| options/nixos/services.shorewall.enable | Whether to enable Shorewall IPv4 Firewall.
Enabling this service WILL disable the existing NixOS
firewall! Default firewall rules provided by packages are not
considered at the moment.
|
| options/home-manager/programs.waylogout.settings | Default arguments to waylogout
|
| options/nixos/services.unpoller.unifi.dynamic | Let prometheus select which controller to poll when scraping
|
| options/nixos/containers.<name>.forwardPorts | List of forwarded ports from host to container
|
| options/nixos/systemd.user.sockets.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| options/nixos/systemd.user.targets.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| options/nixos/services.unpoller.unifi.defaults.url | URL of the Unifi controller.
|
| options/nixos/systemd.services.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| options/darwin/services.github-runners.<name>.workDir | Working directory, available as $GITHUB_WORKSPACE during workflow runs
and used as a default for repository checkouts
|
| options/darwin/users.users.<name>.ignoreShellProgramCheck | By default, nix-darwin will check that programs
|
| options/darwin/system.stateVersion | Every once in a while, a new nix-darwin release may change
configuration defaults in a way incompatible with stateful
data
|
| options/darwin/nixpkgs.buildPlatform | Specifies the platform on which nix-darwin should be built
|
| options/darwin/system.defaults.controlcenter.BatteryShowPercentage | Apple menu > System Preferences > Control Center > Battery
Show a battery percentage in menu bar
|
| options/darwin/system.defaults.NSGlobalDomain.NSAutomaticQuoteSubstitutionEnabled | Whether to enable smart quote substitution
|
| options/nixos/services.sourcehut.builds.group | Group for builds.sr.ht
|
| options/nixos/services.dnsmasq.alwaysKeepRunning | If enabled, systemd will always respawn dnsmasq even if shut down manually
|
| options/nixos/services.akkoma.nginx.forceSSL | Whether to add a separate nginx server block that redirects (defaults
to 301, configurable with redirectCode) all plain HTTP traffic to
HTTPS
|
| options/nixos/services.fluidd.nginx.forceSSL | Whether to add a separate nginx server block that redirects (defaults
to 301, configurable with redirectCode) all plain HTTP traffic to
HTTPS
|
| options/nixos/services.gancio.nginx.forceSSL | Whether to add a separate nginx server block that redirects (defaults
to 301, configurable with redirectCode) all plain HTTP traffic to
HTTPS
|
| options/nixos/services.printing.cups-pdf.enable | Whether to enable the cups-pdf virtual pdf printer backend
|
| options/nixos/services.monica.nginx.forceSSL | Whether to add a separate nginx server block that redirects (defaults
to 301, configurable with redirectCode) all plain HTTP traffic to
HTTPS
|
| options/nixos/services.postfix.settings.main | The main.cf configuration file as key value set
|
| options/nixos/services.mjpg-streamer.outputPlugin | Output plugin. @www@ is substituted for default mjpg-streamer www directory
|
| options/nixos/services.matomo.nginx.forceSSL | Whether to add a separate nginx server block that redirects (defaults
to 301, configurable with redirectCode) all plain HTTP traffic to
HTTPS
|
| options/nixos/services.mattermost.socket.path | Default location for the Mattermost control socket used by mmctl.
|
| options/home-manager/services.xsuspender.defaults | XSuspender defaults.
|
| options/home-manager/programs.gnome-terminal.profile.<name>.font | The font name, null to use system default.
|
| options/home-manager/services.pass-secret-service.storePath | Absolute path to the password store
|
| options/home-manager/programs.kubecolor.enableAlias | When set to true, it will create an alias for kubectl pointing to
kubecolor, thus making kubecolor the default kubectl client.
