| services.matrix-appservice-irc.registrationUrl | The URL where the application service is listening for homeserver requests,
from the Matrix homeserver perspective.
|
| services.wstunnel.clients | wstunnel clients to set up.
|
| services.home-assistant.blueprints.automation | List of automation
blueprints to
install into ${config.services.home-assistant.configDir}/blueprints/automation.
|
| services.hercules-ci-agent.settings.workDirectory | The directory in which temporary subdirectories are created for task state
|
| services.matrix-synapse.settings.listeners.*.type | The type of the listener, usually http.
|
| services.zeronsd.servedNetworks | ZeroTier Networks to start zeronsd instances for.
|
| systemd.paths.<name>.onSuccess | A list of one or more units that are activated when
this unit enters the "inactive" state.
|
| services.xserver.windowManager.xmonad.enableConfiguredRecompile | Enable recompilation even if config is set to a
non-null value
|
| systemd.targets.<name>.onSuccess | A list of one or more units that are activated when
this unit enters the "inactive" state.
|
| services.xserver.windowManager.dk.package | The dk package to use.
|
| system.name | The name of the system used in the system.build.toplevel derivation
|
| services.lasuite-docs.collaborationServer.settings.PORT | Port used by collaboration server to listen to
|
| systemd.user.sockets.<name>.before | If the specified units are started at the same time as
this unit, delay them until this unit has started.
|
| users.mysql.pam.cryptDefault | The default encryption method to use for passwordCrypt = 1.
|
| services.kea.dhcp6.enable | Whether to enable Kea DHCP6 server.
|
| services.wordpress.sites.<name>.virtualHost.documentRoot | The path of Apache's document root directory
|
| virtualisation.fileSystems.<name>.fsType | Type of the file system
|
| services.rke2.autoDeployCharts.<name>.name | The name of the Helm chart
|
| services.xserver.windowManager.windowlab.enable | Whether to enable windowlab.
|
| systemd.network.networks.<name>.quickFairQueueingConfig | Each attribute in this set specifies an option in the
[QuickFairQueueing] section of the unit
|
| systemd.user.timers.<name>.upholds | Keeps the specified running while this unit is running
|
| services.jirafeau.nginxConfig.serverAliases | Additional names of virtual hosts served by this virtual host configuration.
|
| services.xserver.windowManager.awesome.luaModules | List of lua packages available for being used in the Awesome configuration.
|
| containers.<name>.restartIfChanged | Whether the container should be restarted during a NixOS
configuration switch if its definition has changed.
|
| services.waagent.settings.ResourceDisk.EnableSwap | If enabled, the agent creates a swap file (/swapfile) on the resource disk
and adds it to the system swap space
|
| services.frr.nhrpd.options | Options for the FRR nhrpd daemon.
|
| systemd.user.slices.<name>.startLimitIntervalSec | Configure unit start rate limiting
|
| services.wivrn.steam.importOXRRuntimes | Whether to enable Sets PRESSURE_VESSEL_IMPORT_OPENXR_1_RUNTIMES system-wide to allow Steam to automatically discover the WiVRn server
|
| services.xserver.cmt.enable | Enable chrome multitouch input (cmt)
|
| system.autoUpgrade.enable | Whether to periodically upgrade NixOS to the latest
version
|
| virtualisation.oci-containers.containers.<name>.labels | Labels to attach to the container at runtime.
|
| services.sslh.method | The method to use for handling connections:
fork forks a new process for each incoming connection
|
| systemd.user.paths.<name>.pathConfig | Each attribute in this set specifies an option in the
[Path] section of the unit
|
| services.vsftpd.portPromiscuous | Set to YES if you want to disable the PORT security check that ensures that
outgoing data connections can only connect to the client
|
| systemd.timers.<name>.enable | If set to false, this unit will be a symlink to
/dev/null
|
| services.sslh.enable | Whether to enable sslh, protocol demultiplexer.
|
| services.unpoller.influxdb.user | Username for the influxdb.
|
| services.postsrsd.enable | Whether to enable the postsrsd SRS server for Postfix..
|
| services.stash.settings.security_tripwire_accessed_from_public_internet | Learn more at https://docs.stashapp.cc/networking/authentication-required-when-accessing-stash-from-the-internet/
|
| services.vaultwarden.domain | The domain under which VaultWarden will be reachable.
|
| services.vector.journaldAccess | Enable Vector to access journald.
|
| services.wg-access-server.secretsFile | yaml file containing all secrets. this needs to be in the same structure as the configuration
|
| systemd.sockets.<name>.wants | Start the specified units when this unit is started.
|
| services.vmagent.remoteWrite.basicAuthPasswordFile | File that contains the Basic Auth password used to connect to remote_write endpoint
|
| services.jirafeau.nginxConfig.rejectSSL | Whether to listen for and reject all HTTPS connections to this vhost
|
| systemd.network.networks.<name>.ipv6AcceptRAConfig | Each attribute in this set specifies an option in the
[IPv6AcceptRA] section of the unit
|
| services.frr.bgpd.enable | Whether to enable FRR bgpd.
|
| virtualisation.oci-containers.containers.<name>.ports | Network ports to publish from the container to the outer host
|
| services.lasuite-meet.bind | The path, host/port or file descriptior to bind the gunicorn socket to
|
| services.vaultwarden.package | The vaultwarden package to use.
|
| services.usbguard.IPCAllowedGroups | A list of groupnames that the daemon will accept IPC connections
from.
|
| services.zwave-js.secretsConfigFile | JSON file containing secret keys
|
| systemd.timers.<name>.after | If the specified units are started at the same time as
this unit, delay this unit until they have started.
|
| services.archisteamfarm.ipcSettings | Settings to write to IPC.config
|
| services.unpoller.prometheus.http_listen | Bind the prometheus exporter to this IP or hostname.
|
| services.frr.ripd.enable | Whether to enable FRR ripd.
|
| services.postsrsd.secretsFile | Secret keys used for signing and verification.
