The user that owns the Homebrew installation

Configuration for users.

Definition of per-user launchd agents

The name of the user account

The user's UID.

The user's primary group.

The user's home directory

The user's shell

Whether to make the user account hidden.

Create the home directory when creating the user.

User under which to run the service

The set of packages that should be made availabe to the user

Packages added to the service's PATH environment variable

Shell commands executed as the service's main process.

List of users owned and managed by nix-darwin

Name of the user the AutoSSH session should run as

Definition of per-user launchd agents

Configuration for groups.

Command executed as the service's main process.

This optional key specifies the user to run the job as

A short description of the user account, typically the user's full name

A set of environment variables to be set on all future processes launched by launchd in the caller's context

Each attribute in this set specifies an option for a key in the plist. https://developer.apple.com/legacy/library/documentation/Darwin/Reference/ManPages/man5/launchd.plist.5.html

By default, nix-darwin will check that programs

This optional key specifies the group to run the job as

The group's GID.

This optional key specifies what nice(3) value should be applied to the daemon.

This required key uniquely identifies the job to launchd.

This optional key specifies that launchd should adjust its log mask temporarily to LOG_DEBUG while dealing with this job.

This optional key is used to control whether your job is launched once at the time the job is loaded

The recommended idle time out (in seconds) to pass to the job

This optional key specifies what value should be passed to umask(2) before running the job

The amount of time launchd waits before sending a SIGKILL signal

This optional key causes the job to be started if any one of the listed paths are modified.

Environment variables passed to the service's processes.

This optional key describes, at a high level, the intended purpose of the job

This optional key causes the job to be started every time a filesystem is mounted.

The group's name

This key was used in Mac OS X 10.4 to control whether a job was kept alive or not

This optional key specifies whether initgroups(3) should be called before running the job

This optional key specifies whether the job participates in advanced communication with launchd

This configuration file only applies to the hosts listed with this key

This key maps to the first argument of execvp(3)

List of groups owned and managed by nix-darwin

This optional key specifies whether the job can only be run once and only once

This configuration file only applies to hosts NOT listed with this key

This optional key specifies whether the kernel should consider this daemon to be low priority when doing file system I/O.

This optional key specifies what file should be used for data being supplied to stdin when using stdio(3).

Set of files that have to be linked in ~/Library/LaunchAgents.

This optional key specifies what file should be used for data being sent to stdout when using stdio(3).

This optional key specifies that launchd should instruct the kernel to have the job wait for a debugger to attach before any code in the job is executed.

This key specifies that the job should be spawned into a new security audit session rather than the default session for the context is belongs to

This optional key specifies the node to connect(2) or bind(2) to.

This optional key is used to specify a directory to chroot(2) to before running the job.

This optional key tells launchctl what type of socket to create

This flag causes launchd to use the glob(3) mechanism to update the program arguments before invocation.

This optional key specifies what file should be used for data being sent to stderr when using stdio(3).

This configuration file only applies to sessions of the type specified

This optional key implies SockFamily is set to "Unix"

The group's members.

This optional key specifies the mode of the socket

This optional key can be used to specifically request that "IPv4" or "IPv6" socket(s) be created.

Text of the file.

Resource limits to be imposed on the job

Resource limits to be imposed on the job

The maximum amount of cpu time (in seconds) to be used by each process.

The maximum amount of cpu time (in seconds) to be used by each process.

The largest size (in bytes) core file that may be created.

The largest size (in bytes) core file that may be created.

This optional key can be used to request that the service be registered with the mDNSResponder(8)

This optional key causes the job to be started every N seconds

When a job dies, launchd kills any remaining processes with the same process group ID as the job

The largest size (in bytes) file that may be created.

The largest size (in bytes) file that may be created.

Multiple GitHub Runners

This optional key is used to specify a directory to chdir(2) to before running the job.

This optional key specifies the service on the node to connect(2) or bind(2) to.

This optional key specifies whether listen(2) or connect(2) should be called on the created file descriptor

This optional key is used to specify Mach services to be registered with the Mach bootstrap sub-system

The maximum size (in bytes) of the data segment for a process; this defines how far a program may extend its break with the sbrk(2) system call.

The maximum size (in bytes) of the data segment for a process; this defines how far a program may extend its break with the sbrk(2) system call.

Path of the source file.

Specifies higher-level event types to be used as launch-on-demand event sources

This optional key specifies the protocol to be passed to socket(2)

Name of symlink

This optional key is used to control whether your job is to be kept continuously running or to let demand and conditions control the invocation

List of Homebrew formula repositories to tap

The maximum size (in bytes) of the stack segment for a process; this defines how far a program's stack segment may be extended

The maximum size (in bytes) of the stack segment for a process; this defines how far a program's stack segment may be extended

Whether this file should be generated

This key maps to the second argument of execvp(3)

The maximum size (in bytes) which a process may lock into memory using the mlock(2) function.

The maximum size (in bytes) which a process may lock into memory using the mlock(2) function.

