| options/nixos/services.logind.lidSwitchExternalPower | Specifies what to do when the laptop lid is closed
and the system is on external power
|
| options/nixos/services.quorum.blockperiod | Default minimum difference between two consecutive block's timestamps in seconds.
|
| options/nixos/services.mpd.musicDirectory | The directory or NFS/SMB network share where MPD reads music from
|
| options/nixos/services.apcupsd.configText | Contents of the runtime configuration file, apcupsd.conf
|
| options/nixos/services.invidious.database.port | The port of the database Invidious should use
|
| options/nixos/security.acme.defaults.webroot | Where the webroot of the HTTP vhost is located.
.well-known/acme-challenge/ directory
will be created below the webroot if it doesn't exist.
http://example.org/.well-known/acme-challenge/ must also
be available (notice unencrypted HTTP).
|
| options/nixos/nix.settings.auto-optimise-store | If set to true, Nix automatically detects files in the store that have
identical contents, and replaces them with hard links to a single copy
|
| options/nixos/services.httpd.virtualHosts.<name>.extraConfig | These lines go to httpd.conf verbatim
|
| options/nixos/security.acme.defaults.dnsProvider | DNS Challenge provider
|
| options/nixos/services.prosody.muc.*.roomDefaultLanguage | Default room language.
|
| options/nixos/services.postgresql.dataDir | The data directory for PostgreSQL
|
| options/nixos/services.nextcloud.datadir | Nextcloud's data storage path
|
| options/nixos/services.nylon.<name>.nrConnections | The number of allowed simultaneous connections to the daemon, default 10.
|
| options/home-manager/programs.neomutt.sourcePrimaryAccount | Whether to enable source the primary account by default.
|
| options/home-manager/wayland.windowManager.sway.config.terminal | Default terminal to run.
|
| options/home-manager/programs.ghostty.clearDefaultKeybinds | Whether to clear default keybinds.
|
| options/home-manager/xdg.configFile.<name>.recursive | If the file source is a directory, then this option
determines whether the directory should be recursively
linked to the target location
|
| options/nixos/services.vsftpd.userlistFile | Newline separated list of names to be allowed/denied if userlistEnable
is true
|
| options/nixos/services.zabbixWeb.nginx.virtualHost.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| options/nixos/services.zabbixWeb.httpd.virtualHost.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| options/nixos/services.vsftpd.virtualUseLocalPrivs | If enabled, virtual users will use the same privileges as local
users
|
| options/darwin/services.postgresql.dataDir | The data directory for PostgreSQL
|
| options/darwin/system.defaults.dock.persistent-apps.*.app | An application to be added to the dock.
|
| options/darwin/nixpkgs.flake.source | The path to the nixpkgs sources used to build the system
|
| options/nixos/services.input-remapper.enableUdevRules | Whether to enable udev rules added by input-remapper to handle hotplugged devices
|
| options/nixos/services.jitsi-meet.interfaceConfig | Client-side web-app interface settings that override the defaults in interface_config.js
|
| options/nixos/boot.initrd.network.flushBeforeStage2 | Whether to clear the configuration of the interfaces that were set up in
the initrd right before stage 2 takes over
|
| options/nixos/programs.wireshark.enable | Whether to add Wireshark to the global environment and create a 'wireshark'
group
|
| options/nixos/security.acme.defaults.renewInterval | Systemd calendar expression when to check for renewal
|
| options/nixos/programs.dsearch.systemd.target | The systemd target that will automatically start the dsearch service
|
| options/nixos/programs.ssh.knownHosts.<name>.hostNames | A list of host names and/or IP numbers used for accessing
the host's ssh service
|
| options/nixos/networking.fooOverUDP.<name>.protocol | Protocol number of the encapsulated packets
|
| options/nixos/services.schleuder.listDefaults | Default settings for lists (list-defaults.yml)
