Here you can provide authelia with configuration files or directories

Name is used as a suffix for the service name, user, and group

Multi-domain protection currently requires multiple instances of Authelia

Additional environment variables to provide to authelia

Your Authelia config.yml as a Nix attribute set

The theme to display.

Level of verbosity for logs.

Format the logs are written as.

The address to listen on.

File path where the logs will be written

The fallback instance name if not configured into the admin UI

Whether to also log to stdout when a file_path is defined.

Enable Metrics.

The address to listen on for metrics

Settings for a cups-pdf instance, see the descriptions in the template config file in the cups-pdf package

The address that Anubis listens to

The ntfy-sh user to use for authenticating with the ntfy-sh instance

Frp configuration, for configuration options see the example of client or server on github.

configuration options for btrbk

Cryptpad configuration settings

Settings to generate easytier-‹name›.toml

Additional policy settings merged into the policy file

Free-form settings written directly to the config.json file

Your instance's hostname

The full URL that the Sharkey instance will be publically accessible on

Freeform configuration via environment variables for Anubis

The base URI below which your pretalx instance will be reachable.

vmalert configuration, passed via command line flags

The domain name of your instance (eg 'hatsu.local').

Instance hostname (base domain name)

The domain name of your instance (eg 'lemmy.ml').

The email for the From: header in emails

A list of names of users that have additional rights when connecting to the Nix daemon, such as the ability to specify additional binary caches, or to import unsigned NARs

The address Anubis' metrics server listens to

Automatically determine the IPv4 address of this peer based on existing peers on network.

The reverse proxy target that Anubis is protecting

config.yaml configuration as a Nix attribute set

Identify different instances on same host

Configure the instance from config server

Free-form settings written directly to the config.json file

Peers to connect initially

Path to the files with alerting and/or recording rules.

Directory under which Actual runs and saves its data

The origin of your Kanidm instance

IPv4 cidr address of this peer in the virtual network

Configuration for act_runner daemon

spool directory

Path to use for the pid file.

The policy file to use

Default 2FA method for new users and fallback for preferred but disabled methods.

output directory; ${HOME} will be expanded to the user's home directory, ${USER} will be expanded to the user name.

Template section of vault-agent

Whether to serve a default robots.txt that denies access to common AI bots by name and all other bots by wildcard.

The network family that Anubis should bind to

path for anonymously created PDF files

Host and port used to connect to a redis instance.

Instance hostname (base domain name)

If you're running a self hosted instance and wish to serve public links, set this to the URL where your albums web app is running.

The path to the password for the specified ntfy-sh user

Path to easytier config file

Hostname shown in peer list and web console.

Prometheus Alertmanager URL

location of GhostScript binary

The primary account of your instance (eg 'example.com').

config.xml configuration as a Nix attribute set

This is the URL that users will enter to load your instance

URL of a cgit instance

Custom base path for this Reposilite instance

The difficulty required for clients to solve the challenge

The name of this installation.

The port of the InfluxDB instance.

User for anonymous PDF creation

The email for the Reply-To: header in emails

Path to use for the pid file.

Datasource compatible with Prometheus HTTP API.

This will contain the contents of cups-pdf.conf for this instance, derived from settings

Configuration of radicle-native-ci

IP or hostname of the InfluxDB instance.

URL of the immich instance.

If set, shows a contact email address when rendering error pages

The network family that the metrics server should bind to

Template section of consul-template

FQDN for the Oncall instance.

File where radicle-native-ci should write the run log.

The domain that Kanidm manages

Rendering mode of grafana-image-renderer:

• default: Creates on browser-instance per rendering request.
• reusable: One browser instance will be started and reused for each rendering request.
• clustered: allows to precisely configure how many browser-instances are supposed to be used

Listener addresses to accept connections from other peers

Directory where per-run directories are stored.

The port Conduit will be running on

The port(s) tuwunel will be running on

Whether to enable Open Graph tag passthrough

Whether to enable Libravatar as profile picture source on your instance

Parameter-sets for each instance of hddfancontrol.

The hosts config to be merged with the settings

EasyTier network name.

The host:port combination or the path to the UNIX socket of a memcached instance

Base URL for build logs (mandatory for access from CI broker page).

Description of the homebridge instance.

The name of the user for this authelia instance.

Compress the btrfs send stream before transferring it from/to remote locations using a compression command.

EasyTier network credential used for verification and encryption

The name of the group for this authelia instance.

Configure the domain name of this Warpgate instance

Whether to enable captive browser, a dedicated Chrome instance to log into captive portals without messing with DNS settings.

Configure this LibreNMS instance as a distributed poller

Whether to enable Authelia instance.

The port(s) continuwuity will be running on

NNTP URLs to this public-inbox instance

POP3 URLs to this public-inbox instance

IMAP URLs to this public-inbox instance

The IP address to connect to the XMPP server on

Your instance's hostname for generating URLs throughout the app

Whether to configure the required settings to use pfix-srsd in the local Postfix instance.

Compression algorithm used by this instance of Reposilite. none reduces usage of CPU & memory, but requires transfering more data.

Extra settings to add to easytier-‹name›.toml.

By default any user can create an account on this gitea instance

The base URL of the ntfy.sh instance.

Whether to configure the required settings to use postsrsd in the local Postfix instance.

Default instance (unit) priority.

List of paths files that follows systemd environmentfile structure

The base path for plugin endpoints

Configure Nginx as a reverse proxy for Cryptpad

Whether to configure the required settings to use postfix-tlspol in the local Postfix instance.

A boolean that controls whether site visitors can create new accounts

The database backend for the service

Default configuration for the loggers used by matrix-synapse and its workers

The authelia package to use.

It is recommended you keep your secrets separate from the configuration

The shell (/bin/sh) command executed once the proxy starts

Configure nginx as a reverse proxy for mastodon

Configuring authelia's secret files via the secrets attribute set is intended to be convenient and help catch cases where values are required to run at all

Path to your JWT secret used during identity verificaton.

Path to your HMAC secret used to sign OIDC JWTs.

Instance ID for when running multiple processes (default null).

Instance name used to distinguish between different instances

uWSGI configuration

Path to your session secret

The instance ID to listen for events for.

Path to your private key file used to encrypt OIDC JWTs.

Instance name.

The instance url to which the provisioning tool should connect.

Instance administrator email.

Path to your storage encryption key.

