| options/nixos/services.taskserver.trust | Determines how client certificates are validated
|
| options/nixos/services.owncast.enable | Whether to enable owncast, a video live streaming solution.
|
| options/nixos/services.prometheus.scrapeConfigs.*.http_sd_configs.*.proxy_url | Optional proxy URL.
|
| options/nixos/services.thinkfan.fans.*.indices | A list of fans to pick in case multiple fans match the query.
|
| options/nixos/services.prometheus.exporters.fastly.listenAddress | Address to listen on.
|
| options/nixos/services.mysqlBackup.singleTransaction | Whether to create database dump in a single transaction
|
| options/nixos/services.nginx.commonHttpConfig | With nginx you must provide common http context definitions before
they are used, e.g. log_format, resolver, etc. inside of server
or location contexts
|
| options/nixos/services.mediawiki.httpd.virtualHost.robotsEntries | Specification of pages to be ignored by web crawlers
|
| options/nixos/services.tor.settings.UseDefaultFallbackDirs | See torrc manual.
|
| options/nixos/services.prometheus.exporters.json.extraFlags | Extra commandline options to pass to the json exporter.
|
| options/nixos/services.prometheus.scrapeConfigs.*.digitalocean_sd_configs | List of DigitalOcean service discovery configurations.
|
| options/nixos/services.pihole-web.hostName | Domain name for the website.
|
| options/nixos/services.nsd.ipFreebind | Whether to bind to nonlocal addresses and interfaces that are down
|
| options/nixos/services.netbird.tunnels.<name>.autoStart | Start the service with the system
|
| options/nixos/services.quickwit.settings.version | Configuration file version.
|
| options/nixos/services.realmd.enable | Whether to enable realmd service for managing system enrollment in Active Directory domains.
|
| options/nixos/services.prosody.muc | Multi User Chat (MUC) configuration
|
| options/nixos/services.movim.nginx.root | The path of the web root directory.
|
| options/nixos/services.transmission.settings.rpc-bind-address | Where to listen for RPC connections
|
| options/nixos/services.nextcloud-spreed-signaling.backends.<name>.secretFile | The path to the file containing the value for backends.<name>.secret
|
| options/nixos/services.rshim.package | The rshim-user-space package to use.
|
| options/nixos/services.oauth2-proxy.clientID | The OAuth Client ID.
|
| options/nixos/services.unbound.localControlSocketPath | When not set to null this option defines the path
at which the unbound remote control socket should be created at
|
| options/nixos/services.prometheus.exporters.snmp.listenAddress | Address to listen on.
|
| options/nixos/services.lokinet.settings.network.exit | Whether to act as an exit node
|
| options/nixos/services.prometheus.exporters.rasdaemon.firewallRules | Specify rules for nftables to add to the input chain
when services.prometheus.exporters.rasdaemon.openFirewall is true.
|
| options/nixos/services.transmission.settings.utp-enabled | Whether to enable Micro Transport Protocol (µTP).
|
| options/nixos/services.mopidy.extensionPackages | Mopidy extensions that should be loaded by the service.
|
| options/nixos/services.pid-fan-controller.settings.heatSources.*.wildcardPath | Path of the heat source's hwmon temp_input file
|
| options/nixos/services.metabase.listen.ip | IP address that Metabase should listen on.
|
| options/nixos/services.limesurvey.httpd.virtualHost.servedFiles | This option provides a simple way to serve individual, static files.
This option has been deprecated and will be removed in a future
version of NixOS
|
| options/nixos/services.radicle.httpd.package | The radicle-httpd package to use.
|
| options/nixos/services.rkvm.client.settings | Structured client daemon configuration
|
| options/nixos/services.prometheus.alertmanagers | A list of alertmanagers to send alerts to
|
| options/nixos/services.monica.database.createLocally | Create the database and database user locally.
|
| options/nixos/services.prometheus.exporters.lnd.lndMacaroonDir | Path to lnd macaroons.
|
| options/nixos/services.monica.nginx.locations.<name>.recommendedProxySettings | Enable recommended proxy settings.
|
| options/nixos/services.sitespeed-io.runs.*.settings | Configuration for sitespeed-io, see
https://www.sitespeed.io/documentation/sitespeed.io/configuration/
for available options
|
| options/nixos/services.phpfpm.pools.<name>.extraConfig | Extra lines that go into the pool configuration
|
| options/nixos/services.opendkim.keyPath | The path that opendkim should put its generated private keys into
|
| options/nixos/services.prometheus.exporters.nats.firewallFilter | Specify a filter for iptables to use when
services.prometheus.exporters.nats.openFirewall
is true
|
| options/nixos/services.nezha-agent.settings.server | Address to the dashboard.
|
| options/nixos/services.limesurvey.nginx.virtualHost.locations.<name>.index | Adds index directive.
|
| options/nixos/services.radicle.checkConfig | Whether to enable checking the config.json file resulting from services.radicle.settings.
|
| options/nixos/services.olivetin.settings.ListenAddressSingleHTTPFrontend | The address to listen on for the internal "microproxy" frontend.
|
| options/nixos/services.thanos.sidecar.prometheus.url | URL at which to reach Prometheus's API
|
| options/nixos/services.lighthouse.validator.metrics.port | Port number of Validator node metrics service.
|
| options/nixos/services.limesurvey.httpd.virtualHost | Apache configuration can be done by adapting services.httpd.virtualHosts.<name>
|
| options/nixos/services.postgresqlWalReceiver.receivers.<name>.compress | Enables gzip compression of write-ahead logs, and specifies the compression level
(0 through 9, 0 being no compression and 9 being best compression)
|
| options/nixos/services.prometheus.exporters.sql.configuration.jobs.<name>.queries.<name>.values | A set of columns that will be used as values of this metric.
