Directory where to download torrents.

If not null, is used as the permissions set by system.activationScripts.transmission-daemon on the directories services.transmission.settings.download-dir, services.transmission.settings.incomplete-dir. and services.transmission.settings.watch-dir

When enabled with services.transmission.home services.transmission.settings.incomplete-dir-enabled, new torrents will download the files to this directory

The directory where Transmission will create .config/transmission-daemon. as well as Downloads/ unless services.transmission.settings.download-dir is changed, and .incomplete/ unless services.transmission.settings.incomplete-dir is changed.

Directory to store downloaded files.

Working directory of the OpenGFW service and home of opengfw.user.

Path used for -xkbdir xserver parameter.

Whether to enable the services.transmission.settings.watch-dir.

Whether to enable XtreemFS DIR service.

Watch a directory for torrent files and add them to transmission.

The port to listen on for incoming connections (TCP).

Configuration of XtreemFS DIR service

TLS Options for the Director

Specifies the listen port for the HTTP service that returns the status page.

The director name used by the system administrator

Must be set to a unique identifier, preferably a UUID according to RFC 4122

The path of a PEM encoded TLS private key

If specified, it defines the interface to listen on

Path to a git repository

Whether to enable Bacula Director Daemon.

Path to the directory Traefik should watch for configuration files.

A systemd service name to use (without .service suffix).

A systemd service name to use (without .service suffix).

A state directory used by NetBird client to store config.json, state.json & resolv.conf.

A state directory used by NetBird client to store config.json, state.json & resolv.conf.

Extra configuration for Bacula Director Daemon.

Specifies if TLS should be enabled

A runtime directory used by NetBird client.

A runtime directory used by NetBird client.

Specify the port (a positive integer) on which the Director daemon will listen for Bacula Console connections

Whether to enable XtreemFS DIR replication plugin.

Specifies the password that must be supplied for a Director.

Path to chroot into at runtime as an additional layer of protection.

Path to the directory where data will be stored on disk.

Configuration of XtreemFS DIR replication plugin

directory to store info about uploads

The default logging directory

Where to store below's logs

The directory where FileBrowser stores its cache.

Common name attribute of allowed peer certificates

Directory where downloaded files are stored.

Whether to enable a faster, persistent implementation of use_nix and use_flake, to replace the builtin one .

The nix-direnv package to use

Where to store below's data

Extra configuration to be passed in Messages directive.

Extra configuration to be passed in Director directive.

Directories where static files are located.

The path specifying a PEM encoded TLS CA certificate(s)

Extra lines to append to the sourced direnvrc

Require TLS or TLS-PSK encryption

Log file directories.

Verify peer certificate

The sync mode influences how operations are committed to the disk log before the operation is acknowledged to the caller.

-ASYNC mode the writes to the disk log are buffered in memory by the operating system

The path where the collected RPKI data is stored.

Directory for storing log files.

Direnv configuration

Specify the directory to store database and album art cache.

Artalk working directory

Directory for storing user uploads and similar data.

Directories where template files are located.

The full path to the PEM encoded TLS certificate

Directory for storing temporary files.

The data dir for Kubo

The directory in which Garage will store the data blocks of objects

Working directory of BIND.

Whether to delete torrents added from the services.transmission.settings.watch-dir.

This option defines Director resources in Bacula Storage Daemon.

This option defines director resources in Bacula File Daemon.

The directory in which hickory-dns should look for .zone files, whenever zones aren't specified by absolute path.

Whether to enable the hiding of direnv logging .

The subdirectory in which to serve cgit

Whether to automatically use angrr before loading .envrc.

Directory where chrony state is stored.

vdirsyncer job configurations

The direnv package to use.

TLS Options for the Director in this Configuration.

TLS Options for the Director in this Configuration.

The OAuth2 redirect URL.

Directories to be scanned for media files

Path to bosun's ledis data dir

Directory where HTML and JSON report pages are written.

Whether to enable angrr direnv integration.

HTTP status used by globalRedirect & forceSSL

The directory to use for Yandex

Paths to shared directories

The path of a PEM encoded TLS private key

The path of a PEM encoded TLS private key

Directories to search for profiles, separated by , or ;.

Whether to enable loading direnv in nix-shell nix shell or nix develop .

