LDAP-attribute that corresponds to the lastName-attribute in mailman.

Path to CA certificates file in PEM format, for server SSL certificate validation.

Which port the Open-WebUI server listens to.

Database name.

Principal identifier (email, repo, etc.)

Hostname to use

Port to listen on.

Mute videos by default.

Patterns for files from which target groups are extracted

Extra command line options to pass to alertmanager-webhook-logger.

Data directory relative to /var/lib in which to cache blocks and process compactions.

IO scheduler class.

Port on which the SMTP endpoint will listen.

The mailmanPackages package to use.

Whether to enable the prometheus ecoflow exporter.

Verbatim additional configuration variables for TLP

List of Systemd services to require and wait for when starting the application service.

The typesense package to use.

Whether to enable Telegent TG100 specific tweaks.

Configuration for Navidrome, see https://www.navidrome.org/docs/usage/configuration-options/ for supported values.

The private key to persist address with

Object store configuration

FROM address that overrides the built-in sharing-noreply and lostpassword-noreply FROM addresses

The directory where Prowlarr stores its data files

Port on which Redmine is ran.

Whether to enable roundcube

Whether to enable Spam/ham trainer for rspamd.

Language of SOGo

Address the spark master binds to.

Bind to this address to listen for connections from Socks-speaking applications.

Whether to enable lifecycled, a daemon for responding to AWS AutoScaling Lifecycle Hooks.

Whether to add a separate nginx server block that redirects (defaults to 301, configurable with redirectCode) all plain HTTP traffic to HTTPS

CA certificate to validate API server certificate with.

Whether to enable Mercurial integration..

The currency which taler services will operate with

The port to scrape metrics from

See torrc manual.

Configure a local Redis server for SearXNG

The plex package to use

Local UDP port.

The derper package to use.

Whether to enable the prometheus nvidia-gpu exporter.

Path to the TLS private key file

Directory for the ACME challenge, which is public

This depends on mail_smtpmode

Additional settings paths used to configure nomad

The address of the reverse proxy endpoint for oauth2-proxy

See GitHub for available settings.

Group account under which scollector runs.

Enable the new more-generic metric format.

Enable SSL.

Specify a name filter (works as a LIKE) to apply on the server listing request.

Create the objectstore bucket if it does not exist.

Whether to enable global Neat IP Address Planner (NIPAP) configuration.

List of MTR jobs

The actual zone data

Reply address in outgoing mail.

Whether to enable postfix-tlspol.

Reduce memory consumption by a factor of 2 beyond what lowmem does, at the cost of significantly slowing down the archiving process.

Desired log level

Path where to store data files.

[LEVEL LOW HIGH]

LEVEL is the fan level to use: it can be an integer (0-7 with thinkpad_acpi), "level auto" (to keep the default firmware behavior), "level full-speed" or "level disengaged" (to run the fan as fast as possible)

Makes user-profiles globally available under nextcloud.tld/u/user.name

Names of the templates to use for this dataset.

Hardened service:

• runs as a dedicated user with minimal set of permissions (see caveats),
• restricts daemon configuration socket access to dedicated user group (you can grant access to it with users.users."<user>".extraGroups = [ netbird-‹name› ]),

Even though the local system resources access is restricted:

• CAP_NET_RAW, CAP_NET_ADMIN and CAP_BPF still give unlimited network manipulation possibilites,
• older kernels don't have CAP_BPF and use CAP_SYS_ADMIN instead,

Known security features that are not (yet) integrated into the module:

• 2024-02-14: rosenpass is an experimental feature configurable solely through --enable-rosenpass flag on the netbird up command, see the docs

Extra commandline options to pass to the kea exporter.

Whether to enable Netbird Server stack, comprising the dashboard, management API and signal service.

Use the (reasonable and featureful) stock configuration

When to run the backup

User account where Apache NiFi runs.

Static settings set in the config.toml, see https://github.com/knadh/listmonk/blob/master/config.toml.sample for details

Additional command line arguments to pass to Pixiecore

The shoko-webui package to use.

Opens telnet console interface on localhost port 5582

Trigger filter.

Minimum age of fresh (non-compacted) blocks before they are being processed

The maximum number of processes to spawn for this service

config.yaml configuration as a Nix attribute set

Path to file containing local secret key in binary or hexadecimal form.

The shairport-sync package to use.

The hostname use to setup the virtualhost configuration

IP address of the host system

Display name for OIDC authentication.

Value of the PPK

Change the proxy related timeouts in recommendedProxySettings.

The port for the Ombi web interface.

A file containing the password corresponding to database.user.

Whether to use ACME certificates corresponding to the given domain for the server.

The matrix-continuwuity package to use.

contents of check_client_access for overriding dnsBlacklists

The qbittorrent-nox package to use.

An SSH public key (as an absolute file path or directly as a string), usually generated by rad auth

Whether to support proxying websocket connections with HTTP/1.1.

Specify a filter for iptables to use when services.prometheus.exporters.tibber.openFirewall is true

How long after deactivation to keep a key in the zone

The traefik package to use.

Open port in firewall for incoming connections.

Username for connecting to Nextcloud

Path to a file containing the SOCKS5 password.

Open port in firewall for incoming connections.