|
| options/nixos/services.thinkfan.sensors.*.indices | A list of sensors to pick in case multiple sensors match the query.
|
| options/nixos/services.udev.extraRules | Additional udev rules
|
| options/nixos/services.mchprs.whitelist.enable | Whether or not the whitelist (in whitelist.json) shoud be enabled
|
| options/nixos/services.nginx.virtualHosts.<name>.locations.<name>.proxyPass | Adds proxy_pass directive and sets recommended proxy headers if
recommendedProxySettings is enabled.
|
| options/nixos/services.spiped.config.<name>.disableReresolution | Disable target address re-resolution.
|
| options/nixos/services.prometheus.exporters.domain.firewallRules | Specify rules for nftables to add to the input chain
when services.prometheus.exporters.domain.openFirewall is true.
|
| options/nixos/services.limesurvey.nginx.virtualHost.basicAuth | Basic Auth protection for a vhost
|
| options/nixos/services.openssh.authorizedKeysCommand | Specifies a program to be used to look up the user's public
keys
|
| options/nixos/services.minidlna.settings.root_container | Use a different container as the root of the directory tree presented to clients.
|
| options/nixos/services.nextcloud-spreed-signaling.settings.https.key | Path to the private key used for the HTTPS listener
|
| options/nixos/services.taskserver.allowedClientIDs | A list of regular expressions that are matched against the reported
client id (such as task 2.3.0)
|
| options/nixos/services.nsd.logTimeAscii | Log time in ascii, if false then in unix epoch seconds.
|
| options/nixos/services.typesense.apiKeyFile | Sets the admin api key for typesense
|
| options/nixos/services.netbird.server.signal.port | Internal port of the signal server.
|
| options/nixos/services.sanoid.interval | Run sanoid at this interval
|
| options/nixos/services.strongswan-swanctl.swanctl.connections.<name>.children.<name>.hostaccess | Hostaccess variable to pass to updown script
|
| options/nixos/services.sftpgo.extraArgs | Additional command line arguments to pass to the sftpgo daemon.
|
| options/nixos/services.syncthing.overrideFolders | Whether to delete the folders which are not configured via the
folders option
|
| options/nixos/services.livekit.settings.port | Main TCP port for RoomService and RTC endpoint.
|
| options/nixos/services.umurmur.configFile | Configuration file, default is generated from config.service.umurmur.settings
|
| options/nixos/services.persistent-evdev.devices | A set of virtual proxy device labels with backing physical device ids
|
| options/nixos/services.shoko.package | The shoko package to use.
|
| options/nixos/services.pixelfed.nginx.listen.*.port | Port number to listen on
|
| options/nixos/services.trafficserver.volume | Manage cache space more efficiently and restrict disk usage by
creating cache volumes of different sizes
|
| options/nixos/services.prometheus.exporters.domain.user | User name under which the domain exporter shall be run.
|
| options/nixos/services.mympd.extraGroups | Additional groups for the systemd service.
|
| options/nixos/services.peerflix.downloadDir | Peerflix temporary download directory.
|
| options/nixos/services.limesurvey.enable | Whether to enable Limesurvey web application.
|
| options/nixos/services.prometheus.exporters.rtl_433.channels.*.channel | Channel to match.
|
| options/nixos/services.photonvision.package | The photonvision package to use.
|
| options/nixos/services.prometheus.scrapeConfigs.*.consul_sd_configs.*.datacenter | Consul datacenter
|
| options/nixos/services.prometheus.exporters.jitsi.user | User name under which the jitsi exporter shall be run.
|
| options/nixos/services.photonvision.enable | Whether to enable PhotonVision.
|
| options/nixos/services.miniupnpd.enable | Whether to enable MiniUPnP daemon.
|
| options/nixos/services.prometheus.scrapeConfigs.*.linode_sd_configs.*.oauth2.token_url | The URL to fetch the token from.
|
| options/nixos/services.portunus.ldap.tls | Whether to enable LDAPS protocol
|
| options/nixos/services.rustus.cors | list of origins allowed to upload
|
| options/nixos/services.prometheus.exporters.rtl_433.ids.*.name | Name to match.
|
| options/nixos/services.prometheus.exporters.imap-mailstat.extraFlags | Extra commandline options to pass to the imap-mailstat exporter.
|
| options/nixos/services.opengfw.logFile | File to write the output to instead of systemd.
|
| options/nixos/services.prometheus.exporters.chrony.firewallFilter | Specify a filter for iptables to use when
services.prometheus.exporters.chrony.openFirewall
is true
|
| options/nixos/services.ttyd.clientOptions | Attribute set of client options for xtermjs.
https://xtermjs.org/docs/api/terminal/interfaces/iterminaloptions/
|
| options/nixos/services.prometheus.scrapeConfigs.*.kubernetes_sd_configs.*.namespaces.names | Namespace name.
|
| options/nixos/services.qbittorrent.serverConfig | Free-form settings mapped to the qBittorrent.conf file in the profile
|
| options/nixos/services.mautrix-discord.enable | Whether to enable Mautrix-Discord, a Matrix-Discord puppeting/relay-bot bridge.
|
| options/nixos/services.mlmmj.maintInterval | Time interval between mlmmj-maintd runs, see
systemd.time(7) for format information.
|
| options/nixos/services.monica.poolConfig | Options for the monica PHP pool
|
| options/nixos/services.ombi.openFirewall | Open ports in the firewall for the Ombi web interface.
|
| options/nixos/services.pixelfed.user | User account under which pixelfed runs.
If left as the default value this user will automatically be created
on system activation, otherwise you are responsible for
ensuring the user exists before the pixelfed application starts.
|
| options/nixos/services.thanos.receive.remote-write.address | Address to listen on for remote write requests
|