Path to the static files.

path to the local directory where all files are stored

Whether to enable vdirsyncer.

List of configuration directives for this UPS.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

This option will set "hbase.rootdir" in hbase-site.xml and determine the directory shared by region servers and into which HBase persists

The metadata directory, put this on a fast disk (e.g

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

The wrapped direnv package.

Whether to enable direnv integration

HTTP status used by globalRedirect and forceSSL

Default directory to add folders in the web UI.

Spark worker work dir.

Location of the state directory of charybdis.

HTTP status used by globalRedirect & forceSSL

Rule directories for the reloader to refresh.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

Directories containing files to include in the Kerberos configuration.

The vdirsyncer package to use.

Directory under which Actual runs and saves its data

group to run vdirsyncer as

User account to run vdirsyncer as, otherwise as a systemd dynamic user

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

Enables GnuPG network certificate management daemon with socket-activation for every user session.

Nextcloud's data storage path

The data dir for ipfs-cluster.

The path specifying a PEM encoded TLS CA certificate(s)

The path specifying a PEM encoded TLS CA certificate(s)

The filesystem directory to store your table store within.

The filesystem directory to store blocks for the block store.

Whether to enable this vdirsyncer job.

HTTP status used by globalRedirect & forceSSL

Specifies if TLS should be enabled

Specifies if TLS should be enabled

Cache directory.

Whether any uploads are permitted to anonymous users.

Directory where incomplete downloading files are stored.

XtreemFS home dir for the xtreemfs user.

vdirsyncer pair configurations

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

existing configuration file

Whether to enable the Keybase root redirector service, allowing any user to access KBFS files via /keybase, which will show different contents depending on the requester.

HTTP status used by globalRedirect and forceSSL

Defines the path to the data directory

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected permanently to the given URL.

If set, all requests for this host are redirected permanently to the given URL.

The absolute path to the directory which hosts the public-inbox.

Path of the Neo4j home directory

systemd timer configuration

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

Directory where certificate and other state is stored.

Where to redirect new users upon registration.

Path of the data directory

The path to the workdir

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected permanently to the given URL.

vdirsyncer's status path

general configuration

HTTP status used by globalRedirect and forceSSL

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If set, all requests for this host are redirected permanently to the given URL.

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

The directory or URI where MPD reads music from

The redirect method to use.

Location of the riemann-base dir

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

Iptables filters that if matched will get the packet off of redsocks.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

If Monitor is set to no, this director will have full access to this Storage daemon

If Monitor is set to no, this director will have full access to this Storage daemon

Common name attribute of allowed peer certificates

Common name attribute of allowed peer certificates

If true, requests in the form /~user/page.html are rewritten to take the file public_html/page.html from the home directory of the user.

If set, all requests for this host are redirected permanently to the given URL.

HTTP status used by globalRedirect and forceSSL

HTTP status used by globalRedirect and forceSSL

vdirsyncer storage configurations

IPC directory where file sockets are stored.

Directory to store export.

Run yes | vdirsyncer discover prior to vdirsyncer sync

The root directory for file URLs used with the Cypher LOAD CSV clause

Path of the database plugin directory

Whether to disable send and accept redirects for all network interfaces

The cache allows tarsnap to identify previously stored data blocks, reducing archival time and bandwidth usage

If set, all requests for this host are redirected permanently to the given URL.

The path to the upperdir

The list of path(s) to the lowerdir(s)

Enables the use of the ~/.ssh/authorized_keys file

Require TLS or TLS-PSK encryption

Require TLS or TLS-PSK encryption

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

The filesystem directory to store your protected store in.

Verify peer certificate

Verify peer certificate

HTTP status used by globalRedirect and forceSSL

A directory that should contain the policy files, used to customize Botan’s behaviour when negotiating the TLS connections with the IRC servers.

If set, all requests for this host are redirected permanently to the given URL.

Directories containing files to include in the Kerberos configuration.

Whether to use TLS.

List of filesystem paths to archive.

If set, all requests for this host are redirected permanently to the given URL.

Whether the LDAP Server is an Active Directory.

pattern of a directory structure locally and on s3

If set, all requests for this host are redirected permanently to the given URL.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

Port LDAP is accessible on.

User to run the program.

