Environment variables suffixed by "_FILE" to set for the cert's service for your selected dnsProvider

How often we run the ocsinventory-agent service

The root directory for file URLs used with the Cypher LOAD CSV clause

Whether to add a separate nginx server block that permanently redirects (301) all plain HTTP traffic to HTTPS

Repeat a key when it is held down (false) or display the accented character selector (true)

Apple menu > System Preferences > Sound

Make a feedback sound when the system volume changed

Target location for VST3 Plugins

Daemon process priority for FAHClient. 0 is the default Unix process priority, 19 is the lowest.

Nix daemon process CPU scheduling policy

Whether to enable the AppArmor Mandatory Access Control system

Path of the database plugin directory

Address or CIDR subnets

StrongSwan default: []

Address or CIDR subnets

StrongSwan default: []

Address or CIDR subnets

StrongSwan default: []

Tracing configuration

Size of each cache chunk given in powers of 2. 0 resets the chunk size to its default values (13 (8 KB) for memcache, 18-20 (256 KB to 1 MB) for diskcache)

When enabled, force overwriting of the Atuin configuration file ($XDG_CONFIG_HOME/atuin/config.toml)

Whether to reset the Open vSwitch configuration database to a default configuration on every start of the systemd ovsdb.service.

Whether to run brew services start for the formula and register it to launch at login (or boot)

This optional key specifies whether listen(2) or connect(2) should be called on the created file descriptor

Python environment to run jupyterlab

Customizing will affect the packages available in the jupyterlab server and the default kernel provided

ActivityPub private key

Match windows where wm name contains string.

Disable to prevent loading default key bindings.

This optional key specifies whether listen(2) or connect(2) should be called on the created file descriptor

By default pam-u2f module reads the keys from $XDG_CONFIG_HOME/Yubico/u2f_keys (or $HOME/.config/Yubico/u2f_keys if XDG variable is not set)

Default strategy on discharging

Enable debug log messages

File containing the password for the mpd daemon

Whether to enable HTTPS in addition to plain HTTP

Whether the Mattermost config.json is writeable by Mattermost

Duration (roughly in seconds) of the moratorium on swap allocation that is instated if disk space runs out, or the cooldown time after a new swapfile is successfully allocated before swapspace will consider deallocating swap space again

Effect to show files when clicked. fan: fan-out effect, grid: box, list: list

Whether to copy the DSCP (Differentiated Services Field Codepoint) header field to/from the outer IP header in tunnel mode

Netfilter mark and mask for output traffic

Whether to set mark_in on the inbound SA

By default, H2O, without prejudice, will use as many TLS versions & cipher suites as it & the TLS library (OpenSSL) can support

Defines how much detail should be present in MeiliSearch's logs

Additional PHP extensions to use for Nextcloud

Whether to enable placement of new tabs at the end of the tab bar.

Whether to add a separate nginx server block that permanently redirects (301) all plain HTTP traffic to HTTPS

Whether to enable and configure a local PostgreSQL server by creating a user and database for weblate

Path to xen.efi. pkgs.xen is patched to install the xen.efi file on $boot/boot/xen.efi, but an unpatched Xen build may install it somewhere else, such as $out/boot/efi/efi/nixos/xen.efi

If enabled, the Nix store in the VM is made writable by layering an overlay filesystem on top of the host's Nix store

Set to 'Dark' to enable dark mode

Whether to serve a default robots.txt that denies access to common AI bots by name and all other bots by wildcard.

What is the maximum timeout (in seconds) that will be set for job when using this Runner. 0 (default) simply means don't limit

An attribute set providing additional container settings in addition to the default properties

Default admin username.

Only log messages with the given severity or above.

null will default to info.

Match windows that wm class contains string.

Sets the padding around status icons in the menu bar.

The number of seconds to delay before the password will be required to unlock or stop the screen saver (the grace period).

IPsec replay window to configure for this CHILD_SA

Pads ESP packets with additional data to have a consistent ESP packet size for improved Traffic Flow Confidentiality

The base directory for ActiveMQ's configuration

Address or CIDR subnets

StrongSwan default: []

Whether to enable showing the clock with second precision, instead of minutes.

Internal GitLab server used for API requests, useful if you want to send that traffic over an internal load balancer

This option allows you to define APs for one or multiple physical radios

Kinds of items to show

The path (inside the VM) to the device containing the EFI System Partition (ESP)

Multiple monitor configuration, just specify a list of XRandR outputs

The filesystem path to which screencaptures should be written.

The addresses of all replicas in the cluster

Whether to add a separate nginx server block that permanently redirects (301) all plain HTTP traffic to HTTPS

The login method

Specifies whether vdirsyncer should request vCards in version 4.0

Specifies the path to muchsync on the server

Whether to enable using zfsGetType if your zfs get supports a -t argument for filtering by dataset type at all AND lists properties for snapshots by default when recursing, so that there is too much data to process while searching for backup plans

Packages to which no replacements should be applied

Enables custom address sorting configuration for getaddrinfo(3) according to RFC 3484

Set the default logging verbosity level.

Borg command to use for archive creation

The port where the host can be reached

Set the log target and format.

null will default to logger:stderr.

Tracing configuration

Whether to enable update notifications for extensions

An attribute set that assigns a key press to an action using a key symbol

The default search engine used in the Private Browsing.

Sets MangoHud settings per application

Collect and save data from UniFi alarms to influxdb and Loki.

Collect and save data from UniFi events to influxdb and Loki.

List of ports that Synapse should listen on, their purpose and their configuration

Grouping strategy when showing windows from an application. false means "One at a time" true means "All at once"

Use childless IKE_SA initiation (allow, prefer, force or never)

The shell (/bin/sh) command executed once the proxy starts

Max qps allowed from whitelisted sources. 0 means unlimited

A file containing the superuser password

The default method used to determine the paths state

Whether to add a separate nginx server block that redirects (defaults to 301, configurable with redirectCode) all plain HTTP traffic to HTTPS

Always show file extensions in Finder

When using the SLiRP user networking (default), this option allows to forward ports to/from the host/guest.

Contains the builder command used to populate an image, honoring all options except the -c <path-to-default-configuration> argument

The mandatory base directory for cryptographic objects of this policy

An attribute set that assigns a key press to an action using a key symbol

What interface to use for hardware acceleration.

• null: default behavior
  • if nixpkgs.config.rocmSupport is enabled, uses "rocm"
  • if nixpkgs.config.cudaSupport is enabled, uses "cuda"
  • otherwise defaults to false
• false: disable GPU, only use CPU
• "rocm": supported by most modern AMD GPUs
  • may require overriding gpu type with services.ollama.rocmOverrideGfx if rocm doesn't detect your AMD gpu
• "cuda": supported by most modern NVIDIA GPUs

The character to display for non-breaking spaces

This optional key is used to control whether your job is to be kept continuously running or to let demand and conditions control the invocation

Only listen to incoming requests on specific IP/host