| services.uwsgi.instance | uWSGI configuration
|
| services.zabbixProxy.database.passwordFile | A file containing the password corresponding to
database.user.
|
| services.xserver.windowManager.i3.configFile | Path to the i3 configuration file
|
| services.wyoming.satellite.sounds.done | Path to audio file in WAV format to play when voice command recording has ended.
|
| systemd.services.<name>.reloadTriggers | An arbitrary list of items such as derivations
|
| systemd.user.sockets.<name>.reloadTriggers | An arbitrary list of items such as derivations
|
| systemd.user.targets.<name>.reloadTriggers | An arbitrary list of items such as derivations
|
| services.prometheus.scrapeConfigs.*.marathon_sd_configs.*.oauth2.client_secret_file | Read the client secret from a file
|
| services.prometheus.scrapeConfigs.*.puppetdb_sd_configs.*.oauth2.client_secret_file | Read the client secret from a file
|
| services.prometheus.exporters.idrac.configurationPath | Path to the service's config file
|
| services.maddy.tls.loader | TLS certificates are obtained by modules called "certificate
loaders"
|
| services.jirafeau.nginxConfig.basicAuthFile | Basic Auth password file for a vhost
|
| networking.resolvconf.extraConfig | Extra configuration to append to resolvconf.conf.
|
| boot.loader.systemd-boot.windows | Make Windows bootable from systemd-boot
|
| services.caddy.settings | Structured configuration for Caddy to generate a Caddy JSON configuration file
|
| services.athens.index.postgres.password | Password for the Postgres database
|
| services.athens.singleFlight.redis.password | Password for the redis server
|
| services.dolibarr.database.passwordFile | Database password file.
|
| services.opencloud.settings | Additional YAML configuration for OpenCloud services
|
| services.matterbridge.configPath | The path to the matterbridge configuration file.
|
| services.peering-manager.peeringdbApiKeyFile | Path to a file containing the PeeringDB API key.
|
| services.pghero.environmentFiles | File to load environment variables from
|
| services.open-webui.environmentFile | Environment file to be passed to the systemd service
|
| virtualisation.xen.qemu.pidFile | Path to the QEMU PID file.
|
| services.mautrix-signal.registerToSynapse | Whether to add the bridge's app service registration file to
services.matrix-synapse.settings.app_service_config_files.
|
| services.writefreely.settings | Writefreely configuration (config.ini)
|
| system.userActivationScripts | A set of shell script fragments that are executed by a systemd user
service when a NixOS system configuration is activated
|
| services.tarsnap.archives.<name>.lowmem | Reduce memory consumption by not caching small files
|
| hardware.printers.ensurePrinters.*.model | Location of the ppd driver file for the printer.
lpinfo -m shows a list of supported models.
|
| services.cloudlog.database.passwordFile | MySQL user password file.
|
| services.gitlab.initialRootPasswordFile | File containing the initial password of the root account if
this is a new install
|
| networking.wireless.networks | The network definitions to automatically connect to when
wpa_supplicant is running
|
| services.bluemap.webserverSettings | Settings for the webserver.conf file, usually not required.
See upstream docs.
|
| services.gitlab.databasePasswordFile | File containing the GitLab database user password
|
| services.kimai.sites.<name>.database.passwordFile | A file containing the password corresponding to
database.user.
|
| services.grafana.settings.database.path | Only applicable to sqlite3 database
|
| boot.binfmt.registrations.<name>.mask | A mask to be ANDed with the byte sequence of the file before matching
|
| services.gitlab.secrets.otpFile | A file containing the secret used to encrypt secrets for OTP
tokens
|
| services.meshtasticd.settings | The Meshtastic configuration file
|
| services.matrix-hookshot.settings.passFile | A passkey used to encrypt tokens stored inside the bridge
|
| services.syncplay.permanentRoomsFile | File with list of rooms that will be listed even if the room is empty,
newline delimited
|
| services.wyoming.satellite.sounds.awake | Path to audio file in WAV format to play when wake word is detected.
|
| services.wg-access-server.secretsFile | yaml file containing all secrets. this needs to be in the same structure as the configuration
|
| virtualisation.oci-containers.containers.<name>.imageFile | Path to an image file to load before running the image
|
| services.prometheus.scrapeConfigs.*.hetzner_sd_configs.*.authorization.credentials_file | Sets the credentials to the credentials read from the configured file
|
| swapDevices.*.encrypted.keyFile | Path to a keyfile used to unlock the backing encrypted
device
|
| services.zabbixWeb.nginx.virtualHost.basicAuthFile | Basic Auth password file for a vhost
|
| services.prometheus.scrapeConfigs.*.dockerswarm_sd_configs.*.basic_auth.password_file | HTTP password file
|
| services.shadowsocks.passwordFile | Password file with a password for connecting clients.
|
| services.minio.rootCredentialsFile | File containing the MINIO_ROOT_USER, default is "minioadmin", and
MINIO_ROOT_PASSWORD (length >= 8), default is "minioadmin"; in the format of
an EnvironmentFile=, as described by systemd.exec(5).
|
| services.thinkfan.sensors.*.query | The query string used to match one or more sensors: can be
a fullpath to the temperature file (single sensor) or a fullpath
to a driver directory (multiple sensors).