|
| options/nixos/services.tt-rss.sessionCookieLifetime | Default lifetime of a session (e.g. login) cookie
|
| options/nixos/services.openvscode-server.group | The group to run openvscode-server under
|
| options/home-manager/launchd.agents.<name>.config.SessionCreate | This key specifies that the job should be spawned into a new security
audit session rather than the default session for the context is belongs
to
|
| options/nixos/users.extraUsers.<name>.ignoreShellProgramCheck | By default, nixos will check that programs
|
| options/nixos/systemd.user.services.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| options/darwin/launchd.daemons.<name>.serviceConfig.TimeOut | The recommended idle time out (in seconds) to pass to the job
|
| options/darwin/programs.ssh.knownHosts.<name>.hostNames | The set of system-wide known SSH hosts
|
| options/nixos/services.strongswan-swanctl.swanctl.connections.<name>.proposals | A proposal is a set of algorithms
|
| options/nixos/services.postgresql.ensureUsers.*.ensureClauses.login | Grants the user, created by the ensureUser attr, login permissions
|
| options/nixos/services.strongswan-swanctl.swanctl.connections.<name>.pull | If the default of yes is used, Mode Config works in pull mode, where the
initiator actively requests a virtual IP
|
| options/nixos/services.icecream.scheduler.netName | Network name for the icecream scheduler
|
| options/nixos/services.libinput.mouse.clickMethod | Enables a click method
|
| options/nixos/services.bind.cacheNetworks | What networks are allowed to use us as a resolver
|
| options/nixos/services.earlyoom.killHook | An absolute path to an executable to be run for each process killed
|
| options/nixos/services.drupal.sites.<name>.virtualHost.addSSL | Whether to enable HTTPS in addition to plain HTTP
|
| options/nixos/networking.interfaces.<name>.mtu | MTU size for packets leaving the interface
|
| options/nixos/services.hostapd.radios.<name>.wifi4.enable | Enables support for IEEE 802.11n (WiFi 4, HT)
|
| options/nixos/services.syncoid.interval | Run syncoid at this interval
|
| options/nixos/services.shorewall6.enable | Whether to enable Shorewall IPv6 Firewall.
Enabling this service WILL disable the existing NixOS
firewall! Default firewall rules provided by packages are not
considered at the moment.
|
| options/nixos/services.opensnitch.rules | Declarative configuration of firewall rules
|
| options/nixos/services.suricata.settings.rule-files | Files to load suricata-update managed rules, relative to 'default-rule-path'.
|
| options/nixos/services.prosody.muc.*.roomDefaultMembersOnly | If set, the MUC rooms will only be accessible to the members by default.
|
| options/home-manager/xsession.windowManager.i3.config.terminal | Default terminal to run.
|
| options/home-manager/launchd.agents.<name>.config.Sockets.<name>.SockType | This optional key tells launchctl what type of socket to create
|
| options/home-manager/wayland.windowManager.sway.config.modifier | Modifier key that is used for all default keybindings.
|
| options/home-manager/targets.darwin.defaults."com.apple.finder".ShowPathBar | Show the path bar at the bottom of a Finder window
|
| options/darwin/launchd.user.agents.<name>.serviceConfig.TimeOut | The recommended idle time out (in seconds) to pass to the job
|
| options/darwin/system.defaults.dock.persistent-apps.*.file | A file to be added to the dock.
|
| options/nixos/services.biboumi.settings.persistent_by_default | Whether all rooms will be persistent by default:
the value of the “persistent” option in the global configuration of each
user will be “true”, but the value of each individual room will still
default to false
|
| options/nixos/boot.initrd.luks.devices.<name>.fido2.passwordLess | Defines whatever to use an empty string as a default salt
|
| options/nixos/services.broadcast-box.settings | Attribute set of environment variables.
https://github.com/Glimesh/broadcast-box#environment-variables
The status API exposes stream keys so DISABLE_STATUS is enabled
by default.
