diff options
-rw-r--r-- | bmcweb_config.h.in | 3 | ||||
-rw-r--r-- | meson.build | 2 | ||||
-rw-r--r-- | meson_options.txt | 1 |
3 files changed, 6 insertions, 0 deletions
diff --git a/bmcweb_config.h.in b/bmcweb_config.h.in index 2e880fc68e..a8e4ccbc91 100644 --- a/bmcweb_config.h.in +++ b/bmcweb_config.h.in @@ -7,7 +7,10 @@ constexpr const int bmcwebInsecureDisableXssPrevention = @BMCWEB_INSECURE_DISABLE_XSS_PREVENTION@; +constexpr const bool bmcwebInsecureEnableQueryParams = @BMCWEB_INSECURE_ENABLE_QUERY_PARAMS@ == 1; + constexpr const size_t bmcwebHttpReqBodyLimitMb = @BMCWEB_HTTP_REQ_BODY_LIMIT_MB@; constexpr const char* mesonInstallPrefix = "@MESON_INSTALL_PREFIX@"; + // clang-format on diff --git a/meson.build b/meson.build index 8e6e83a068..cd90a0cb80 100644 --- a/meson.build +++ b/meson.build @@ -312,6 +312,8 @@ conf_data = configuration_data() conf_data.set('BMCWEB_HTTP_REQ_BODY_LIMIT_MB', get_option('http-body-limit')) xss_enabled = get_option('insecure-disable-xss') conf_data.set10('BMCWEB_INSECURE_DISABLE_XSS_PREVENTION', xss_enabled.enabled()) +enable_redfish_query = get_option('insecure-enable-redfish-query') +conf_data.set10('BMCWEB_INSECURE_ENABLE_QUERY_PARAMS', enable_redfish_query.enabled()) conf_data.set('MESON_INSTALL_PREFIX', get_option('prefix')) conf_data.set('HTTPS_PORT', get_option('https_port')) configure_file(input: 'bmcweb_config.h.in', diff --git a/meson_options.txt b/meson_options.txt index 46616585bb..5b4419d0e7 100644 --- a/meson_options.txt +++ b/meson_options.txt @@ -44,3 +44,4 @@ option ('insecure-disable-auth', type : 'feature', value : 'disabled', descripti option ('insecure-disable-xss', type : 'feature', value : 'disabled', description : 'Disable XSS preventions') option ('insecure-tftp-update', type : 'feature', value : 'disabled', description : '''Enable TFTP based firmware update transactions through Redfish UpdateService.SimpleUpdate.''') option ('insecure-push-style-notification',type : 'feature', value : 'disabled', description : 'Enable HTTP push style eventing feature') +option ('insecure-enable-redfish-query', type : 'feature', value : 'disabled', description : 'Enables Redfish query parameters. This feature is experimental, and has not been tested against the full limits of user-facing behavior. It is not recommended to enable on production systems at this time.') |