When multiple sensors match, the query can be restricted using the
name or indices options.
|
| services.prefect.databasePasswordFile | path to a file containing e.g.:
DBPASSWORD=supersecret
stored outside the nix store, read by systemd as EnvironmentFile.
|
| services.pipewire.extraConfig.client | Additional configuration for the PipeWire client library, used by most applications
|
| services.kubernetes.kubelet.clientCaFile | Kubernetes apiserver CA file for client authentication.
|
| services.vlagent.remoteWrite.maxDiskUsagePerUrl | The maximum file-based buffer size in bytes
|
| services.szurubooru.server.settings.delete_source_files | Whether to delete thumbnails and source files on post delete.
|
| services.prometheus.scrapeConfigs.*.uyuni_sd_configs.*.tls_config.ca_file | CA certificate to validate API server certificate with.
|
| services.prometheus.scrapeConfigs.*.azure_sd_configs.*.tls_config.ca_file | CA certificate to validate API server certificate with.
|
| services.sabnzbd.secretFiles | Path to a list of ini file containing confidential settings such as credentials
|
| boot.specialFileSystems.<name>.options | Options used to mount the file system
|
| services.gerbil.environmentFile | Path to a file containing sensitive environment variables for Gerbil
|
| networking.stevenblack.enable | Whether to enable the stevenblack hosts file blocklist.
|
| services.dawarich.database.passwordFile | A file containing the password corresponding to services.dawarich.database.user.
|
| services.fail2ban.banaction | Default banning action (e.g. iptables, iptables-new, iptables-multiport,
iptables-ipset-proto6-allports, shorewall, etc)
|
| services.botamusique.settings | Your configuration.ini as a Nix attribute set
|
| services.librenms.phpOptions | Options for PHP's php.ini file for librenms
|
| services.pgadmin.initialPasswordFile | Initial password file for the pgAdmin account
|
| services.mastodon.database.passwordFile | A file containing the password corresponding to
database.user.
|
| services.mealie.credentialsFile | File containing credentials used in mealie such as POSTGRES_PASSWORD
or sensitive LDAP options
|
| services.searx.environmentFile | Environment file (see systemd.exec(5) "EnvironmentFile=" section for the syntax) to define variables for Searx
|
| services.limesurvey.database.socket | Path to the unix socket file to use for authentication.
|
| services.misskey.meilisearch.keyFile | The path to a file containing the Meilisearch API key
|
| services.netbird.server.coturn.passwordFile | The path to a file containing the password of the user used by netbird to connect to the coturn server.
|
| services.zammad.secretKeyBaseFile | The path to a file containing the
secret_key_base secret
|
| services.zabbixServer.database.passwordFile | A file containing the password corresponding to
database.user.
|
| services.zigbee2mqtt.settings | Your configuration.yaml as a Nix attribute set
|
| boot.supportedFilesystems | Names of supported filesystem types, or an attribute set of file system types
and their state
|
| services.openvpn.servers.<name>.authUserPass.username | The username to store inside the credentials file.
|
| services.openvpn.servers.<name>.authUserPass.password | The password to store inside the credentials file.
|
| services.headscale.settings.derp.paths | List of file paths containing DERP maps
|
| services.cyrus-imap.cyrusSettings.SERVICES | This section is the heart of the cyrus.conf file
|
| services.headscale.settings.policy.mode | The mode can be "file" or "database" that defines
where the ACL policies are stored and read from.
|
| services.displayManager.dms-greeter.logs.path | File path where DMS greeter logs will be saved
|
| services.cross-seed.useGenConfigDefaults | Whether to use the option defaults from the configuration generated by
cross-seed gen-config
|
| services.keyd.keyboards.<name>.extraConfig | Extra configuration that is appended to the end of the file.
Do not write ids section here, use a separate option for it
|
| services.agorakit.database.passwordFile | A file containing the password corresponding to
|
| services.crowdsec.settings.console.tokenFile | The Console Token file to use.
|
| services.discourse.redis.passwordFile | File containing the Redis password
|
| services.privoxy.settings.enable-edit-actions | Whether the web-based actions file editor may be used.
|
| services.szurubooru.server.settings | Configuration to write to config.yaml
|
| services.xserver.windowManager.qtile.configFile | Path to the qtile configuration file
|
| services.wastebin.secretFile | Path to file containing sensitive environment variables
|
| security.pki.certificateFiles | A list of files containing trusted root certificates in PEM
format
|
| services.actual.settings.serverFiles | The server will put an account.sqlite file in this directory, which will contain the (hashed) server password, a list of all the budget files the server knows about, and the active session token (along with anything else the server may want to store in the future).
|
| networking.resolvconf.extraOptions | Set the options in /etc/resolv.conf.
|
| services.amule.ExternalConnectPasswordFile | File containing the password for connecting with amule-gui,
set this only if you didn't set `settings
|
| programs.tsmClient.servers | Server definitions ("stanzas")
for the client system-options file
|
| services.drupal.sites.<name>.database.passwordFile | A file containing the password corresponding to
database.user.
|
| services.mpd.credentials.*.passwordFile | Path to file containing the password.
|
| services.mautrix-discord.registerToSynapse | Whether to add the bridge's app service registration file to
services.matrix-synapse.settings.app_service_config_files.
|