HTTP status used by globalRedirect and forceSSL

Sync users.

Exclude all non-globally-routable IPs from redsocks

Root path for LDAP.

additional groups to add the dynamic user to

Specifies the password that must be supplied for the default Bacula Console to be authorized

Specifies the password that must be supplied for the default Bacula Console to be authorized

Whether to enable Zsh integration .

User directory, relative to root.

Whether to use STARTTLS.

Additional plugins dir used to configure nomad.

If set, all requests for this host are redirected (defaults to 301, configurable with redirectCode) to the given hostname.

Additional arguments passed to initdb during data dir initialisation.

Whether to enable Bash integration .

Whether to enable Fish integration .

Group directory, relative to root.

HTTP status used by globalRedirect and forceSSL

Whether to sync ldap groups into BitWarden.

The directories from which plugins should be loaded

Plugin directory paths

The domain the Bitwarden/Vaultwarden is accessible on.

Directory where Akkoma will put uploaded files.

The directory where MPD stores playlists

The full path to the PEM encoded TLS certificate

The full path to the PEM encoded TLS certificate

Whether to enable Bitwarden Directory Connector.

Path to the data dir fedimintd will use to store its data

Path to the postgres socket directory

LDAP filter for users.

Whether to enable Xonsh integration .

The directory where old plugin versions and conflicting plugins should be moved

The directory where uploaded new plugins should be stored.

If true, a backend match requires the frontend connection be TLS encrypted

Options to configure the LDAP connection

Options to configure what gets synced

The option is dictated by the plugin

LDAP filter for groups.

Default working directory for server (server-working-dir in rserver.conf).

The directory where the skeleton files are located

Path to file that contains LDAP password for user in {option}`ldap.username

Suffix for the email, normally @example.com.

Enable if you are syncing more than 2000 users/groups.

Whether the LDAP server paginates search results.

The bitwarden-directory-connector-cli package to use.

The user to authenticate as.

Class that users must have.

The host the LDAP is accessible on.

Directory that holds the TSM node's password information.

A class that groups will have.

The interval when to run the connector

List of source directories and files to backup

Directory of static files

Check redirects for manualHTML.

If a user has no email address, combine a username prefix with a suffix value to form an email.

Remove users from bitwarden groups if no longer in the ldap group.

Set of paths that should be intercepted and rewritten while checking the ruleset using pkgs.buildPackages.libredirect.

Directory to write the output to.

Location of the dir with main.css CSS file

Conditions to make outbound packets go through this redsocks instance

The pathname of the IMAP configuration directory.

Attribute for a name of group.

Attribute for a users email.

Attribute that lists members in a LDAP group.

In direct boot situations, you may want to influence the initrd to load to use your own customized payload

Allow localhost redirects

The attribute that contains the users username.

Directory for storing certificates to be used by Neo4j for TLS connections

Remove and re-add users/groups, See https://bitwarden.com/help/user-group-filters/#overwriting-syncs for more details.

Attribute that lists a user's creation date.

The path specifying a PEM encoded TLS CA certificate(s)

The path specifying a PEM encoded TLS CA certificate(s)

Whether all users can write to the consumption dir.

The path to the workdir

If enabled, the virtual machine will boot directly into the kernel instead of through a bootloader

The path to the upperdir

The list of path(s) to the lowerdir(s)

The path of a directory which contains a custom landing page.

Install the SPICE USB redirection helper with setuid privileges

Mount nvidia-docker-1 directories on containers: /usr/local/nvidia/lib and /usr/local/nvidia/lib64.

Path to file that contains Client ID.

Override the default working directory for the container.

Path to file that contains Client Secret.

XFRM interface ID set on inbound policies/SA, can be overridden by child config, see there for details

List of source directories and files to backup

XFRM interface ID set on outbound policies/SA, can be overridden by child config, see there for details

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

XFRM interface ID set on inbound policies/SA

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

XFRM interface ID set on outbound policies/SA

Configure whether HTTP requests follow HTTP 3xx redirects

Netfilter mark and mask for input traffic

Netfilter mark and mask for output traffic

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

Netfilter mark applied to packets after the inbound IPsec SA processed them

Netfilter mark applied to packets after the outbound IPsec SA processed them

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects

Configure whether HTTP requests follow HTTP 3xx redirects