Path to a file containing the secret key.

Path to a file containing the public key of the remote Rosenpass peer.

Makes user-profiles globally available under nextcloud.tld/u/user.name

Settings for customizing the keybinding to integrate your shell with intelli-shell

Whether to enable streaming via TCP.

Whether to enable transaction merge support.

Grafana notification policies configuration in Nix

The path the search index will be created in.

URL of the local API.

How often to rotate the logs

If set, shows a contact email address when rendering error pages

The path to the signing private key file, used to sign requests and events.

  nix-shell -p dendrite --command "generate-keys --private-key matrix_key.pem"

Whether to enable the default included frontend with a dashboard.

The database connection string for the libeufin-bank database.

Delete a file when it reaches a certain age

The email of the default Grafana Admin, created on startup.

The maximum charge level to help reduce battery wear:

• high_capacity charges to 100% (driver default)
• balanced charges to 90%
• stationary charges to 80% (maximum lifespan)

Note: Regardless of the configured charging profile, the operating system will always report the battery as being charged to 100%.

The file that holds the logging configuration.

Defines the base domain to create the hostnames for MagicDNS

See torrc manual.

Path to the output directory for backups.

Settings to configure backend server

Grafana dashboard configuration in Nix

Heat pressure sources affected by the fan.

URL to the Stash Box graphql api

The path to a file containing the secret used as django's SECRET_KEY.

Set to true to log the sql calls and execution times

The network family that the metrics server should bind to

The path where the collected RPKI data is stored.

User for anonymous PDF creation

Name to use for the device.

Declaratively define NetworkManager profiles

Whether to limit cookies to a secure channel.

The server_name is the name of this server

The server_name is the name of this server

Whether to serve a wildcard record for ZeroTier Nodes.

Height of the PNG used to display the alerting graph.

Path to the Xen Store log file.

Whether to apply bandwidth limits to devices in the same broadcast domain as the local device.

IP and port to listen on for GRPC requests

Whether to apply bandwidth limits to devices in the same broadcast domain as the local device.

See torrc manual.

See torrc manual.

See torrc manual.

Prometheus Alertmanager URL

SQLAlchemy connection string for the database.

SQLAlchemy connection string for the database.

SQLAlchemy connection string for the database.

Maximum number of outstanding watch events per watch.

The option "enabled" takes 3 values - "yes", "no", "detection-only". "yes" enables both detection and the parser, "no" disables both, and "detection-only" enables protocol detection only (parser disabled).

Configuration for /etc/ocsinventory-agent/ocsinventory-agent.cfg

Whether to enable KeePassXC.

Parameter-sets for each instance of hddfancontrol.

Override the default search path for man(1), apropos(1), and makewhatis(8)

The room ID or alias where moderators can use the bot's functionality

The URI of the OCS Inventory server where to send the inventory file

The user of the file

Tweak CFS latency parameters when going on/off battery

See torrc manual.

Values other than "production" adds a banner to each page.

Whether to enable this angrr policy.

Whether to keep the last booted system generation

URL under which the media proxy is publicly acccessible.

Lifespan of errored download tasks.

Additional settings for /etc/fastnetmon/traffic_db.conf

GlobalProtect-openconnect configuration

IP and port to listen on for HTTP requests, in the format of ip:port

Socket.io port that the web client is going to connect to

Additional arguments for asyncpg.create_pool() or sqlite3.connect()

Initial preferences are used to configure the browser for the first run

The file access mode to use when creating this file or directory.

The return address that you want to appear on emails sent by the Nextcloud server, for example nc-admin@example.com, substituting your own domain, of course.

Hostname shown in peer list and web console.

Retention period for the GC roots matched by this policy.

Regex pattern to match the GC root path.

See torrc manual.

Specifies the JDBC driver class to use.

Name of the mute time interval, must be unique

Set verbosity of transmission messages.

Name to be used as client identity for EHLO in SMTP dialog.

List of domains delivered via the relay transport.

https://www.postfix.org/postconf.5.html#relay_domains

The name of this installation.

Logging level for the Xen Store.

The type of operation to perform on the file

Whether to integrate the MCP server config from programs.mcp.servers into programs.codex.settings.mcp_servers

Wildcard path of the hwmon pwm file

Use redpiler automatically

Where to listen for RPC connections

Database connection string

Commands to run every time focused monitor changes.

Whether to enable restricting user creation.

Free-form configuration for script_exporter, expressed as a Nix attrset and rendered to YAML.

Migration note: The previous format using script = "sleep 5" is no longer supported

External filter program to further filter GC roots matched by this policy.

Add cache bypass headers to responses from /api/* to avoid issues with proxies such as Cloudflare.

These options manage the trade-off between battery charging and CPU performance when the USB-C power supply cannot provide sufficient power for both simultaneously:

• charge_battery prioritizes battery charging (driver default)
• performance prioritizes maximum CPU performance

File path where the logs will be written

Set labels to ignore when syncing from local tags to remote labels (after translations).

Name of the script.

Config file version.

Directory where to download torrents.