Whether to enable tweaking of kernel parameters to open many more connections at the same time

Set of btrbk instances

Errbot instance configs

Permits to raise one or more cups-pdf instances

The name identifying the runner instance towards the Gitea/Forgejo instance.

How often this btrbk instance is started

Whether to enable a CUPS printer queue for this instance

Attribute set of vault-agent instances

Data directory for errbot instance.

User under which this instance runs.

The name of the instance.

Whether to enable ytdl-sub instance.

Group under which this instance runs.

Whether to enable this instance of Anubis.

Instance description.

varnishstat -n value.

Settings for LACT

Whether to enable this vault-agent instance.

Whether to enable this v4l2-relayd instance.

Additional settings (see mjolnir default config for available settings)

Add settings here to override NixOS module generated settings

Assign a icinga instance to this transport

Enable the instance.

Attribute set of consul-template instances

Frp instances.

User under which this instance runs.

The configuration settings for ukify

Base URL of your Gitea/Forgejo instance.

This option specifies the Nix package instance to use throughout the system.

Free form attribute set for aMule settings

Group under which this instance runs.

Maximum number of connections per plugin instance.

Whether to enable this cups-pdf instance.

Extra settings appended to the configuration of davfs2

Odoo configuration settings

Plain token to register at the configured Gitea/Forgejo instance.

Whether to enable this consul-template instance.

ncdns settings

Configuration for ytdl-sub instances.

Extra packages to add to GST_PLUGIN_PATH for the instance.

sslh configuration

Whether to enable Gitea Actions Runner instance.

Settings for Newt module, see Newt CLI docs for more information.

The configuration object

Picom settings

Settings for MaryTTS

Group as which this instance of fcgiwrap will be run.

Directory where Akkoma will put uploaded files.

Settings to write to ntp.toml

See https://docs.ntpd-rs.pendulum-project.org/man/ntp.toml.5 for more information about available options.

Settings for the auto-epp application

User as which this instance of fcgiwrap will be run

Settings for rimgo, see the official documentation for supported options.

Path to an environment file, containing the TOKEN environment variable, that holds a token to register at the configured Gitea/Forgejo instance.

Searx settings

Content of the Stubby configuration file

See GitHub for available settings.

Free-form settings written directly to the acme-dns.cfg file

Generates the aria2.conf file

Settings for hickory-dns

.env settings for Movim

Free-form settings written directly to the lldap_config.toml file

URL of the PeerTube instance.

Screego settings passed as Nix attribute set, they will be merged with the defaults

These settings are written to the agent.toml file

Settings for Wakapi

logrotate freeform settings: each attribute here will define its own section, ordered by services.logrotate.settings.<name>.priority, which can either define files to rotate with their settings or settings common to all further files settings

Settings of g3proxy.

Settings for mailman.cfg

Configuration settings for the generated config json file

v4l2-relayd instances to be created.

This option is mapped to the main Privoxy configuration file

Configuration for H2O (see https://h2o.examp1e.net/configure.html)

Define multiple instances of vmalert.

Settings for this slot.

Directory of static files

Settings for pgadmin4. Documentation

Free-form settings written to Draupnir's configuration file

Free-form settings written directly to the config file

See torrc manual for documentation.

See configurationFile.

configurationFile takes precedence over settings.

Settings of uMurmur

YAML settings for maubot

Database settings.

IO settings.

Whether to enable frp.

Contents of sssd.conf.

Configuration for n8n, see https://docs.n8n.io/hosting/environment-variables/configuration-methods/ for supported values.

Settings of OpenBao

Settings passed to OpenGFW. Example config

The number of instances to start

settings-local.yaml for private-gpt

Extra configuration as nix values.

pretix configuration as a Nix attribute set

Options passed to TLP

An attribute set of Anubis instances

Whether to enable this radicle-native-ci instance.

Settings to configure web service

Settings for evremap

Home directory of the Nexus3 instance.

Settings for the public-inbox config file.

Grafana settings

EasyTier instances.

Ethereum Swarm Bee configuration

Kafka broker configuration server.properties

Lemmy configuration

AESM configuration

Stash configuration

The frp consists of client and server

Configuration for ntfy.sh, supported values are here.

Turn-rs server config file

Suricata settings

Instances of clamsmtp to run.

Configuration for fcgiwrap instances.

Configuration of the IFM service

See https://github.com/bitvora/haven for documentation.

Runner name declared to the PeerTube instance.

Configuration settings for the generated config file

An attribute set of database instances as described in: https://pgbackrest.org/configuration.html#section-stanza

Each instance defaults to set pg-host to the attribute's name

Frp configuration, for configuration options see the example of client or server on github.

Free-form settings written directly to the app.ini configfile file

Specify the configuration for Envoy in Nix.

The port qui listens on.

Thinkfan settings

Settings that should be passed to rsync via long options

Path to a file containing the logo of your Hydra instance.

Settings to configure wiki-js

Declarative instance config

Configuration for isso

The global options in config file in yaml format

Attrset of daemon configuration

Declarative NATS configuration

PowerDNS Recursor settings

Configuration for ytdl-sub

Dolibarr settings, see https://github.com/Dolibarr/dolibarr/blob/develop/htdocs/conf/conf.php.example for details.

Settings for MediaMTX

Komga configuration

Global configuration for angrr in TOML format.

Dunst configuration, see dunst(5)

The host address qui listens on.

Configuration for zrepl

Server settings, refer to the documentation for available options

Whether to enable the actkbd key mapping daemon

pretalx configuration as a Nix attribute set

Configuration for Lokinet

Automatic backup of important data to a AWS S3 (or compatible) instance

Configure mailpit instances

Settings for Canaille

General configuration for NFS daemons and tools

Errbot log level

Howdy configuration file

Configuration for Gonic, see https://github.com/sentriz/gonic#configuration-options for supported values.

Configuration of clatd

Configuration for plikd, see https://github.com/root-gg/plik/blob/master/server/plikd.cfg for supported values.

Configuration options for the /etc/omnom/config.yml file.

Application configuration for slskd

Configuration options to set in /etc/nipap/nipap.conf.

Settings for custom DNS providers.

Path to a JSON file containing settings that will be merged with the settings option

Allowed MACs

Defaults to recommended settings from both https://stribika.github.io/2015/01/04/secure-secure-shell.html and https://infosec.mozilla.org/guidelines/openssh#modern-openssh-67

See torrc manual.

