish System ID representing the host 1818dc3ddf6SEd Tanous instance. This option will appear in the Redfish tree at 1828dc3ddf6SEd Tanous /redfish/v1/Systems/<redfish-system-uri-name>. 1838dc3ddf6SEd Tanous Defaults to \'system\' which resolves to 1848dc3ddf6SEd Tanous /redfish/v1/Systems/system''', 1858dc3ddf6SEd Tanous) 1868dc3ddf6SEd Tanous 187c5bcf35fSEd Tanous# BMCWEB_LOGGING_LEVEL 1888dc3ddf6SEd Tanousoption( 1898dc3ddf6SEd Tanous 'bmcweb-logging', 1908dc3ddf6SEd Tanous type: 'combo', 19192e26be5SEd Tanous choices: [ 19292e26be5SEd Tanous 'disabled', 19392e26be5SEd Tanous 'enabled', 19492e26be5SEd Tanous 'debug', 19592e26be5SEd Tanous 'info', 19692e26be5SEd Tanous 'warning', 19792e26be5SEd Tanous 'error', 19892e26be5SEd Tanous 'critical', 19992e26be5SEd Tanous ], 2008dc3ddf6SEd Tanous value: 'error', 2018dc3ddf6SEd Tanous description: '''Enable output the extended logging level. 2028dc3ddf6SEd Tanous - disabled: disable bmcweb log traces. 2038dc3ddf6SEd Tanous - enabled: treated as 'debug' 2048dc3ddf6SEd Tanous - For the other logging level option, see DEVELOPING.md.''', 2058dc3ddf6SEd Tanous) 2068dc3ddf6SEd Tanous 207c5bcf35fSEd Tanous# BMCWEB_BASIC_AUTH 2088dc3ddf6SEd Tanousoption( 2098dc3ddf6SEd Tanous 'basic-auth', 2108dc3ddf6SEd Tanous type: 'feature', 2118dc3ddf6SEd Tanous value: 'enabled', 2128dc3ddf6SEd Tanous description: 'Enable basic authentication', 2138dc3ddf6SEd Tanous) 2148dc3ddf6SEd Tanous 215c5bcf35fSEd Tanous# BMCWEB_SESSION_AUTH 2168dc3ddf6SEd Tanousoption( 2178dc3ddf6SEd Tanous 'session-auth', 2188dc3ddf6SEd Tanous type: 'feature', 2198dc3ddf6SEd Tanous value: 'enabled', 2208dc3ddf6SEd Tanous description: 'Enable session authentication', 2218dc3ddf6SEd Tanous) 2228dc3ddf6SEd Tanous 223c5bcf35fSEd Tanous# BMCWEB_XTOKEN_AUTH 2248dc3ddf6SEd Tanousoption( 2258dc3ddf6SEd Tanous 'xtoken-auth', 2268dc3ddf6SEd Tanous type: 'feature', 2278dc3ddf6SEd Tanous value: 'enabled', 2288dc3ddf6SEd Tanous description: 'Enable xtoken authentication', 2298dc3ddf6SEd Tanous) 2308dc3ddf6SEd Tanous 231c5bcf35fSEd Tanous# BMCWEB_COOKIE_AUTH 2328dc3ddf6SEd Tanousoption( 2338dc3ddf6SEd Tanous 'cookie-auth', 2348dc3ddf6SEd Tanous type: 'feature', 2358dc3ddf6SEd Tanous value: 'enabled', 2368dc3ddf6SEd Tanous description: 'Enable cookie authentication', 2378dc3ddf6SEd Tanous) 2388dc3ddf6SEd Tanous 239c5bcf35fSEd Tanous# BMCWEB_MUTUAL_TLS_AUTH 2408dc3ddf6SEd Tanousoption( 2418dc3ddf6SEd Tanous 'mutual-tls-auth', 2428dc3ddf6SEd Tanous type: 'feature', 2438dc3ddf6SEd Tanous value: 'enabled', 2448dc3ddf6SEd Tanous description: '''Enables authenticating users through TLS client 2458dc3ddf6SEd Tanous certificates. The insecure-disable-ssl must be disabled for 2468dc3ddf6SEd Tanous this option to take effect.''', 2478dc3ddf6SEd Tanous) 2488dc3ddf6SEd Tanous 249c5bcf35fSEd Tanous# BMCWEB_MUTUAL_TLS_COMMON_NAME_PARSING_DEFAULT 