The secret will be generated, if it does not exist at the given path.
|
| virtualisation.xen.store.settings.quota.maxSize | Size limit for transactions.
|
| services.zeronet.port | Optional zeronet web UI port.
|
| systemd.user.targets.<name>.reloadTriggers | An arbitrary list of items such as derivations
|
| containers.<name>.extraVeths.<name>.forwardPorts | List of forwarded ports from host to container
|
| services.kea.ctrl-agent.enable | Whether to enable Kea Control Agent.
|
| virtualisation.efi.variables | Platform-specific flash binary for EFI variables, implementation-dependent to the EFI firmware
|
| services.whoogle-search.extraEnv | Extra environment variables to pass to Whoogle, see
https://github.com/benbusby/whoogle-search?tab=readme-ov-file#environment-variables
|
| services.xserver.xkb.extraLayouts | Extra custom layouts that will be included in the xkb configuration
|
| virtualisation.oci-containers.containers.<name>.cmd | Commandline arguments to pass to the image's entrypoint.
|
| services.rke2.containerdConfigTemplate | Config template for containerd, to be placed at
/var/lib/rancher/rke2/agent/etc/containerd/config.toml.tmpl
|
| services.xtreemfs.dir.enable | Whether to enable XtreemFS DIR service.
|
| services.kubernetes.kubelet.manifests | List of manifests to bootstrap with kubelet (only pods can be created as manifest entry)
|
| services.wastebin.stateDir | State directory of the daemon.
|
| services.your_spotify.settings.API_ENDPOINT | The endpoint of your server
This api has to be reachable from the device you use the website from not from the server
|
| systemd.user.timers.<name>.aliases | Aliases of that unit.
|
| systemd.mounts.*.aliases | Aliases of that unit.
|
| systemd.mounts.*.before | If the specified units are started at the same time as
this unit, delay them until this unit has started.
|
| services.xserver.defaultDepth | Default colour depth.
|
| virtualisation.docker.package | The docker package to use.
|
| system.tools.nixos-build-vms.enable | Whether to enable nixos-build-vms script.
|
| services.userborn.static | Whether to generate the password files at build time and store them directly
in the system closure, without requiring any services at boot time
|
| services.wivrn.config.json | Configuration for WiVRn
|
| systemd.units.<name>.requiredBy | Units that require (i.e. depend on and need to go down with) this unit
|
| systemd.user.services.<name>.unitConfig | Each attribute in this set specifies an option in the
[Unit] section of the unit
|
| zramSwap.memoryMax | Maximum total amount of memory (in bytes) that can be stored in the zram
swap devices
|
| virtualisation.xen.dom0Resources.maxVCPUs | Amount of virtual CPU cores allocated to Domain 0 on boot
|
| system.etc.overlay.mutable | Whether to mount /etc mutably (i.e. read-write) or immutably (i.e. read-only)
|
| services.kubernetes.apiserver.authorizationMode | Kubernetes apiserver authorization mode (AlwaysAllow/AlwaysDeny/ABAC/Webhook/RBAC/Node)
|
| systemd.slices.<name>.requiredBy | Units that require (i.e. depend on and need to go down with) this unit
|
| services.znapzend.features.zfsGetType | Whether to enable using zfsGetType if your zfs get supports a
-t argument for filtering by dataset type at all AND
lists properties for snapshots by default when recursing, so that there
is too much data to process while searching for backup plans
|
| services.veilid.settings.core.capabilities.disable | A list of capabilities to disable (for example, DHTV to say you cannot store DHT information).
|
| services.kanidm.client.settings.uri | Address of the Kanidm server.
|
| services.zabbixWeb.nginx.virtualHost.serverAliases | Additional names of virtual hosts served by this virtual host configuration.
|
| services.zitadel.extraStepsPaths | A list of paths to extra steps files
|
| systemd.user.timers.<name>.onSuccess | A list of one or more units that are activated when
this unit enters the "inactive" state.
|
| systemd.user.units.<name>.overrideStrategy | Defines how unit configuration is provided for systemd:
asDropinIfExists creates a unit file when no unit file is provided by the package
otherwise it creates a drop-in file named overrides.conf.
asDropin creates a drop-in file named overrides.conf
|
| services.hylafax.faxqclean.enable.frequency | Purge old files from the spooling area with
faxcron with the given frequency
(see systemd.time(7)).
|
| services.znc.enable | Whether to enable ZNC.
|
| services.zerobin.dataDir | Path to the 0bin data directory
|
| services.zookeeper.logging | Zookeeper logging configuration, logback.xml.
|
| systemd.defaultUnit | Default unit started when the system boots; see systemd.special(7).
|
| services.evcc.package | The evcc package to use.
|
| services.pinnwand.settings.database_uri | Database URI compatible with SQLAlchemy
|