Settings option for systemd-logind

SMTP bind interface and port.

The name of this nylon instance.

Environment variables to set for the service

FQDN for the grocy instance.

Settings specific to this plugin.

cgit configuration, see cgitrc(5)

Karma dashboard configuration as nix attributes

Configuration for Hatsu, see

Gitea configuration

Configuration for TuneD

Configuration of uhub

XMRig configuration

Configuration for nvme-rs in TOML format

Port to listen on

Settings for cockpit that will be saved in /etc/cockpit/cockpit.conf

Environment files for this instance

Customize the default settings, refer to https://github.com/kanboard/kanboard/blob/main/config.default.php for details on supported values.

Configuration for dendrite, see: https://github.com/matrix-org/dendrite/blob/main/dendrite-sample.yaml for available options with which to populate settings.

.env settings for Pixelfed

Allows you to host Umami under a subdirectory

Directory to store downloaded files.

See torrc manual.

See torrc manual.

See torrc manual.

Name of the database to use.

Configuration for Gatus

Configuration for ulogd

Configuration for pgSCV, in YAML format

Specify the configuration for Tempo in Nix

This setting is the TCP port that is desired for the daemon to get assigned to.

Settings

Settings to merge with the default configuration

Crab-holes config

See inadyn.conf (5)

INI configuration for Mbpfan.

List of identifiers of errbot admins.

The user under which Anubis is run

The primary legit configuration

Additional configuration (environment variables) for Umami, see https://umami.is/docs/environment-variables for supported values.

See torrc manual.

See torrc manual.

See torrc manual.

TCP port the process should listen to.

Rauc configuration that will be converted to INI

Structured cloud-init configuration.

Options for Kismet

Specify the configuration for Vector in Nix.

IPs the service should listen to.

Local Redis instance name

API key to use when modifying DNS records.

NotifyOSD settings

The port to use.

The port to listen on.

Only allow read operations from this Neo4j instance.

alice-lg configuration, for configuration options see the example on github

Configuration of multiple mautrix-meta instances. services.mautrix-meta.instances.facebook and services.mautrix-meta.instances.instagram come preconfigured with network.mode, appservice.id, bot username, display name and avatar.

Structured configurations of atticd

Garage configuration, see https://garagehq.deuxfleurs.fr/documentation/reference-manual/configuration/ for reference.

See torrc manual.

Anubis policy configuration

Settings to be rendered into the configuration file

PCAP replay settings.

Kea DHCP4 configuration as an attribute set, see https://kea.readthedocs.io/en/kea-3.0.2/arm/dhcp4-srv.html.

Kea DHCP6 configuration as an attribute set, see https://kea.readthedocs.io/en/kea-3.0.2/arm/dhcp6-srv.html.

The port that Stash should listen on.

Settings for Kanidm, see the documentation and example configuration for possible values.

The available options can be found in the example configuration

Configuration for Hebbot, see, for examples:

• https://github.com/matrix-org/twim-config/blob/master/config.toml
• https://gitlab.gnome.org/Teams/Websites/thisweek.gnome.org/-/blob/main/hebbot/config.toml

Kavita configuration options, as configured in appsettings.json.

IP to bind the HTTP API on.

Configuration for Gancio, see https://gancio.org/install/config for supported values.

Contents of the dgraph config

Configuration for rsyncd

Extra paperless config options

Configuration for GoDNS

The sympa.conf configuration file as key value set

The group under which Anubis is run

Options for part-db configuration

TLS backend to use.

Port to listen on (default: 443).

See torrc manual.

See torrc manual.

The ip address that Stash should bind to.

List of paths that ytdl-sub can write to.

The absolute path to the configuration file

evcc configuration as a Nix attribute set

A list of extra flags to be passed to Anubis.

Filename of the Paisa database.

Email notification configuration

Settings option for systemd-oomd

Maximum number of emails to keep

Blocky configuration

Configuration for Erigon Refer to https://github.com/ledgerwatch/erigon#usage for details on supported values.

greetd configuration (documentation) as a Nix attribute set.

GoBGP configuration

The contents of the configuration file for soft-serve

Configuration for Qdrant Refer to https://github.com/qdrant/qdrant/blob/master/config/config.yaml for details on supported values.

Gerrit configuration

Zeyple configuration. refer to https://github.com/infertux/zeyple/blob/master/zeyple/zeyple.conf.example for details on supported values.

The name the camera will show up as.

Neard INI-style configuration file as a Nix attribute set

NNCP configuration, see http://www.nncpgo.org/Configuration.html

Port where lemmy should listen for incoming requests.

Hostname or socket-path to connect to.

Errbot backend name.

PHP-FPM global directives

Renovate's global configuration

Whether to enable listening on the SSL port

qui configuration options

See torrc manual.

The configuration that Mopidy should use

Configuration options to set for the Strfry service

Configuration for MCHPRS via Config.toml

Config options for zenoh.json5 configuration file

List of errbot plugin derivations.

URL of DID PLC directory

Database type.

Whether to enable a Movim instance.

See https://git.sr.ht/~gheartsfield/nostr-rs-relay/#configuration for documentation.

Path to cache

HTTP bind interface and port for UI.

The main.cf configuration file as key value set

See https://github.com/Nefelim4ag/Ananicy/blob/master/ananicy.d/ananicy.conf

See https://app.radicle.xyz/nodes/seed.radicle.garden/rad:z3gqcJUoA1n9HaHKufZs5FCSGazv5/tree/radicle/src/node/config.rs#L275

Additional configuration to extend clight.conf

Configuration options to set in configuration.py

The primary sftpgo configuration

Configuration for Porn-Vault

PgHero configuration

Kea DHCP-DDNS configuration as an attribute set, see https://kea.readthedocs.io/en/kea-3.0.2/arm/ddns.html.

Extra environment variables passed to the zwave-js-ui process

Configuration file for the Samba suite in ini format

Static settings set in the config.toml, see https://github.com/knadh/listmonk/blob/master/config.toml.sample for details

The database port

The database host

The database user

The database name

Path to paisa data directory.

See torrc manual.

See torrc manual.

See torrc manual.

See torrc manual.

Environment variables to be passed

HTTP network proxy.

Configuration file path.

Settings for schleuder.yml

Gitea Actions Runner instances.