2508dc3ddf6SEd Tanousoption( 2513ce3688aSEd Tanous 'mutual-tls-common-name-parsing-default', 2528dc3ddf6SEd Tanous type: 'combo', 253*a4943693SMalik Akbar Hashemi Rafsanjani choices: ['CommonName', 'Whole', 'UserPrincipalName'], 254*a4943693SMalik Akbar Hashemi Rafsanjani description: '''Default MTLS parse mode to get username from the 255*a4943693SMalik Akbar Hashemi Rafsanjani client's x509 certificate''', 2563ce3688aSEd Tanous) 2573ce3688aSEd Tanous 258c5bcf35fSEd Tanous# BMCWEB_META_TLS_COMMON_NAME_PARSING 2593ce3688aSEd Tanousoption( 2603ce3688aSEd Tanous 'meta-tls-common-name-parsing', 2613ce3688aSEd Tanous type: 'feature', 2623ce3688aSEd Tanous description: ''' 2633ce3688aSEd Tanous Allows parsing the Subject CN TLS certificate in the format used by 2648dc3ddf6SEd Tanous Meta Inc (see mutual_tls_meta.cpp for details) 2658dc3ddf6SEd Tanous ''', 2668dc3ddf6SEd Tanous) 2678dc3ddf6SEd Tanous 268c5bcf35fSEd Tanous# BMCWEB_IBM_MANAGEMENT_CONSOLE 2698dc3ddf6SEd Tanousoption( 2708dc3ddf6SEd Tanous 'ibm-management-console', 2718dc3ddf6SEd Tanous type: 'feature', 2728dc3ddf6SEd Tanous value: 'disabled', 2738dc3ddf6SEd Tanous description: '''Enable the IBM management console specific functionality. 2748dc3ddf6SEd Tanous Paths are under /ibm/v1/''', 2758dc3ddf6SEd Tanous) 2768dc3ddf6SEd Tanous 277c5bcf35fSEd Tanous# BMCWEB_GOOGLE_API 2788dc3ddf6SEd Tanousoption( 2798dc3ddf6SEd Tanous 'google-api', 2808dc3ddf6SEd Tanous type: 'feature', 2818dc3ddf6SEd Tanous value: 'disabled', 2828dc3ddf6SEd Tanous description: '''Enable the Google specific functionality. Paths are under 2838dc3ddf6SEd Tanous /google/v1/''', 2848dc3ddf6SEd Tanous) 2858dc3ddf6SEd Tanous 286c5bcf35fSEd Tanous# BMCWEB_HTTP_BODY_LIMIT 2878dc3ddf6SEd Tanousoption( 2888dc3ddf6SEd Tanous 'http-body-limit', 2898dc3ddf6SEd Tanous type: 'integer', 2908dc3ddf6SEd Tanous min: 0, 2918dc3ddf6SEd Tanous max: 512, 2928dc3ddf6SEd Tanous value: 30, 2938dc3ddf6SEd Tanous description: 'Specifies the http request body length limit', 2948dc3ddf6SEd Tanous) 2958dc3ddf6SEd Tanous 296c5bcf35fSEd Tanous# BMCWEB_REDFISH_NEW_POWERSUBSYSTEM_THERMALSUBSYSTEM 2978dc3ddf6SEd Tanousoption( 2988dc3ddf6SEd Tanous 'redfish-new-powersubsystem-thermalsubsystem', 2998dc3ddf6SEd Tanous type: 'feature', 3008dc3ddf6SEd Tanous value: 'enabled', 3018dc3ddf6SEd Tanous description: '''Enable/disable the new PowerSubsystem, ThermalSubsystem, 3028dc3ddf6SEd Tanous and all children schemas. This includes displaying all 3038dc3ddf6SEd Tanous sensors in the SensorCollection.''', 3048dc3ddf6SEd Tanous) 3058dc3ddf6SEd Tanous 306c5bcf35fSEd Tanous# BMCWEB_REDFISH_ALLOW_DEPRECATED_POWER_THERMAL 3078dc3ddf6SEd Tanousoption( 3088dc3ddf6SEd Tanous 'redfish-allow-deprecated-power-thermal', 3098dc3ddf6SEd Tanous type: 'feature', 3108dc3ddf6SEd Tanous value: 'enabled', 