The group borg is run as

Name of the template, must be unique

Extend silences by adding DURATION seconds

Whether to enable the private rest API for the COLIBRI control interface

The configuration for each network interface

Directory for the ACME challenge, which is public

Whether to enable the firezone headless client.

Network interfaces to be ignored when deciding if the system is online.

This option effectively allows adding setuid/setgid bits, capabilities, changing file ownership and permissions of a program without directly modifying it

(key=value) Configuration to be written to runtime.properties of the druid Druid Coordinator https://druid.apache.org/docs/latest/configuration/index.html

Accept the CA's terms of service

Whether to enable angrr.

The url to the etesync API.

Configure freetds database entries

Extra configuration to be passed in Messages directive.

Whether to enable the influxdb server.

Whether to copy the necessary boot files into /boot, so /nix/store is not needed by the boot loader.

Common name attribute of allowed peer certificates

Size of tmpfs in percentage

Open ports in the firewall for the bazarr web interface.

Automatically rename kit's nodes.

Whether to enable server authentication.

All resources to provision

A shell application which will produce a nix-diff of the system closure with and without facter enabled.

List of relay configurations for blastr

Path to the directory where the dump archives will be stored.

Traffic coming in from these interfaces will be accepted unconditionally

SMTP encryption mechanism to use.

The terminal permissions: the login tty will be owned by the TTYGROUP group, and the permissions will be set to TTYPERM

Minimum remaining validity before renewal in days.

Subnet mask of the interface, specified as the number of bits in the prefix (24).

Basic Auth password file for a vhost

Which port cook-cli server will use.

Whether to start the Keybase service.

Extra flags to pass to the Guix daemon service.

Timeout for completing a TLS handshake to your origin server, if you have chosen to connect Tunnel to an HTTPS server.

Crab-holes config

The clipcat package to use.

Before less opens a file, it first gives your input preprocessor a chance to modify the way the contents of the file are displayed.

Configures the rate limiting burst limit (number of messages per interval) that is applied to all messages generated on the system

Whether to enable Immich Public Proxy.

The from: email address used when sending all essential system emails

Maximum number of latest generations in the boot menu

Path to the executable of the chromium to use.

Whether to enable Druid Coordinator.

Enables left-handed button orientation, i.e. swapping left and right buttons.

If a user fails to authenticate with a second factor, Duo Unix will prompt the user to authenticate again

Port of the database to connect to.

Shell commands to be executed before udev is started to create device nodes.

The config file of crab-hole

The prl-tools package to use.

Protocol of forwarded connection

Whether to enable nginx or not

Selects the default theme on boot

Working directory for the warp-svc daemon.

Extra parameters of this listen directive.

The homebox configuration as environment variables

A list of additional packages supplying kernel modules.

Group davis runs as.

Interface address to bind the endlessh-go daemon to SSH connections.

API URL to proxy artifact requests to.

The host the LDAP is accessible on.

Whether to enable setting up wifi hotspots using create_ap.

Password for primary user

Enable hardware encoding for video transcoding.

Whether to enable environment variables for lists of words.

Whether to use individual -restore calls to apply changes to the firewall

Additional gsettings overrides.

Bind address for socksproxy endpoint.

Whether to enable drupal.

Sieve extensions for use in user scripts

Whether to enable engelsystem, an online tool for coordinating volunteers and shifts on large events.

Group the user belongs to in initrd.

Whether to use binary caches for downloading store paths

Listen port

Defines environment variables.

The less package to use.

Any additional text to be appended to the config.php configuration file

The path to the TLS key.

  nix-shell -p dendrite --command "generate-keys --tls-cert server.crt --tls-key server.key"

Program to run in cage.

Whether to enable Chisel Tunnel Server.

Whether to enable Cyrus IMAP, an email, contacts and calendar server.

The froide-govplan package to use.

Path to root SSL certificate for stapling and client certificates.

Password used for HQPlayer's WebUI

Automatically log in as autoLogin.user.

Whether to enable imaginary image processing microservice.

MySQL database host

A list of users which will not be shown in the display manager.

A string which is prepended to limine.conf

Port for the Periphery agent to listen on.

Whether to enable fzf keybindings.

client id

Maximum number of serial jobs which can run simultaneously.

Server listen address or URL

Path to an environment file, containing the TOKEN environment variable, that holds a token to register at the configured Gitea/Forgejo instance.

Set to false to prohibit users from creating new organizations.

All sandboxes are created under this directory

Optional configuration string for this interface.

Private key file in PEM format.