Configuration of Chhoto URL

Configuration of doh-server in toml

Configuration options for pihole.toml

Worker settings.

Parameters of freeciv-server.

The port to listen on

Port to bind to.

Configuration for sshd_config(5).

Configuration for reaction

The IPv4 address that the server will use on the network

Global configuration options for the taler config file

Whether to enable hub instance.

String to be appended to the config verbatim

Listen port for the HTTP API.

libnfsidmap configuration

FQDN of the Jitsi Meet instance.

The settings Invidious should use

Nominatim configuration settings

The vault package to use.

The HTTP listen port.

Recipient email address

Chat rooms to join on startup.

See torrc manual.

Config options for dwm-status, see https://github.com/Gerschtli/dwm-status#configuration for available options.

Configuration of the Mealie service

Build veilid-server.conf with nix expression

go2rtc configuration as a Nix attribute set

SMTP configuration section.

Configuration for LiteLLM

The IPv6 address that the server will use on the network Leave this empty to let dsnet choose an address.

The base URL for the Hydra webserver instance

Whether this setting is a global option or not: set to have these settings apply to all files settings with a higher priority.

The width to read from input-stream.

Id of the MySQL server instance

llama-swap configuration

Manages the configuration files declaratively

Artalk server listen port

Artalk server listen host

See biboumi 9.0

for documentation.

The hostname to use for the tsnet node.

See torrc manual.

Structured server daemon configuration

Structured client daemon configuration

The waagent.conf configuration, see https://learn.microsoft.com/en-us/azure/virtual-machines/extensions/agent-linux for documentation.

Configuration of Zipline

Location of the server instance files

molly-brown configuration

Enable GPU monitoring.

How often to run ytdl-sub

The TCP port to serve the Gatus service at.

Define how much detail is supposed to be logged at runtime.

Configuration written to a yaml file that is read by glance

The artalk configuration

The port to listen on.

ZFS Event Daemon /etc/zfs/zed.d/zed.rc content

See zed(8) for details on ZED and the scripts in /etc/zfs/zed.d to find the possible variables

Settings for go-csp-collector

Port the cross-seed daemon listens on.

Kea Control Agent configuration as an attribute set, see https://kea.readthedocs.io/en/kea-3.0.2/arm/agent.html.

Options for systemd-homed

Settings on what to generate

A list of the given alerting or recording rules against configured "datasource.url" compatible with Prometheus HTTP API for vmalert to execute

As alternative to settings, you can provide whole configuration directly in the almost-YAML format of Knot DNS

Authentication cookie.

Enable SSL/TLS encryption.

See torrc manual.

SMTP server hostname.

The master.cf configuration file as an attribute set of service defitions

Errbot identity configuration

Bootstrap json to populate database

Whether to enable Whether TLS encryption should be used..

Additional configuration for Uptime Kuma, see https://github.com/louislam/uptime-kuma/wiki/Environment-Variables for supported values.

Fully-qualified domain name (FQDN) for the Movim instance.

NZBGet configuration, passed via command line using switch -o

PHP-FPM pool directives

Autobrr configuration options

Configuration for Klipper

Additional configuration for Readeck, see https://readeck.org/en/docs/configuration for supported values.

Redmine configuration (configuration.yml)

Port for the server

Configuration for Misskey, see example.yml for all supported options.

Message of the day

Contents of the runtime configuration file

Vikunja configuration

The path to the password you will use in the Grafana webhook settings.

Allowed ciphers

Defaults to recommended settings from both https://stribika.github.io/2015/01/04/secure-secure-shell.html and https://infosec.mozilla.org/guidelines/openssh#modern-openssh-67

Address to wait for incoming SMTP connections on

Attrset to be transformed into YAML for host config

Extra settings merged in and overwriting defaults in config.ini.

SMTP server port address.

Path to the directory with database, registration, and other data for the bridge service

Time-out for network connections.

Paisa configuration

General log level.

HTTP path for resolve application

See torrc manual.

Sender email address

The URL where you will access the app.

GLPI Agent configuration options

Configuration for Corteza, will be passed as environment variables

Configuration written to a json file that is read by orthanc

zeronet.conf configuration

The sing-box configuration, see https://sing-box.sagernet.org/configuration/ for documentation

Generate to config.json as a Nix attribute set

The path to MPD's database.

Listen on localhost:.

Configuration of go-httpbin

Wether to enable VictoriaMetrics's vmalert.

vmalert evaluates alerting and recording rules against a data source, sends notifications via Alertmanager.

The global options in config file in ini format

Options passed to udisksd

A header to add to scanned messages

Extra args append to the easytier command-line.

The TTL ("Time to Live") value to set for your DNS records

Connection string for the PostgreSQL database

Whether to enable debug mode.

Whether to enable the OpenBao web UI.

Settings for spacecookie

The height to read from input-stream.

Configuration of goeland

Configuration for CoreRAD, see https://github.com/mdlayher/corerad/blob/main/internal/config/reference.toml for supported values

Merecat configuration

Configuration options for Sharkey

The sabnzbd configuration (see also sabnzbd's wiki for extra documentation)

Additional settings passed straight through to PackageKit.conf

Where to mount the MFS namespace to

Options for grocy's PHPFPM pool.

See torrc manual.

See torrc manual.

See torrc manual.

See torrc manual.

See torrc manual.

See torrc manual.

Set logging level: debug, info, warn, error.

Website title.

The database name.

Museum yaml configuration

The video-format to read from input-stream.

Action to take when a virus is detected

DID of bsky frontend

Startup script.

From address.

Timeout in seconds.

Generates the server.cfg file

Whether to enable the use of a daemon for TuneD.

location of your media files

Configuration for peertube.

Quickwit configuration.

Warpgate configuration.

The full configuration of the Hound daemon

The environment variables to configure Memos.

Onion address.

See torrc manual.

Path to file containing OpenGFW settings.

Whether to enable Mautrix-Meta, a Matrix <-> Facebook and Matrix <-> Instagram hybrid puppeting/relaybot bridge.

Settings serialized into user-data/conf.yml before build

Extra settings merged in and overwriting defaults in sddm.conf.

Configuration for haste-server

Zabbix Proxy configuration

Zabbix Agent configuration

Send the XCLIENT command to the receiving server, for forwarding client addresses and connection information if the receiving server supports this feature.

URL of bsky frontend

SMTP username.