3118dc3ddf6SEd Tanous description: '''Enable/disable the old Power / Thermal. The default 3128dc3ddf6SEd Tanous condition is allowing the old Power / Thermal. This 3138dc3ddf6SEd Tanous will be disabled by default June 2024. ''', 3148dc3ddf6SEd Tanous) 3158dc3ddf6SEd Tanous 316c5bcf35fSEd Tanous# BMCWEB_REDFISH_OEM_MANAGER_FAN_DATA 3178dc3ddf6SEd Tanousoption( 3188dc3ddf6SEd Tanous 'redfish-oem-manager-fan-data', 3198dc3ddf6SEd Tanous type: 'feature', 3208dc3ddf6SEd Tanous value: 'enabled', 3218dc3ddf6SEd Tanous description: '''Enables Redfish OEM fan data on the manager resource. 3228dc3ddf6SEd Tanous This includes PID and Stepwise controller data. See 3231d19d872SMyung Bae OpenBMCManager schema for more detail.''', 3248dc3ddf6SEd Tanous) 3258dc3ddf6SEd Tanous 326c5bcf35fSEd Tanous# BMCWEB_REDFISH_UPDATESERVICE_USE_DBUS 3278dc3ddf6SEd Tanousoption( 3288dc3ddf6SEd Tanous 'redfish-updateservice-use-dbus', 3298dc3ddf6SEd Tanous type: 'feature', 33064fa9167SJagpal Singh Gill value: 'enabled', 3318dc3ddf6SEd Tanous description: '''Enables xyz.openbmc_project.Software.Update D-Bus interface 3328dc3ddf6SEd Tanous to propagate UpdateService requests to the corresponding 3338dc3ddf6SEd Tanous updater daemons instead of moving files to /tmp/images dir. 3348dc3ddf6SEd Tanous This option is temporary, should not be enabled on any 3358dc3ddf6SEd Tanous production systems. The code will be moved to the normal 3368dc3ddf6SEd Tanous code update flow and the option will be removed at the end 3378dc3ddf6SEd Tanous of Q3 2024. 3388dc3ddf6SEd Tanous ''', 3398dc3ddf6SEd Tanous) 3408dc3ddf6SEd Tanous 3416a37140aSEd Tanous# BMCWEB_REDFISH_ALLOW_SIMPLE_UPDATE 3426a37140aSEd Tanousoption( 3436a37140aSEd Tanous 'redfish-allow-simple-update', 3446a37140aSEd Tanous type: 'feature', 3456a37140aSEd Tanous value: 'disabled', 3466a37140aSEd Tanous description: '''Enables Redfish UpdateService SimpleUpdate Action. Note 3476a37140aSEd Tanous that at this time this option is non-functional. Redfish 3486a37140aSEd Tanous recommends using MultiPartUpdate.''', 3496a37140aSEd Tanous) 3506a37140aSEd Tanous 3516a37140aSEd Tanous 3528dc3ddf6SEd Tanousoption( 3538dc3ddf6SEd Tanous 'https_port', 3548dc3ddf6SEd Tanous type: 'integer', 355796ba93bSEd Tanous min: -1, 3568dc3ddf6SEd Tanous max: 65535, 3578dc3ddf6SEd Tanous value: 443, 358796ba93bSEd Tanous description: '''HTTPS default port number. Set to -1 to disable and rely 359796ba93bSEd Tanous only on additional_ports''', 3608dc3ddf6SEd Tanous) 3618dc3ddf6SEd Tanous 362796ba93bSEd Tanous 363796ba93bSEd Tanous# Additional ports 364796ba93bSEd Tanous# This series of options below allows setting up non-trivial deployments of 365796ba93bSEd Tanous# bmcweb, binding specific ports, authentication profiles, and device binds to 366796ba93bSEd Tanous# multiple ports. 