kanidm_unix_common/
constants.rs

1use crate::unix_config::{HomeAttr, UidAttr};
2
3pub const DEFAULT_CONFIG_PATH: &str = env!("KANIDM_RESOLVER_CONFIG_PATH");
4pub const DEFAULT_SOCK_PATH: &str = "/var/run/kanidm-unixd/sock";
5pub const DEFAULT_TASK_SOCK_PATH: &str = "/var/run/kanidm-unixd/task_sock";
6pub const DEFAULT_PERSISTENT_DB_PATH: &str = "/var/lib/kanidm-unixd/kanidm.db";
7pub const DEFAULT_CACHE_DB_PATH: &str = "/var/cache/kanidm-unixd/kanidm.cache.db";
8pub const DEFAULT_CONN_TIMEOUT: u64 = 2;
9pub const DEFAULT_CACHE_TIMEOUT_MINIMUM: u64 = 60; // seconds
10pub const DEFAULT_CACHE_TIMEOUT_MAXIMUM: u64 = 24 * 3600; // seconds
11pub const DEFAULT_CACHE_TIMEOUT: u64 = 300; // seconds
12pub const DEFAULT_CACHE_TIMEOUT_JITTER_MS: u64 = 10_000; //milliseconds
13pub const DEFAULT_OFFLINE_PROVIDER_CHECK_TIME: u64 = 180; // seconds
14pub const DEFAULT_SHELL: &str = env!("KANIDM_RESOLVER_UNIX_SHELL_PATH");
15pub const DEFAULT_HOME_PREFIX: &str = "/home/";
16pub const DEFAULT_HOME_ATTR: HomeAttr = HomeAttr::Uuid;
17pub const DEFAULT_HOME_ALIAS: Option<HomeAttr> = Some(HomeAttr::Spn);
18pub const DEFAULT_USE_ETC_SKEL: bool = false;
19pub const DEFAULT_UID_ATTR_MAP: UidAttr = UidAttr::Spn;
20pub const DEFAULT_GID_ATTR_MAP: UidAttr = UidAttr::Spn;
21pub const DEFAULT_SELINUX: bool = true;
22pub const DEFAULT_TPM_TCTI_NAME: &str = "device:/dev/tpmrm0";
23pub const DEFAULT_HSM_PIN_PATH: &str = "/var/lib/kanidm-unixd/hsm-pin";
24pub const DEFAULT_KANIDM_SERVICE_ACCOUNT_TOKEN_PATH: &str =
25    env!("KANIDM_RESOLVER_SERVICE_ACCOUNT_TOKEN_PATH");
26
27#[cfg(all(target_family = "unix", not(target_os = "freebsd")))]
28pub const DEFAULT_SHELL_SEARCH_PATHS: &[&str] = &["/bin"];
29
30#[cfg(all(target_family = "unix", target_os = "freebsd"))]
31pub const DEFAULT_SHELL_SEARCH_PATHS: &[&str] = &["/bin", "/usr/local/bin"];
32
33// The minimum size of a buffer for the unix stream codec
34pub const CODEC_MIMIMUM_BYTESMUT_ALLOCATION: usize = 64;
35// If the codec buffer exceeds this limit, then we swap the buffer
36// with a fresh one to prevent memory explosions.
37pub const CODEC_BYTESMUT_ALLOCATION_LIMIT: usize = 1024 * 1024;
38
39#[cfg(all(target_family = "unix", not(target_os = "freebsd")))]
40pub const SYSTEM_SHADOW_PATH: &str = "/etc/shadow";
41
42#[cfg(all(target_family = "unix", target_os = "freebsd"))]
43pub const SYSTEM_SHADOW_PATH: &str = "/etc/master.passwd";
44
45pub const SYSTEM_PASSWD_PATH: &str = "/etc/passwd";
46pub const SYSTEM_GROUP_PATH: &str = "/etc/group";