|
| options/home-manager/xdg.stateFile.<name>.recursive | If the file source is a directory, then this option
determines whether the directory should be recursively
linked to the target location
|
| options/home-manager/programs.zsh.prezto.prompt.pwdLength | Set the working directory prompt display length
|
| options/home-manager/programs.msmtp.configContent | Content added to msmtp config
|
| options/home-manager/xdg.cacheFile.<name>.recursive | If the file source is a directory, then this option
determines whether the directory should be recursively
linked to the target location
|
| options/nixos/containers.<name>.localAddress | The IPv4 address assigned to the interface in the container
|
| options/nixos/services.hylafax.sendmailPath | Path to sendmail program
|
| options/darwin/nixpkgs.flake.setNixPath | Whether to set NIX_PATH to include nixpkgs=flake:nixpkgs such that <nixpkgs>
lookups receive the version of nixpkgs that the system was built with, in concert with
nixpkgs.flake.setFlakeRegistry
|
| options/darwin/launchd.agents.<name>.serviceConfig.TimeOut | The recommended idle time out (in seconds) to pass to the job
|
| options/darwin/homebrew.caskArgs.require_sha | Whether to require casks to have a checksum
|
| options/nixos/<imports = [ pkgs.ghostunnel.services.default ]>.ghostunnel.extraArguments | Extra arguments to pass to ghostunnel server
|
| options/nixos/<imports = [ pkgs.ghostunnel.services.default ]>.ghostunnel.keystore | Path to keystore (combined PEM with cert/key, or PKCS12 keystore)
|
| options/darwin/system.defaults.universalaccess.closeViewZoomFollowsFocus | Follow the keyboard focus while zoomed in
|
| options/darwin/system.defaults.universalaccess.closeViewScrollWheelToggle | Use scroll gesture with the Ctrl (^) modifier key to zoom
|
| options/nixos/services.snapserver.sampleFormat | Default sample format.
|
| options/nixos/services.libvirtd.autoSnapshot.keep | Default number of snapshots to keep for VMs that don't specify a keep value.
|
| options/nixos/services.blendfarm.serverConfig.Port | Default port blendfarm server listens on.
|
| options/nixos/services.moodle.virtualHost.extraConfig | These lines go to httpd.conf verbatim
|
| options/nixos/services.nagios.virtualHost.extraConfig | These lines go to httpd.conf verbatim
|
| options/home-manager/programs.ashell.systemd.target | The systemd target that will automatically start ashell
|
| options/home-manager/programs.pyenv.rootDirectory | The pyenv root directory (PYENV_ROOT).
This deviates from upstream, which uses $HOME/.pyenv
|
| options/home-manager/programs.ssh.matchBlocks.<name>.userKnownHostsFile | Specifies one or more files to use for the user host key
database, separated by whitespace
|
| options/nixos/containers.<name>.localAddress6 | The IPv6 address assigned to the interface in the container
|
| options/darwin/services.sketchybar.config | Contents of sketchybar's configuration file
|
| options/darwin/launchd.daemons.<name>.serviceConfig.RunAtLoad | This optional key is used to control whether your job is launched once at the time the job is loaded
|
| options/darwin/networking.dhcpClientId | The DHCP client identifier to use when requesting an IP address from a DHCP server
|
| options/darwin/homebrew.caskArgs.no_binaries | Whether to disable linking of helper executables
|
| options/nixos/services.postgresql.systemCallFilter.<name>.priority | Set the priority of the system call filter setting
|
| options/nixos/services.stalwart-mail.settings | Configuration options for the Stalwart email server
|
| options/nixos/programs.less.clearDefaultCommands | Clear all default commands
|
| options/nixos/services.cockroachdb.openPorts | Open firewall ports for cluster communication by default
|
| options/nixos/environment.wvdial.pppDefaults | Default ppp settings for wvdial.
|
| options/nixos/services.teeworlds.register | Whether the server registers as a public server in the global server list
|
| options/nixos/services.movim.podConfig.xmppdomain | The default XMPP server domain
|
| options/nixos/services.oauth2-proxy.validateURL | Access token validation endpoint
|
| options/nixos/services.openvscode-server.user | The user to run openvscode-server as
|
| options/nixos/services.prosody.muc.*.roomDefaultPublicJids | If set, the MUC rooms will display the public JIDs by default.
