| virtualisation.xen.store.settings.quota.maxWatchEvents | Maximum number of outstanding watch events per watch.
|
| virtualisation.xen.store.settings.quota.maxRequests | Maximum number of requests per transaction.
|
| systemd.shutdownRamfs.storePaths.*.dlopen.features | Features to enable via dlopen ELF notes
|
| boot.loader.grub.users.<name>.password | Specifies the clear text password for the account
|
| services.gancio.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.fluidd.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.akkoma.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.monica.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.matomo.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.cachix-watch-store.compressionLevel | The compression level for ZSTD compression (between 0 and 16)
|
| services.ttyd.passwordFile | File containing the password to use for basic http authentication
|
| virtualisation.xen.store.settings.ringScanInterval | Perodic scanning for all the rings as a safenet for lazy clients
|
| systemd.shutdownRamfs.storePaths.*.dlopen.usePriority | Priority of dlopen ELF notes to include. "required" is
minimal, "recommended" includes "required", and
"suggested" includes "recommended"
|
| virtualisation.xen.store.settings.persistent | Whether to activate the filed base backend.
|
| services.yandex-disk.password | Your yandex.com password
|
| services.thanos.compact.objstore.config-file | Path to YAML file that contains object store configuration
|
| services.thanos.receive.objstore.config-file | Path to YAML file that contains object store configuration
|
| services.thanos.sidecar.objstore.config-file | Path to YAML file that contains object store configuration
|
| programs.zsh.ohMyZsh.cacheDir | Cache directory to be used by oh-my-zsh
|
| services.veilid.settings.core.table_store.directory | The filesystem directory to store your table store within.
|
| services.veilid.settings.core.block_store.directory | The filesystem directory to store blocks for the block store.
|
| services.inadyn.settings.provider.<name>.password | Password for this DDNS provider
|
| virtualisation.xen.store.settings.quota.transaction | Maximum number of transactions.
|
| virtualisation.xen.store.settings.perms.enableWatch | Whether to enable the watch permission system
|
| services.nix-serve.secretKeyFile | The path to the file used for signing derivation data
|
| virtualisation.xen.store.settings.quota.maxOutstanding | Maximum outstanding requests, i.e. in-flight requests / domain.
|
| services.librenms.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.agorakit.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.dolibarr.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.kanboard.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.fediwall.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.mainsail.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.pixelfed.nginx.basicAuth | Basic Auth protection for a vhost
|
| programs.nncp.secrets | A list of paths to NNCP configuration files that should not be
in the Nix store
|
| services.gitlab.smtp.passwordFile | File containing the password of the SMTP server for GitLab
|
| services.nextcloud.appstoreEnable | Allow the installation and updating of apps from the Nextcloud appstore
|
| services.radicle.httpd.nginx.basicAuth | Basic Auth protection for a vhost
|
| services.weblate.smtp.passwordFile | Location of a file containing the SMTP password
|
| virtualisation.xen.store.settings.conflict.burstLimit | Limits applied to domains whose writes cause other domains' transaction
commits to fail
|
| services.chatgpt-retrieval-plugin.datastore | This specifies the vector database provider you want to use to store and query embeddings.
|
| services.pleroma.secretConfigFile | Path to the file containing your secret pleroma configuration.
DO NOT POINT THIS OPTION TO THE NIX
STORE, the store being world-readable, it'll
compromise all your secrets.
|
| services.anuko-time-tracker.nginx.basicAuth | Basic Auth protection for a vhost
|
| programs.tmux.secureSocket | Store tmux socket under /run, which is more secure than /tmp, but as a
downside it doesn't survive user logout.
|
| services.nginx.virtualHosts.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.thanos.downsample.objstore.config-file | Path to YAML file that contains object store configuration
|
| services.gns3-server.auth.passwordFile | A file containing the password to access the GNS3 Server.