367796ba93bSEd Tanous# Setting these options incorrectly can have severe security consequences and 368796ba93bSEd Tanous# should be reserved for platform experts familiar with their particular 369796ba93bSEd Tanous# platforms security requirements. 370796ba93bSEd Tanous 371796ba93bSEd Tanousoption( 372796ba93bSEd Tanous 'additional-ports', 373796ba93bSEd Tanous type: 'array', 374796ba93bSEd Tanous value: [], 375796ba93bSEd Tanous description: '''Additional ports to listen to. Allows bmcweb to listen to 376796ba93bSEd Tanous multiple ports at a given protocol''', 377796ba93bSEd Tanous) 378796ba93bSEd Tanous 379796ba93bSEd Tanousoption( 380796ba93bSEd Tanous 'additional-protocol', 381796ba93bSEd Tanous type: 'array', 382796ba93bSEd Tanous value: [], 383796ba93bSEd Tanous description: '''Allows specifying a specific protocol type for a given 384796ba93bSEd Tanous additional-ports index. Allows setting http, https, or both 385796ba93bSEd Tanous to each socket index. If not provided for a given 386796ba93bSEd Tanous additional-ports index, assumes https.''', 387796ba93bSEd Tanous) 388796ba93bSEd Tanous 389796ba93bSEd Tanousoption( 390796ba93bSEd Tanous 'additional-bind-to-device', 391796ba93bSEd Tanous type: 'array', 392796ba93bSEd Tanous value: [], 393796ba93bSEd Tanous description: '''Allows specifying an SO_BINDTODEVICE or BindToDevice systemd 394796ba93bSEd Tanous directive for each additional socket file. If not provided 395796ba93bSEd Tanous for a given additional-ports index, assumes bind to all 396796ba93bSEd Tanous devices''', 397796ba93bSEd Tanous) 398796ba93bSEd Tanous 399796ba93bSEd Tanousoption( 400796ba93bSEd Tanous 'additional-auth', 401796ba93bSEd Tanous type: 'array', 402796ba93bSEd Tanous value: [], 403796ba93bSEd Tanous description: '''Allows specifying an authentication profile for each socket 404796ba93bSEd Tanous created with additional-ports. Allows auth or noauth, and 405796ba93bSEd Tanous defaults to auth if not provided. If noauth is provided, 406796ba93bSEd Tanous authentication will not be performed for a given socket/port 407796ba93bSEd Tanous index.''', 408796ba93bSEd Tanous) 409796ba93bSEd Tanous# end additional ports 410796ba93bSEd Tanous 411c5bcf35fSEd Tanous# BMCWEB_DNS_RESOLVER 4128dc3ddf6SEd Tanousoption( 4138dc3ddf6SEd Tanous 'dns-resolver', 4148dc3ddf6SEd Tanous type: 'combo', 4158dc3ddf6SEd Tanous choices: ['systemd-dbus', 'asio'], 4168dc3ddf6SEd Tanous value: 'systemd-dbus', 4178dc3ddf6SEd Tanous description: '''Sets which DNS resolver backend should be used. 4188dc3ddf6SEd Tanous systemd-dbus uses the Systemd ResolveHostname on dbus, but requires dbus 4198dc3ddf6SEd Tanous support. asio relies on boost::asio::tcp::resolver, but cannot resolve 4208dc3ddf6SEd Tanous names when boost threading is disabled.''', 4218dc3ddf6SEd Tanous) 4228dc3ddf6SEd Tanous 423c5bcf35fSEd Tanous# BMCWEB_REDFISH_AGGREGATION 