|
| options/nixos/services.tt-rss.updateDaemon.commandFlags | Command-line flags passed to the update daemon
|
| options/home-manager/accounts.email.accounts.<name>.gpg.signByDefault | Sign messages by default.
|
| options/home-manager/programs.notmuch.search.excludeTags | A list of tags that will be excluded from search results by
default
|
| options/home-manager/programs.kakoune.config.autoComplete | Modes in which to display possible completions
|
| options/home-manager/xsession.windowManager.command | Command to use to start the window manager
|
| options/nixos/services.rke2.cisHardening | Enable CIS Hardening for RKE2
|
| options/nixos/systemd.sysupdate.reboot.timerConfig | The timer configuration for rebooting after an update
|
| options/nixos/services.github-runners.<name>.extraLabels | Extra labels in addition to the default (unless disabled through the noDefaultLabels option)
|
| options/nixos/services.kubernetes.secretsPath | Default location for kubernetes secrets
|
| options/nixos/services.unpoller.unifi.defaults.user | Unifi service user name.
|
| options/nixos/services.jirafeau.nginxConfig.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| options/darwin/homebrew.caskArgs.qlplugindir | Target location for QuickLook Plugins
|
| options/darwin/launchd.agents.<name>.serviceConfig.ExitTimeOut | The amount of time launchd waits before sending a SIGKILL signal
|
| options/darwin/services.github-runners.<name>.extraLabels | Extra labels in addition to the default (unless disabled through the noDefaultLabels option)
|
| options/darwin/launchd.user.agents.<name>.serviceConfig.RunAtLoad | This optional key is used to control whether your job is launched once at the time the job is loaded
|
| options/darwin/homebrew.caskArgs.prefpanedir | Target location for Preference Panes
|
| options/darwin/system.defaults.NSGlobalDomain.NSAutomaticPeriodSubstitutionEnabled | Whether to enable smart period substitution
|
| options/nixos/services.misskey.reverseProxy.webserver.nginx.locations.<name>.fastcgiParams | FastCGI parameters to override
|
| options/nixos/services.hbase-standalone.dataDir | Specifies location of HBase database files
|
| options/nixos/nixpkgs.flake.source | The path to the nixpkgs sources used to build the system
|
| options/nixos/services.neo4j.ssl.policies.<name>.ciphers | Restrict the allowed ciphers of this policy to those defined
here
|
| options/nixos/services.stargazer.certLifetime | How long certs generated by Stargazer should live for
|
| options/nixos/services.rstudio-server.serverWorkingDir | Default working directory for server (server-working-dir in rserver.conf).
|
| options/nixos/services.onlyoffice.loglevel | Default loglevel to use for documentserver and converter
|
| options/nixos/services.smartd.autodetect | Whenever smartd should monitor all devices connected to the
machine at the time it's being started (the default)
|
| options/home-manager/services.vdirsyncer.configFile | Optional configuration file to link to use instead of
the default file ($XDG_CONFIG_HOME/vdirsyncer/config).
|
| options/home-manager/programs.firefox.profiles.<name>.isDefault | Whether this is a default profile.
|
| options/nixos/services.github-runners.<name>.runnerGroup | Name of the runner group to add this runner to (defaults to the default runner group)
|
| options/nixos/systemd.services.<name>.enableDefaultPath | Whether to append a minimal default PATH environment variable to the service, containing common system utilities.
|
| options/darwin/services.github-runners.<name>.runnerGroup | Name of the runner group to add this runner to (defaults to the default runner group)
|
| options/darwin/system.defaults.dock.persistent-apps | Persistent applications, spacers, files, and folders in the dock.
|
| options/darwin/system.defaults.WindowManager.HideDesktop | Hide items in Stage Manager.
|
| options/nixos/services.prometheus.exporters.unpoller.controllers.*.sites | List of site names for which statistics should be exported
|
| options/nixos/programs.pay-respects.aiIntegration | Whether to enable pay-respects' LLM integration
|
| options/nixos/services.matrix-continuwuity.settings.global.unix_socket_path | Listen on a UNIX socket at the specified path
|