The terminal permissions: the login tty will be owned by the TTYGROUP group, and the permissions will be set to TTYPERM

Base DN to use when performing LDAP operations.

Adds uwsgi_pass directive and sets recommended proxy headers if recommendedUwsgiSettings is enabled.

The slock package to use.

The kanboard package to use.

Initial password set for the temporary admin user

Signing salt

Port on which immich-kiosk will listen.

Whether to enable Goss daemon.

Whether to enable Rust utilities for interacting with hardware from TUXEDO Computers.

The beszel package to use.

Extra nftables rules to prepend to the generated ones

These lines go to the end of the location verbatim.

Datasets to create under the tank and boot zpools.

NOTE: This option is used only at image creation time, and does not attempt to declaratively create or manage datasets on an existing system.

Options to be added to config.php, as a nix attribute set

Extra lines to be added verbatim to dnsdist.conf.

The dokuwiki package to use.

See configurationFile.

configurationFile takes precedence over configuration.

The dwm-status package to use.

User name of file owner

List of relay configurations for importing historical events

Storage types ([SSD]/[DISK]/[ARCHIVE]/[RAM_DISK]) for HDFS storage policies.

Whether to enable gateway role for deploying hadoop configs.

Guaranteed minimum hops for httpproxy tunnels.

Autobrr configuration options

Additional command line parameters

Hostname shown in peer list and web console.

This option effectively allows adding setuid/setgid bits, capabilities, changing file ownership and permissions of a program without directly modifying it

Specification of pages to be ignored by web crawlers

Enables support for IEEE 802.11be (WiFi 7, EHT)

Tags to place on the shipped log messages

Listen addresses for this virtual host

vid:pid of either the PCI or USB vendor and product ID

Whether to enable Gatus.

Collects number of keypresses per hour per key used to generate a heatmap.

Attribute set of arbitrary config options

Fluent Bit configuration

Displays a CAPTCHA challenge for users that register externally.

Listen IP address of the endpoint

Shell commands to execute when the event is triggered.

How should the speed curve look like

(key=value) Configuration to be written to runtime.properties of the druid Druid Overlord https://druid.apache.org/docs/latest/configuration/index.html

Whether to enable libeufin core banking system and web interface.

Parameters that will be passed to the kernel kexec-ed on crash.

LibreSpeed configuration written as Nix expression

Whether to enable git-lfs (Large File Storage).

Owner to set for devices of the msr kernel subsystem.

Group which users must be in to use ydotool.

Whether to enable journaldriver to forward journald logs to Stackdriver Logging.

Directory containing torrent files, or if you're using a torrent client integration and injection - your torrent client's .torrent file store/cache.

The docling-serve package to use.

Setting this to true will enable the Press to Select functions like tapping the control stick to simulate a left click, and setting false will disable it.

Whether to enable bazarr, a subtitle manager for Sonarr and Radarr.

Path to YAML rules configuration

Data directory for elasticsearch.

Whether to enable hid-fanatecff, a Linux kernel driver that aims to add support for Fanatec devices.

Contents of the GoToSocial YAML config

A file containing the various secrets

Selects the access log format written to log files

Number of fdbserver processes to run.

Extra command line flags to pass to HDFS NameNode

Basic Auth protection for a vhost

The user that you will authenticate with in the Grafana webhook settings

Literal contents to append to the end of actkbd configuration file.

Optional path to a custom atalkd.conf file

This is optional and is by default off, because most users will not need it

Cryptpad configuration settings

Whether to wrap the interpreter in a shell script

Whether to enable ryzen_monitor_ng, a userspace application for setting and getting Ryzen SMU (System Management Unit) parameters via the ryzen_smu kernel driver

Whether to enable HTTPS in addition to plain HTTP

The maximum number of times the system clock will be stepped.

List of paths to exclude from backups

User account under which Klipper runs

Enable billing Cron-Jobs on the local instance

Whether to automatically open the daemon port in the firewall.

The horizontal spacing between characters in pixels.

Path the service has access to

Use this option to configure name resolution and DNS caching.

Enables rtl-sdr udev rules, ensures 'plugdev' group exists, and blacklists DVB kernel modules

Specify the location on the ESP where the UKI is placed.

Path to the directory storing the hooks

The gitlab-shell package to use.

Whether to enable dynamic Boost balances power between the CPU and the GPU for improved performance on supported laptops using the nvidia-powerd daemon

Whether to enable the ByeDPI service.

Whether to enable bash completions for xonsh.

Database for the Media API.

Issue the reloadxml command to FreeSWITCH when configuration directory changes (instead of restart)

Configuration written to guacamole.properties.

Whether to enable Cert Spotter, a Certificate Transparency log monitor.

Whether to automatically open the necessary ports in the firewall.

A list of extra domain names, which are included in the one certificate to be issued.

Whether to enable the icingaweb2 web interface.

The caddy package to use.

Makes this vhost the default.

Run duplicity with the given frequency (see systemd.time(7) for the format)

Whether to enable the HTTP/2 protocol

Log level

A list of gateway groups (sites) which can reach the resource and may be used to connect to it.

The dbus-broker package to use.

CCache directory