The port that ZITADEL listens on.

The homebox configuration as environment variables

State transition definitions

Declarative Unbound configuration See the unbound.conf(5) manpage for a list of available options.

Configuration to be written to the osqueryd JSON configuration file

List of pages to be present on the dashboard

Enable logging

The port to listen on.

The host to listen on.

Additional opendkim configuration

Settings for DDNS providers built-in to inadyn

Extra configuration options to append or override

Settings to pass to the livekit server

Scrutiny settings to be rendered into the configuration file

Root path for log files.

Address of the SMTP server to send email to once it has been scanned.

Structural Kimai's local.yaml configuration

The ID generation method for Sharkey to use

vmalert configuration, passed via command line flags

Whether to enable server authentication.

Where to mount the IPNS namespace to

List of enabled features in order.

Listen for clients on given port

Where to mount the IPFS namespace to

Whether to enable PAM authentication.

See torrc manual.

Port of the SMTP Server.

The port your Misskey server should listen on.

See torrc manual.

See torrc manual.

See torrc manual.

The port that Sharkey will listen on.

The port Xonotic will listen on.

The user that you will authenticate with in the Grafana webhook settings

MySQL configuration

Extra configuration options for influxdb

Set of various configuration attributes

Configuration for OpenLDAP, in OLC format

Configuration for minidlna.conf(5).

Attrset to be transformed into YAML for host config

Enable JSON-RPC/XML-RPC server.

Configuration for lxd-image-server

Listener config

PowerDNS Recursor settings

Sonic Server configuration options

The ID generation method to use

The primary patroni configuration

LiveKit configuration file expressed in nix

Configure Kanidm unix daemon

Number of tries if upstream DNS fails

Anubis policy configuration in Nix syntax

Set this to the URL where your cast page is running

HedgeDoc configuration, see https://docs.hedgedoc.org/configuration/ for documentation.

See torrc manual.

Configuration of OliveTin

See torrc manual.

See torrc manual.

Configuration for RouteDNS, see https://github.com/folbricht/routedns/blob/master/doc/configuration.md for more information.

Settings serialized into config.yml before build

Add directories containing your adult videos and images

Attribute set of arbitrary config options

Configuration options for cross-seed

Attribute set of arbitrary config options

Attribute set of arbitrary config options

Secret API key to use when modifying DNS records.

File used as configuration for traccar

User to be set as owner of the UNIX socket.

Socket type: 'unix', 'tcp' or 'tcp6'.

The video-format to write to output-stream.

The PostgreSQL port.

The PostgreSQL host.

See https://www.freie-netze.org/wg-access-server/2-configuration/ for possible options

Directory where legit will scan for repositories.

Main TCP port for RoomService and RTC endpoint.

List of remappings.

The address to listen on.

Settings that go into ca.json

Timezone of your SOGo instance

Ergo IRC daemon configuration file. https://raw.githubusercontent.com/ergochat/ergo/master/default.yaml

Configuration for Spotifyd

Configuration for Netatalk

Type of transition

Settings for the main CrowdSec configuration file

TCP port for eD2k connections

See torrc manual.

See torrc manual.

See torrc manual.

Contents for the TOML Polaris config, applied each start

Database driver to use for persistence

The TCP port to use to connect to the local XMPP component.

Enable OAuth token exchange using RFC 8693.

Hostname of the SMTP server use for mail delivery.

Port of the SMTP server to use for mail delivery.

Host address.

Server name.

Legit port.

Repositories to ignore.

Display language of the frontend.

TLS key path.

Configuration for peroxide

Fediwall configuration

Additional configuration for FerretDB, see https://docs.ferretdb.io/configuration/flags/ for supported values.

Configuration for MPD

Directory where aMule stores incomplete downloads (.part/.part.met files).

Whether to get IPv6 addresses from interfaces.

The user used for database authentication.

Netlink send buffer size.

The password used for database authentication.

Netlink receive buffer size.

Mode to be set on the UNIX socket

Runner description declared to the PeerTube instance.

E-Mail address used in the FROM header of outgoing mails.

Configuration file for hockeypuck, here you can override certain settings (loglevel and openpgp.db.dsn) by just setting those values

Set debug log level.

Readme files to look for.

HTTP port to listen on.

Port to bind nipapd to.

See torrc manual.

Settings option for systemd-resolved

Global gitlab-runner configuration

Global configuration options for the libeufin bank system config file.

Temporal configuration

Configuration for Sshwifty

For development

Zabbix Server configuration

Disable latest file updates and enable sideloading.

The path of the sqlite database.

Log file directories.

Configuration for auto-cpufreq

Environment variables to set for the service

Rathole configuration, for options reference see the example on GitHub

Frigate configuration as a nix attribute set

Group to be set as owner of the UNIX socket.

Port to listen on

Address to the dashboard.

The port to listen on.

Additional bot rules appended to the policy

The port that Komga will listen on.

Directories where static files are located.

Omnom sender e-mail.

Number of seconds to wait between each NOOP sent to the sending server. 0 to disable

Settings which are written into mediagoblin.ini.

Environment variables used for Castopod

Configuration for Radicale

HTTP listen address and port

See torrc manual.

See torrc manual.

Command to run when a virus is found

ClamAV configuration

Configuration for Prosody Filer

Host to connect to.

List of zones to serve.

Database connection scheme

Path to config file to parse and append to settings

ioredis options

Address to bind to for handling DNS requests.

Settings to include in /etc/buffyboard.conf

File to include additional settings for this provider from.

Schroot configuration settings

Tags to follow

Port to listen on.

Address to listen on.

Name of the database

Name of the database

User of the database

Host of the database

User of the database

Host of the database

Additional attributes to be merged with the configuration options and written to Pangolin's config.yml file.

Your pinnwand.toml as a Nix attribute set

Configuration options for the postsrsd.conf file

List of directories where cross-seed will create links

Configuration for immich-kiosk

The server will put all the budget files in this directory as binary blobs.

Whether to open the default ports in the firewall: TCP/UDP 22000 for transfers and UDP 21027 for discovery

Settings for the sync server

Web server port

User used for authentication.

See torrc manual.

Extra connection options.

MQTT server hostname

Address of the Kanidm server.

Location of SMTP email server

Whether to disable reverse DNS lookups, thus keeping IP address literals in the log.

Older PowerDNS Recursor settings

Whether to enable exit instead of restarting when a game ends.