|
| options/nixos/services.jmusicbot.stateDir | The directory where config.txt and serversettings.json is saved
|
| options/nixos/services.jellyfin.openFirewall | Open the default ports in the firewall for the media server
|
| options/nixos/services.sabnzbd.allowConfigWrite | By default we create the sabnzbd configuration read-only,
which keeps the nixos configuration as the single source
of truth
|
| options/nixos/services.neo4j.bolt.sslPolicy | Neo4j SSL policy for BOLT traffic
|
| options/home-manager/programs.nushell.settings | Nushell settings
|
| options/home-manager/services.podman.machines.<name>.volumes | Volumes to mount in the machine, specified as source:target pairs
|
| options/home-manager/targets.genericLinux.nixGL.vulkan.enable | Whether to enable Vulkan in nixGL wrappers
|
| options/home-manager/services.jellyfin-mpv-shim.mpvBindings | mpv input bindings to use for jellyfin-mpv-shim
|
| options/home-manager/programs.ssh.matchBlocks.<name>.addKeysToAgent | When enabled, a private key that is used during authentication will be
added to ssh-agent if it is running (with confirmation enabled if
set to 'confirm')
|
| options/home-manager/programs.gnome-terminal.profile.<name>.colors | The terminal colors, null to use system default.
|
| options/home-manager/services.podman.machines.<name>.timezone | Timezone to set in the machine
|
| options/nixos/services.powerdns-admin.secretKeyFile | The secret used to create cookies
|
| options/nixos/services.k3s.autoDeployCharts.<name>.values | Override default chart values via Nix expressions
|
| options/darwin/programs.bash.completion.enable | Enable bash completion for all interactive bash shells
|
| options/darwin/system.defaults.NSGlobalDomain.AppleShowScrollBars | When to show the scrollbars
|
| options/darwin/launchd.daemons.<name>.serviceConfig.ExitTimeOut | The amount of time launchd waits before sending a SIGKILL signal
|
| options/nixos/services.grafana.settings.users.default_language | This setting configures the default UI language, which must be a supported IETF language tag, such as en-US.
|
| options/nixos/services.strongswan-swanctl.swanctl.connections.<name>.version | IKE major version to use for connection.
- 1 uses IKEv1 aka ISAKMP,
- 2 uses IKEv2.
- A connection using the default of 0 accepts both IKEv1 and IKEv2 as
responder, and initiates the connection actively with IKEv2
|
| options/darwin/system.defaults.NSGlobalDomain.NSAutomaticCapitalizationEnabled | Whether to enable automatic capitalization
|
| options/nixos/services.eris-server.listenCoap | Server CoAP listen address
|
| options/nixos/programs.chromium.homepageLocation | Chromium default homepage
|
| options/nixos/security.acme.defaults.reloadServices | The list of systemd services to call systemctl try-reload-or-restart
on.
|
| options/nixos/services.gitlab-runner.services.<name>.limit | Limit how many jobs can be handled concurrently by this service.
0 (default) simply means don't limit.
|
| options/nixos/programs.nh.flake | The string that will be used for the NH_FLAKE environment variable.
NH_FLAKE is used by nh as the default flake for performing actions, such as
nh os switch
|
| options/nixos/services.howdy.enable | Whether to enable Howdy and its PAM module for face recognition
|
| options/nixos/services.searx.configureUwsgi | Whether to run searx in uWSGI as a "vassal", instead of using its
built-in HTTP server
|
| options/nixos/services.pipewire.systemWide | If true, a system-wide PipeWire service and socket is enabled
allowing all users in the "pipewire" group to use it simultaneously
|
| options/home-manager/accounts.calendar.accounts.<name>.khal.type | Either a single calendar (calendar which is the default) or a directory with multiple calendars (discover).
|
| options/home-manager/wayland.windowManager.sway.config.bars.*.hiddenState | The default bar mode when 'bar.mode' == 'hide'.
|
| options/home-manager/targets.darwin.defaults."com.apple.dock".tilesize | Sets the size of the dock.
|
| options/home-manager/programs.radicle.uri.web-rad.browser | Name of the XDG Desktop Entry for your browser
|
| options/home-manager/services.podman.machines.<name>.username | Username used in the machine image
|
| options/home-manager/targets.darwin.defaults."com.apple.dock".autohide | Hide the Dock automatically
|
| options/home-manager/services.protonmail-bridge.logLevel | Log level of the ProtonMail Bridge service
|
| options/home-manager/xsession.windowManager.i3.config.modifier | Modifier key that is used for all default keybindings.
|
| options/nixos/services.rke2.autoDeployCharts.<name>.values | Override default chart values via Nix expressions
|