4248dc3ddf6SEd Tanousoption( 4258dc3ddf6SEd Tanous 'redfish-aggregation', 4268dc3ddf6SEd Tanous type: 'feature', 4278dc3ddf6SEd Tanous value: 'disabled', 4288dc3ddf6SEd Tanous description: 'Allows this BMC to aggregate resources from satellite BMCs', 4298dc3ddf6SEd Tanous) 4308dc3ddf6SEd Tanous 431c5bcf35fSEd Tanous# BMCWEB_HYPERVISOR_COMPUTER_SYSTEM 4328dc3ddf6SEd Tanousoption( 43368896206SGunnar Mills 'hypervisor-computer-system', 43468896206SGunnar Mills type: 'feature', 43568896206SGunnar Mills value: 'disabled', 43668896206SGunnar Mills description: '''This puts a hypervisor computer system resource at 43768896206SGunnar Mills /redfish/v1/Systems/hypervisor. This system resource has children 43868896206SGunnar Mills resources such as EthernetInterfaces and ComputerSystem.Reset.''', 43968896206SGunnar Mills) 44068896206SGunnar Mills 441c5bcf35fSEd Tanous# BMCWEB_EXPERIMENTAL_REDFISH_MULTI_COMPUTER_SYSTEM 44268896206SGunnar Millsoption( 4438dc3ddf6SEd Tanous 'experimental-redfish-multi-computer-system', 4448dc3ddf6SEd Tanous type: 'feature', 4458dc3ddf6SEd Tanous value: 'disabled', 4468dc3ddf6SEd Tanous description: '''This is a temporary option flag for staging the 4478dc3ddf6SEd Tanous ComputerSystemCollection transition to multi-host. It, as well as the code 448ef0b2d46Smox669 still beneath it will be removed on 6/1/2025. Do not enable in a 4498dc3ddf6SEd Tanous production environment, or where API stability is required.''', 4508dc3ddf6SEd Tanous) 4518dc3ddf6SEd Tanous 452c5bcf35fSEd Tanous# BMCWEB_EXPERIMENTAL_HTTP2 4538dc3ddf6SEd Tanousoption( 4548dc3ddf6SEd Tanous 'experimental-http2', 4558dc3ddf6SEd Tanous type: 'feature', 4568dc3ddf6SEd Tanous value: 'disabled', 4578dc3ddf6SEd Tanous description: '''Enable HTTP/2 protocol support using nghttp2. Do not rely 4588dc3ddf6SEd Tanous on this option for any production systems. It may have 4598dc3ddf6SEd Tanous behavior changes or be removed at any time.''', 4608dc3ddf6SEd Tanous) 4618dc3ddf6SEd Tanous 462cf9085acSrohitpai# BMCWEB_WATCHDOG_TIMEOUT 463cf9085acSrohitpaioption( 464cf9085acSrohitpai 'watchdog-timeout-seconds', 465cf9085acSrohitpai type: 'integer', 466cf9085acSrohitpai min: 0, 467cf9085acSrohitpai max: 600, 468cf9085acSrohitpai value: 120, 469cf9085acSrohitpai description: '''Specifies the systemd watchdog timeout interval in seconds. 470cf9085acSrohitpai Set to 0 to disable the watchdog.''', 471cf9085acSrohitpai) 472cf9085acSrohitpai 4738dc3ddf6SEd Tanous# Insecure options. Every option that starts with a `insecure` flag should 4748dc3ddf6SEd Tanous# not be enabled by default for any platform, unless the author fully comprehends 4758dc3ddf6SEd Tanous# the implications of doing so.In general, enabling these options will cause security 4768dc3ddf6SEd Tanous# problems of varying degrees 4778dc3ddf6SEd Tanous 478c5bcf35fSEd