Whether to run the check command with the provided checkOpts options.

Address to bind on for API connections relied by the reverse proxy/tls terminator.

Port to bind on for API connections relied by the reverse proxy/tls terminator.

If the specified units are started at the same time as this unit, delay this unit until they have started.

The repo of the Helm chart

Shell commands to run when file has changed between generations

Shell commands to run when file has changed between generations

Whether to enable storage service.

URI to bind the wyoming server to.

The path of a PEM encoded TLS private key

The path of a PEM encoded TLS private key

Print global archive statistics upon completion

Name of the heat source.

Attribute set of NetBird client daemons, by default each one will:

1. be manageable using dedicated tooling:

• netbird-<name> script,
• NetBird - netbird-<name> graphical interface when appropriate (see ui.enable),

2. run as a netbird-<name>.service,
3. listen for incoming remote connections on the port 51820 (openFirewall by default),
4. manage the netbird-<name> wireguard interface,
5. use the /var/lib/netbird-/config.json configuration file,
6. override /var/lib/netbird-/config.json with values from /etc/netbird-/config.d/*.json,
7. (hardened) be locally manageable by netbird-<name> system group,

With following caveats:

• multiple daemons will interfere with each other's DNS resolution of netbird.cloud, but should remain fully operational otherwise

Automatically start this unit at the given date/time, which must be in the format described in systemd.time(7)

Additional command line parameters

Hostname of server running iodined

Location of the DokuWiki state directory.

Whether to run the rspamd worker.

A list of options for 'restic check'.

Whether to create the volume on boot.

The path of a device which is mounted for the volume.

The plugin.

Basic Auth protection for a vhost

Port number of Go Ethereum WebSocket API.

Additional names of virtual hosts served by this virtual host configuration.

Keeps the specified running while this unit is running

TTL for dnssec records

Specifies the frequency band to use, possible values are 2g for 2.4 GHz, 5g for 5 GHz, 6g for 6 GHz and 60g for 60 GHz.

If set, the pam_mysql module will be used to authenticate users against a MySQL/MariaDB database.

The hash of the packaged Helm chart

Number of ElGamal/AES tags to send.

The schedule in which data is persisted to disk, represented as a list of lists where the first element represent the amount of seconds and the second the number of changes

Path to a certificate signing request to apply when fetching the certificate.

Arguments passed to date to create a timestamp suffix for the archive name.

If the specified units are stopped or restarted, then this unit is stopped or restarted as well.

If the specified units are stopped or restarted, then this unit is stopped or restarted as well.

Start the specified units when this unit is started.

Start the specified units when this unit is started.

If set, the calling user's SSH agent is used to authenticate against the configured keys

Absolute path to the certificate to load

Require TLS or TLS-PSK encryption

Require TLS or TLS-PSK encryption

Name of the theme to use for the lightdm-gtk-greeter.

URL of the accounts server.

The number of distinct storage nodes required to store a file.

Name to match.

User or group to restrict

Path to the directory where the pastes will be saved to

Network interface to bind to.

Name of the font to use.

Adds DirectoryIndex directive

Alias directory for requests

Name of the user to log in

Limit refresh time for secondary zones

The delay time (in microseconds) on failure.

Additional TLS/SSL-related configuration options

Whether to try to create home directories for users with $HOMEs pointing to nonexistent locations on session login.

The external address where the host can be reached

List of packages containing uvcvideo dynamic controls rules

(optional) human-readable name for peer

(optional) human-readable name for peer

Your yandex.com login name.

Keeps the specified running while this unit is running

Whether to allow users in the 'wireshark' group to capture USB traffic

A systemd service name to use (without .service suffix).

A systemd service name to use (without .service suffix).

Type of this limit

This option provides a simple way to serve individual, static files.

Whether to enable udev rules for keychron QMK based keyboards.

A local file path specifying the location of the mount point.

Name of the wrapper that is installed into PATH

Path to the key file.

Number of ElGamal/AES tags to send.

Path to the SSH host public key.

Maps kanidm groups to values for the claim.

Swap size in MB for the machine

Number of CPUs to allocate to the machine

A list of one or more units that are activated when this unit enters the "failed" state.

A list of one or more units that are activated when this unit enters the "inactive" state.

Order of this location block in relation to the others in the vhost

Optional slot number of the token that stores the certificate.

Shell commands to run after borg create

Whether to run 'restic check' with the provided checkOpts options

This optional key can be used to request that the service be registered with the mDNSResponder(8)

Each attribute in this set specifies an option in the [Unit] section of the unit

Whether to enable the QUIC transport protocol

Specify the bind mode that the bind is used in

The account type

The port where the host can be reached

The znapzend backup plan to use for the source

The path to the xkb compat file

Set the logcheck level.

Number of daily snapshots.

Whether to enable this source.

The user's shell

Additional nftables rules to be appended to the input-allow chain

Subordinate user ids that user is allowed to use

Subordinate group ids that user is allowed to use

Database user.