Email domains handled by this instance

CAPI Configuration attributes

LAPI Configuration attributes

Configuration options to set in extra_settings.py.

Configuration included in $YAZI_CONFIG_HOME.

URL of crawlers

Attrset that is converted and passed as config file

Settings for FileBrowser

Set to true if you want to send RST for blocked TCP connections, needs local = false.

The settings to use for dsnet

Settings of the onion service

The ffmpeg package to use for transcoding.

Configuration for xdg-desktop-portal-wlr

See https://torsion.org/borgmatic/docs/reference/configuration/

General log level.

See torrc manual.

Rest server configuration for Quickwit

Path to the pdftk executable.

Enable debug logging.

Set UDP listening port range used by DHT(IPv4, IPv6) and UDP tracker.

Additional configuration for MicroBin, see https://microbin.eu/docs/installation-and-configuration/configuration/ for supported values

Additional configuration for wastebin, see https://github.com/matze/wastebin#usage for supported values

Attribute set of arbitrary config options

The port your database is listening at. sqlite does not require this value to be filled.

Port Number

The port to listen on

Port Number

Port Number

Path to the data directory

The gstreamer-pipeline to use for the input-stream.

Path to the TLS certificate private key.

The configuration for the sourcehut network.

Bitmagnet configuration (https://bitmagnet.io/setup/configuration.html).

Configuration for tinyproxy.

Configuration for c2FmZQ-server passed as CLI arguments

Contents of the teleport.yaml config file

Host and port combination for the server to listen on.

Variables to be used within the suricata rules.

Seconds to wait before sending another request.

Cross platform libpcap capture support.

Configuration options of docs

Whether this is the master instance of your Graylog cluster

Directory where cross-seed will place torrent files it finds.

Configuration for Immich

Title of the instance.

Structural DokuWiki configuration

Settings whose options overwrite fields in .config/transmission-daemon/settings.json (each time the service starts)

Glance port to listen on

The DNS servers which dnsmasq should query.

The URL to the ntfy-sh topic.

Glance bind address

The full URL under which the server is reachable.

Main branch to look for.

See torrc manual.

Master configuration options (mfsmaster.cfg).

Path to the TLS certificate.

Port for the Web UI to listen on for incoming connections.

The installation’s full URL, without a trailing slash.

Address for the Web UI to listen on for incoming connections.

The Redis host.

Storage type.

The Redis port.

The app environment

Contents of the config.yaml config file

Configuration options for the Stalwart server

Parameters to be written to the system-wide bat configuration file.

Full public URL of gitea server.

Save error/unfinished downloads to FILE on exit.

Additional settings to add to upsmon.conf.

Additional settings for this bridge.

Configuration settings for Meilisearch

Upstream timeout

Enable logging

The address to listen on.

How many invites each user is issued upon registration (only applicable if open registration is disabled).

Additional configuration for transfer-sh, see https://github.com/dutchcoders/transfer.sh#usage-1 for supported values

configuration options for influxdb2, see https://docs.influxdata.com/influxdb/v2.0/reference/config-options for details.

The UNIX socket your Misskey server should listen on.

Filename of the main journal / ledger file.

Whether the app is behind a reverse proxy.

Parameters to be written to /etc/atoprc.

Type of proxy to use

The final user-facing URL

scion-router configuration

scion-daemon configuration

API listen address, conforming to a Go address string.

Dynamic settings in the PostgreSQL database, set by a SQL script, see https://github.com/knadh/listmonk/blob/master/schema.sql#L177-L230 for details.

Configuration of GlitchTip

The content of /etc/supergfxd.conf

Configuration for Rosenpass, see https://rosenpass.eu/ for further information.

Options for mackerel-agent.conf

See torrc manual.

See torrc manual.

Configuration for Manticoresearch

Global configuration options for the mosquitto broker.

Additional policy settings merged into the policy file

Port to bind local redis instance to.

Address to bind local redis instance to.

Attrset of the LibreNMS configuration

Configuration for Gemstash

Configuration options of meet

URL of DID PLC directory

Attributes of the parent entry.

Path to the SQLite database

The consul-template package to use.

Whether to enable guests to login if auth is enabled.

Contents of config file (sfsmaster.cfg(5)).

Homepage settings

Root path for log files.

Configuration for IPP

Config file for swapspace

Configuration for Navidrome, see https://www.navidrome.org/docs/usage/configuration-options/ for supported values.

Extra options which should be appended to Nextcloud's config.php file.

Configuration for PgBouncer, see https://www.pgbouncer.org/config.html for supported values.

Attrset that is converted and passed as config file

UDP port for eD2k traffic (searches, source exchange) and all Kad network communication

Configuration for etebase-server

Redis configuration

Generates the tuwunel.toml configuration file

Port number for HTTP traffic (descriptions, SOAP, media transfer).

The URL where you will access the app.

Location for the SQLite database.

The database dialect to use

IO queue size.

See torrc manual.

See torrc manual.

Configure Kanidm clients, needed for the PAM daemon

freshclam configuration

URL of the redis backend

URL of the redis backend

radicle-native-ci adapter instances.

Set to false if you want to run OpenGFW on FORWARD chain. (e.g. on a router)

Definitions of SIIT instances of Jool

Specify a port number for JSON-RPC/XML-RPC server to listen to

URL of instance

FirewallD config file

Configuration for Moonraker

Mobilizon Elixir documentation, see https://docs.joinmobilizon.org/administration/configure/reference/ for supported values.

Typesense configuration

PeerTube instances to register this runner with.

The contents of Pomerium's config.yaml, in Nix expressions

Domain name of the docs instance.

Domain name of the meet instance.

Path to a file containing a registration token for the PeerTube instance

Options for firefly-iii configuration

OpenID Connect settings

Extra config options.

Base port -- others used are offset from this one, see https://docs.lizardbyte.dev/projects/sunshine/en/latest/about/advanced_usage.html#port for details.

Size limit of uploaded blobs in bytes

ISO 4217 code for the currency to display.

Use TLS for SMTP connection

A list of domains for which the proxy must not be used

Path to the files with alerting and/or recording rules.

Flags from tlsrpt-fetcher(1) as key-value pairs.

Flags from tlsrpt-reportd(1) as key-value pairs.

An internet socket address to listen on, either IPv4 or IPv6.