Tanous# BMCWEB_INSECURE_DISABLE_CSRF 4798dc3ddf6SEd Tanousoption( 4808dc3ddf6SEd Tanous 'insecure-disable-csrf', 4818dc3ddf6SEd Tanous type: 'feature', 4828dc3ddf6SEd Tanous value: 'disabled', 4838dc3ddf6SEd Tanous description: '''Disable CSRF prevention checks.Should be set to false for 4848dc3ddf6SEd Tanous production systems.''', 4858dc3ddf6SEd Tanous) 4868dc3ddf6SEd Tanous 487c5bcf35fSEd Tanous# BMCWEB_INSECURE_DISABLE_SSL 4888dc3ddf6SEd Tanousoption( 4898dc3ddf6SEd Tanous 'insecure-disable-ssl', 4908dc3ddf6SEd Tanous type: 'feature', 4918dc3ddf6SEd Tanous value: 'disabled', 4928dc3ddf6SEd Tanous description: '''Disable SSL ports. Should be set to false for production 4938dc3ddf6SEd Tanous systems.''', 4948dc3ddf6SEd Tanous) 4958dc3ddf6SEd Tanous 496c5bcf35fSEd Tanous# BMCWEB_INSECURE_DISABLE_AUTH 4978dc3ddf6SEd Tanousoption( 4988dc3ddf6SEd Tanous 'insecure-disable-auth', 4998dc3ddf6SEd Tanous type: 'feature', 5008dc3ddf6SEd Tanous value: 'disabled', 5018dc3ddf6SEd Tanous description: '''Disable authentication and authoriztion on all ports. 5028dc3ddf6SEd Tanous Should be set to false for production systems.''', 5038dc3ddf6SEd Tanous) 5048dc3ddf6SEd Tanous 505c5bcf35fSEd Tanous# BMCWEB_INSECURE_IGNORE_CONTENT_TYPE 5068dc3ddf6SEd Tanousoption( 5078dc3ddf6SEd Tanous 'insecure-ignore-content-type', 5088dc3ddf6SEd Tanous type: 'feature', 5098dc3ddf6SEd Tanous value: 'disabled', 5108dc3ddf6SEd Tanous description: '''Allows parsing PUT/POST/PATCH content as JSON regardless 5118dc3ddf6SEd Tanous of the presence of the content-type header. Enabling this 5128dc3ddf6SEd Tanous conflicts with the input parsing guidelines, but may be 5138dc3ddf6SEd Tanous required to support old clients that may not set the 5148dc3ddf6SEd Tanous Content-Type header on payloads.''', 5158dc3ddf6SEd Tanous) 5168dc3ddf6SEd Tanous 517c5bcf35fSEd Tanous# BMCWEB_INSECURE_PUSH_STYLE_NOTIFICATION 5188dc3ddf6SEd Tanousoption( 5198dc3ddf6SEd Tanous 'insecure-push-style-notification', 5208dc3ddf6SEd Tanous type: 'feature', 5218dc3ddf6SEd Tanous value: 'disabled', 5228dc3ddf6SEd Tanous description: 'Enable HTTP push style eventing feature', 5238dc3ddf6SEd Tanous) 5248dc3ddf6SEd Tanous 525c5bcf35fSEd Tanous# BMCWEB_INSECURE_ENABLE_REDFISH_QUERY 5268dc3ddf6SEd Tanousoption( 5278dc3ddf6SEd Tanous 'insecure-enable-redfish-query', 5288dc3ddf6SEd Tanous type: 'feature', 5298dc3ddf6SEd Tanous value: 'disabled', 5308dc3ddf6SEd Tanous description: '''Enables Redfish expand query parameter. This feature is 5318dc3ddf6SEd Tanous experimental, and has not been tested against the full 5328dc3ddf6SEd Tanous limits of user-facing behavior. It is not recommended to 5338dc3ddf6SEd Tanous enable on production systems at this time. Other query 5348dc3ddf6SEd Tanous parameters such as only are not controlled by this option.''', 5358dc3ddf6SEd Tanous) 536