mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2024-12-23 23:50:03 -06:00
d86b57c057
For now all the default shells of users and admin are hardcoded in different parts of the project. This makes it impossible to run the test suite against the setup, which has the default shell differed from '/bin/sh'. The single configuration point for the shell of users and admin is added to overcome this limitation. Fixes: https://pagure.io/freeipa/issue/7978 Signed-off-by: Stanislav Levin <slev@altlinux.org> Reviewed-By: Christian Heimes <cheimes@redhat.com>
59 lines
1.7 KiB
Python
59 lines
1.7 KiB
Python
#
|
|
# Copyright (C) 2015 FreeIPA Contributors see COPYING for license
|
|
#
|
|
|
|
'''
|
|
This base platform module exports platform dependant constants.
|
|
'''
|
|
import sys
|
|
|
|
|
|
class BaseConstantsNamespace:
|
|
IS_64BITS = sys.maxsize > 2 ** 32
|
|
DEFAULT_ADMIN_SHELL = '/bin/bash'
|
|
DEFAULT_SHELL = '/bin/sh'
|
|
DS_USER = 'dirsrv'
|
|
DS_GROUP = 'dirsrv'
|
|
HTTPD_USER = "apache"
|
|
HTTPD_GROUP = "apache"
|
|
GSSPROXY_USER = "root"
|
|
IPA_ADTRUST_PACKAGE_NAME = "freeipa-server-trust-ad"
|
|
IPA_DNS_PACKAGE_NAME = "freeipa-server-dns"
|
|
KDCPROXY_USER = "kdcproxy"
|
|
NAMED_USER = "named"
|
|
NAMED_GROUP = "named"
|
|
NAMED_DATA_DIR = "data/"
|
|
NAMED_ZONE_COMMENT = ""
|
|
PKI_USER = 'pkiuser'
|
|
PKI_GROUP = 'pkiuser'
|
|
# ntpd init variable used for daemon options
|
|
NTPD_OPTS_VAR = "OPTIONS"
|
|
# quote used for daemon options
|
|
NTPD_OPTS_QUOTE = "\""
|
|
ODS_USER = "ods"
|
|
ODS_GROUP = "ods"
|
|
# nfsd init variable used to enable kerberized NFS
|
|
SECURE_NFS_VAR = "SECURE_NFS"
|
|
SELINUX_BOOLEAN_ADTRUST = {
|
|
'samba_portmapper': 'on',
|
|
}
|
|
SELINUX_BOOLEAN_HTTPD = {
|
|
'httpd_can_network_connect': 'on',
|
|
'httpd_manage_ipa': 'on',
|
|
'httpd_run_ipa': 'on',
|
|
'httpd_dbus_sssd': 'on',
|
|
}
|
|
SSSD_USER = "sssd"
|
|
# WSGI module override, only used on Fedora
|
|
MOD_WSGI_PYTHON2 = None
|
|
MOD_WSGI_PYTHON3 = None
|
|
# WSGIDaemonProcess process count. On 64bit platforms, each process
|
|
# consumes about 110 MB RSS, from which are about 35 MB shared.
|
|
WSGI_PROCESSES = 4 if IS_64BITS else 2
|
|
# high ciphers without RC4, MD5, TripleDES, pre-shared key, secure
|
|
# remote password, and DSA cert authentication.
|
|
TLS_HIGH_CIPHERS = "HIGH:!aNULL:!eNULL:!MD5:!RC4:!3DES:!PSK:!SRP:!aDSS"
|
|
|
|
|
|
constants = BaseConstantsNamespace()
|