If specified, creates a UNIX socket at the given path that Sharkey listens on.

Whether to enable printing /etc/motd when a user logs in interactively.

The systemd unit (a service or a target) for other services to depend on if they need to be started after matrix-synapse

The directory where pages are stored.

Hide posts from bot accounts

Domain name of your server.

Port on which the Node.js server should listen

Settings for zeronsd

The IPv4 network that the server will use to allocate IPs on the network

Whether to use HTTPS for this DDNS provider.

Listen port

Controls log level

IMAP authentication configuration for rspamd-trainer

The public URL of the server, for password reset links.

Path to HTTPS listener private key.

An RKVM server's internet socket address, either IPv4 or IPv6.

The role of this server

Configuration for Nomad

On which address Keycloak should accept new connections.

IP address to bind nipapd to.

Nix-based (RFC 42) configuration for Knot Resolver

Specify the local database filename to store persistent data

Temporary directory that needs to be accessible to both clamd and clamsmtpd.

Save games to given directory, a sub-directory named after the starting date of the service will me inserted to preserve older saves.

Settings which are written into paste.ini.

FQDN for the Kanboard instance.

FQDN for the Pixelfed instance.

Listen address

Configuration for create_ap

Configuration to put in watchdogd.conf

The framerate to read from input-stream.

See torrc manual.

See torrc manual.

See torrc manual.

Socket address

Settings to pass to the document exporter as CLI arguments.

The IPv6 network that the server will use to allocate IPs on the network

Path to store SSH host & client keys.

The address that Sharkey binds to.

Usenet provider specification

Port Number

Python logging configuration

On which port Keycloak should listen for new HTTP connections.

Port on which immich-kiosk will listen.

Run Suricata with a specific user-id.

Definitions of NAT64 instances of Jool

Whether to run in snapshot only mode

The address to listen on

Paths to be searched for matching data

Runtime directory shared between the taler services

URL path for the website

Attrset that is converted and passed as TOML config file

Environment variables for the Firezone server

Port where hatsu should listen for incoming requests.

Host where hatsu should listen for incoming requests.

Database file path.

The postfix-tlspol configuration file as a Nix attribute set

The configuration of snips-sh is done through environment variables, therefore you must use upper snake case (e.g. SNIPS_HTTP_INTERNAL)

Attrset to be transformed into YAML for host config

Configuration of radicle-ci-broker

Kea DHCP6 configuration as a path, see https://kea.readthedocs.io/en/kea-3.0.2/arm/dhcp6-srv.html

Kea DHCP4 configuration as a path, see https://kea.readthedocs.io/en/kea-3.0.2/arm/dhcp4-srv.html

See torrc manual.

Log level for Scrutiny.

Path to your SSL CA certificate.

config.yaml configuration as a Nix attribute set

Configuration for the server

Whether to enable a Pixelfed instance.

Configuration options for the Stalwart email server

Linux high speed af-xdp capture support, see docs/capture-hardware/af-xdp.

The bare JID of the gateway administrator

Attribute set of arbitrary config options

Attribute set of arbitrary config options

Directory Gancio logs into

Show media in posts

Port to run Navidrome on.

Specify which port to listen to.

The footer in raw HTML.

Public facing base URL of the service

This setting is required for any of the following features:

• attachments (to return a download URL)
• e-mail sending (for the topic URL in the email footer)
• iOS push notifications for self-hosted servers (to calculate the Firebase poll_request topic)
• Matrix Push Gateway (to validate that the pushkey is correct)

Path to UNIX domain socket to listen on

The robot.conf configuration file as key value set

The primary synapse configuration

Structured configuration for Caddy to generate a Caddy JSON configuration file

Zone name, like "example.com", "localhost", or "0.0.127.in-addr.arpa".

Configuration of the Tinc daemon for this network

Number of processes to prefork.

Configuration for zram-generator, see https://github.com/systemd/zram-generator for documentation.

Attribute set of cameras configurations.

https://docs.frigate.video/configuration/cameras

Text displayed when players join the server.

See https://blackfire.io/docs/up-and-running/configuration/agent

If this instance is part of a replica set, set its name here

Broker ID. -1 or null to auto-allocate in zookeeper mode.

scion-control configuration

The domain name under which the server is reachable.

Options for kanboard's PHPFPM pool.

Duration (in seconds) after which an update is forced.

See torrc manual.

See torrc manual.

See torrc manual.

Overrides to config.yaml as a Nix attribute set

Parameters for the msr kernel module.

Only monitors owned symbolic link target of GC roots.

• "auto": behaves like true for normal users, false for root.
• "true": only monitor GC roots owned by the current user.
• "false": monitor all GC roots.

app-layer configuration, see upstream docs.

Cache directory

File to include additional settings for this provider from.

Address for the server

Stream source configuration

The base path in the url for web requests.

Configuration to write to server.conf

Path to MySQL listener private key.

Gives the verbosity level that is used when logging messages from sshd(8)

A set that will be generated into configuration file, see the SmartDNS README for details of configuration parameters

Which package to use for the ownCloud Infinite Scale instance.

The postgresql database server to connect to

Command line arguments passed to the imaginary executable, stripped of the prefix -

OpenSearch configuration.

Configuration for wgautomesh.

The physical device name to listen on

Configuration options to set in configuration.py

List of administrator users

The port on which to listen for IMAP connections.

The port on which to listen for SMTP connections.

Zone name server.

See torrc manual.

See torrc manual.

See torrc manual.

Use Tailscale Funnel to make tsidp available on the public internet so it works with SaaS products.

If specified, login is denied for all listed users

LiveKit Ingress configuration

Configuration for peertube-runner

Connection string for the database

Specify the configuration for sequelize

The port your database is listening at.

Server address.

If specified, login is allowed only for the listed users

Set of files to be linked in /var/lib/sympa.

Configuration included in vfs.toml

On which port Keycloak should listen for new HTTPS connections.

The database to connect to when using postgres, mysql, or mysql2.

Run Suricata with a specific group-id.

Must be set to a unique identifier, preferably a UUID according to RFC 4122

DID of mod service

DID of bsky frontend

The port to listen on.

See the documentation.

Configuration for rebuilderd (rebuilderd.conf)

Server configuration, see https://maddy.email for more information

Attrset that is converted and passed as TOML config file

Whether to quarantine files that contain viruses by leaving them in the temporary directory.