This should be a string, not a nix path, since nix paths
are copied into the world-readable nix store.
|
| services.bookstack.nginx.basicAuth | Basic Auth protection for a vhost
|
| virtualisation.writableStore | If enabled, the Nix store in the VM is made writable by
layering an overlay filesystem on top of the host's Nix
store
|
| services.pict-rs.dataDir | The directory where to store the uploaded images & database.
|
| boot.iscsi-initiator.extraConfigFile | Append an additional file's contents to /etc/iscsid.conf
|
| virtualisation.xen.store.settings.conflict.maxHistorySeconds | Limits applied to domains whose writes cause other domains' transaction
commits to fail
|
| services.gitea.database.password | The password corresponding to database.user
|
| system.checks | Packages that are added as dependencies of the system's build, usually
for the purpose of validating some part of the configuration
|
| services.below.dirs.log | Where to store below's logs
|
| services.dokuwiki.sites.<name>.acl | Access Control Lists: see https://www.dokuwiki.org/acl
Mutually exclusive with services.dokuwiki.aclFile
Set this to a value other than null to take precedence over aclFile option
|
| services.openiscsi.extraConfigFile | Append an additional file's contents to /etc/iscsid.conf
|
| services.jirafeau.nginxConfig.basicAuth | Basic Auth protection for a vhost
|
| services.cfssl.tlsKey | Other endpoint's CA private key
|
| programs.chromium.extensions | List of chromium extensions to install
|
| services.zabbixWeb.nginx.virtualHost.basicAuth | Basic Auth protection for a vhost
|
| services.webdav.settings | Attrset that is converted and passed as config file
|
| services.boinc.dataDir | The directory in which to store BOINC's configuration and data files.
|
| virtualisation.oci-containers.containers.<name>.imageStream | Path to a script that streams the desired image on standard output
|
| services.veilid.settings.core.protected_store.directory | The filesystem directory to store your protected store in.
|
| services.pict-rs.repoPath | The directory where to store the database
|
| services.metabase.ssl.keystore | Java KeyStore file containing the certificates.
|
| services.pgadmin.emailServer.passwordFile | Password for SMTP email account
|
| services.netbird.server.coturn.password | The password of the user used by netbird to connect to the coturn server
|
| services.gitea.dump.type | Archive format used to store the dump file.
|
| services.davis.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.slskd.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.movim.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| programs.nncp.settings | NNCP configuration, see
http://www.nncpgo.org/Configuration.html
|
| services.firezone.server.smtp.passwordFile | File containing the password for the given username
|
| services.snipe-it.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.cfssl.caBundle | Path to root certificate store.
|
| services.discourse.redis.passwordFile | File containing the Redis password
|
| services.ttyd.keyFile | SSL key file path
|
| services.mchprs.dataDir | Directory to store MCHPRS database and other state/data files.
|
| services.discourse.admin.passwordFile | A path to a file containing the admin user's password
|
| services.cfssl.intBundle | Path to intermediate certificate store.
|
| services.murmur.stateDir | Directory to store data for the server.
|
| services.zammad.secretKeyBaseFile | The path to a file containing the
secret_key_base secret
|
| services.gancio.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.fedimintd.<name>.nginx.config.basicAuth | Basic Auth protection for a vhost
|
| services.fluidd.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.akkoma.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.matomo.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.monica.nginx.locations.<name>.basicAuth | Basic Auth protection for a vhost
|
| services.openvpn.servers.<name>.authUserPass.password | The password to store inside the credentials file.
|
| virtualisation.xen.store.settings.conflict.rateLimitIsAggregate | If the conflict.rateLimitIsAggregate option is true, then after each
tick one point of conflict-credit is given to just one domain: the
one at the front of the queue
|
| services.tsidp.environmentFile | Path to an environment file loaded for the tsidp service
|
| services.redsocks.redsocks.*.password | Password to send to proxy
|
| services.dashy.settings | Settings serialized into user-data/conf.yml before build
|
| services.seafile.dataDir | Path in which to store user data
|
| services.invidious.extraSettingsFile | A file including Invidious settings
|
| services.biboumi.settings.password | The password used to authenticate the XMPP component to your XMPP server
|
| services.pocket-id.dataDir | The directory where Pocket ID will store its data, such as the database when using SQLite.
|
| security.dhparams.stateful | Whether generation of Diffie-Hellman parameters should be stateful or
not
|
| services.ncps.cache.dataPath | The local directory for storing configuration and cached store paths
|