This optional key is a variant of SockPathName

The maximum number of simultaneous processes for this user id

The maximum number of simultaneous processes for this user id

Much like the WatchPaths option, this key will watch the paths for modifications

A list of verbatim OpenSSH public keys that should be added to the user's authorized keys

This optional key is used to specify launch on demand sockets that can be used to let launchd know when to run the job

A list of files each containing one OpenSSH public key that should be added to the user's authorized keys

This key lets one override the default throttling policy imposed on jobs by launchd

The maximum number of open files for this process

The maximum number of open files for this process

This optional key specifies whether the kernel should consider this daemon to be low priority when doing file system I/O when the process is throttled with the Darwin-background classification.

The presence of this key specifies that the daemon expects to be run as if it were launched from inetd.

This optional key can be used to request that the datagram socket join a multicast group

This optional key is used to specify additional environment variables to be set before running the job.

The user used for options that previously applied to the user running darwin-rebuild

This flag instructs launchd that the job promises to use vproc_transaction_begin(3) and vproc_transaction_end(3) to track outstanding transactions that need to be reconciled before the process can safely terminate

The maximum size (in bytes) to which a process's resident set size may grow

The maximum size (in bytes) to which a process's resident set size may grow

This optional key is used as a hint to launchctl(1) that it should not submit this job to launchd when loading a job or jobs

This optional key causes the job to be started every calendar interval as specified

This flag corresponds to the "wait" or "nowait" option of inetd

A list of names of users that have additional rights when connecting to the Nix daemon, such as the ability to specify additional binary caches, or to import unsigned NARs

A list of names of users (separated by whitespace) that are allowed to connect to the Nix daemon

The group's description.

Group under which to run the service

Number of nixbld user accounts created to perform secure concurrent builds

When clone_target is unspecified, this is the name of a formula repository to tap from GitHub using HTTPS

This optional key describes, at a high level, the intended purpose of the job

Enables GnuPG agent for every user session.

This optional key describes, at a high level, the intended purpose of the job

The username to log in as on the remote host

Whether the nix-channel command and state files are made available on the machine

The path to the SSH private key with which to authenticate on the build machine

Enable execution of compinit call for all interactive zsh shells

This optional key specifies the user to run the job as

A list of permissible login shells for user accounts

This optional key specifies the user to run the job as

The user-friendly name for the system, set in System Preferences > Sharing > Computer Name

The session server allows the user to interact with jobs that the Runner is responsible for

If set, the pkgs argument to all nix-darwin modules is the value of this option, extended with nixpkgs.overlays, if that is also set

Name of the user to ensure.

This optional key specifies the group to run the job as

This optional key specifies the group to run the job as

Sets custom user preferences

Apple menu > System Preferences > Users and Groups > Login Options

Auto login the supplied user on boot

If true, the user is prompted for a password when the screen saver is unlocked or stopped

Ensures that the specified users exist and have at least the ensured permissions

A key-value map of user data

Change which processes to show.

• 100: All Processes
• 101: All Processes, Hierarchally
• 102: My Processes
• 103: System Processes
• 104: Other User Processes
• 105: Active Processes
• 106: Inactive Processes
• 107: Windowed Processes Default is 100.

Disables the ability for a user to access the console by typing “>console” for a username at the login window

Whether to enable reattaching a program to the user's bootstrap session

Apple menu > System Preferences > Users and Groups > Login Options

If set to true, the Power Off menu item will be disabled when the user is logged in

The maximum number of simultaneous processes for this user id

The maximum number of simultaneous processes for this user id

The maximum number of simultaneous processes for this user id

The maximum number of simultaneous processes for this user id

Permissions to ensure for the user, specified as an attribute set

Defines the mapping from system users to database users

This optional key specifies whether initgroups(3) should be called before running the job

Whether to run the Nix build users validation checks.

This optional key specifies whether initgroups(3) should be called before running the job

Defines how users authenticate themselves to the server

Apple menu > System Preferences > Users and Groups > Login Options

Allow users to login to the machine as guests using the Guest account

Apple menu > System Preferences > Users and Groups > Login Options

Disables the "Shutdown" option when users are logged in

Apple menu > System Preferences > Users and Groups > Login Options

Disables the “Restart” option when users are logged in

Apple menu > System Preferences > Users and Groups > Login Options

Displays login window as a name and password field instead of a list of users

An attribute set that maps aliases (the top level attribute names in this option) to command strings or directly to build outputs

The set of packages that appear in /run/current-system/sw

List of binary cache URLs that non-root users can use (in addition to those specified using nix.settings.substituters) by passing --option binary-caches to Nix commands.

Set of default packages that aren't strictly necessary for a running system, entries can be removed for a more minimal NixOS installation

Apple menu > System Preferences > Users and Groups > Login Options

Hides the Sleep button on the login screen

Apple menu > System Preferences > Users and Groups > Login Options

Hides the Shut Down button on the login screen

Apple menu > System Preferences > Users and Groups > Login Options

Hides the Restart button on the login screen