Additional settings for this listener.

The domain name serving your Weblate instance.

Domain name to serve the requests off of.

Database host.

The file access mode of the UNIX socket.

Directory for storing log files.

Database user.

Linux high speed capture support.

The CIDR networks that should route through this server

FQDN for the froide-govplan instance.

This option defines the maximum number of jobs that Nix will try to build in parallel

Package providing the ffmpeg and ffprobe executables below the bin/ directory.

The IP or hostname which hosts your database.

Help link from the main menu.

Name of the PostgreSQL database

Hostname or IP to listen on.

See torrc manual.

See torrc manual.

See torrc manual.

The type of the service

Configuration to be written to the libncf-nci configuration files

Specify the directory to store database and album art cache.

URL of mod service

URL of bsky frontend

Config to set in config.local.js's afterConfig.

The port on which to have the LDAP server.

Configuration written to the reposilite.cdn file

Path to generated files

attribute set of section of an INI file (attrs of INI atom (null, bool, int, float or string))

The address(es) to listen on for HTTP requests.

The unix socket for the gancio server to listen on.

Hide boosts

Enable logging

Static configuration for Traefik, written in Nix.

The TLS certificate private key, as a base64-encoded string

The APP_URL used by firefly-iii internally

Specifies which file should be used as the list of trusted CA when negotiating a TLS session.

The URL under which Chhoto URL is externally reachable.

The nextcloud-occ program preconfigured to target this Nextcloud instance.

Settings for MeshCentral

Whether the configuration file specifies a remote mongo instance

Flags from tlsrpt-collectd(1) as key-value pairs.

Configuration options for the libeufin bank system config file

Labels used to map jobs to their runtime environment

Options to add to config.yml

See torrc manual.

See torrc manual.

See torrc manual.

List of peers to exchange keys with.

Structured contents of the krb5.conf file

Real name of the owner of the instance

Directories from the host filesystem to be included in the sandbox.

FQDN for the nextcloud instance.

FQDN for the ruTorrent instance.

Allow all users to access the FUSE mount points

Whether sshd should check file modes and ownership of directories

Load public posts

Autoplay videos in posts

Load trending posts

The TLS certificate, as a base64-encoded string

config.yml configuration as a Nix attribute set

If you set http proxy, waagent will use is proxy to access the Internet.

If you set http proxy, waagent will use this proxy to access the Internet.

Configuration for unl0kr

Full public URL of Forgejo server.

Name of database to use on PostgreSQL server.

Regular expressions of files to exclude from sharing.

The key sequence that should be remapped

List of public signing keys of users that can access the admin panel

System-wide configuration for GameMode (/etc/gamemode.ini)

Configuration file options for LanguageTool, see 'languagetool-http-server --help' for supported settings.

Whether to enable GNOME Settings Daemon.

Configuration for metricbeat

Configuration for Routinator 3000, see https://routinator.docs.nlnetlabs.nl/en/stable/manual-page.html#configuration-file for options.

Whether to enable SSH listener.

Listen endpoint of SSH listener.

If we should not auto-open a browser window on startup

config.yaml configuration as a Nix attribute set

Configuration for yggdrasil, as a structured Nix attribute set

Directory containing torrent files, or if you're using a torrent client integration and injection - your torrent client's .torrent file store/cache.

IP+port combination to bind and serve the DNS server on.

Options passed to the gdm daemon

ioredis options for the job queue

URI to the celery broker used for the asynchronous job queue.

Whether to enable SMTP.

Data storage directory.

Attribute set of environment variables.

https://github.com/Glimesh/broadcast-box#environment-variables

Configuration included in yazi.toml

Whether to use an email service to send notifications.

Console Configuration attributes

Servers to load posts from

Port Number

Database username.

Configuration file version.

Database name.

Channel tree definitions.

Port Number

Domain to use for website

Configuration for journal-upload

Files to load suricata-update managed rules, relative to 'default-rule-path'.

Name of the database instance to connect to

Endpoint for the victorialogs instance

The host address that the LDAP server will be bound to.

The host address that the HTTP server will be bound to.

Additional configuration for LubeLogger, see https://docs.lubelogger.com/Environment%20Variables for supported values.

The port on which to have the HTTP server, for user login and administration.

See the getting-started guide for available options.

Search filters to display on the front page.

Please configuration

Redis configuration for synapse

Runtime settings for AMDVLK to be configured /etc/amd/amdVulkanSettings.cfg

Configuration for go-autoconfig

The domain to serve static pages on.

Directory for storing master metadata.

Whether to enable MQTT support.

SSH port displayed in clone URL

Generates the conduit.toml configuration file

Forum link from the main menu.

See torrc manual.

For development

See torrc manual.

Port to bind to (UDP and TCP).

Configure a listener for responding to requests.

PostgreSQL host for operating remotely.

Settings for the main CrowdSec Firewall Bouncer

A key list specifying a host switch combination.

A list of key names is available in https://github.com/htrefil/rkvm/blob/master/switch-keys.md.

Configuration options used by FileSender

Configuration options for homebridge

Flask Secret Key

Snapserver configuration

ioredis options for pubsub

Options for privatebin configuration

Optional

Optional

Additional configuration options as Nix attribute set in config.json schema.

Whether to include Anubis's default bot detection rules via the (data)/meta/default-config.yaml import

Configuration options for the libeufin nexus config file

Configuration options for the taler exchange config file

Configuration options for the taler merchant config file

Directory to store state

The Redis port.

The Redis host.

Path to the data directory

Set this to the URL where your accounts page is running

The address(es) to listen on for HTTPS requests.

Set to 1 to enable the web server

The address(es) to listen on for proxy requests.

Database URL.

code repositories

Adapter name that is used in the radicle-ci-broker configuration

PostgreSQL host to connect to

The name of the service to run

The machine which hosts your database

Home directory of the PlantUML server instance.

Disable external SSH feature.

The domain name on which canaille will be served.

Quit if no players for given time in seconds.

Enable database connection with given configuration.

Database host or socket path.

Required password to join server, if specified.

List of local domains, that do not require rewriting.

Listen endpoint of HTTP listener.

Direnv configuration

Configuration in the journal-remote configuration file

The database.yml configuration file as key value set

List of packages, that are available to actions, when the runner is configured with a host execution label.

Controls whether log output should go to stdout of the systemd service

opensnitchd configuration