The mandatory base directory for cryptographic objects of this policy

A host of an existing Let's Encrypt certificate to use

Hostnames of the XMPP servers to connect to.

Names of the templates to use for this dataset.

This option allows you to define vlan devices that tag packets on top of a physical interface

XFRM interface ID set on outbound policies/SA

Basic Auth protection for a vhost

The fully qualified domain name of this server, which is also used as the common name in the certificates.

Database user.

Adds additional claims (and values) based on which kanidm groups an authenticating party belongs to

Options for the bonding driver

A path of a profile file to include

Labels used to map jobs to their runtime environment

HTTP status used by globalRedirect and forceSSL

Enable PROXY protocol.

Extra lines to be added verbatim to the vrrp_instance section.

Preswitch hook executed before mode switch.

These lines go to the end of the location verbatim.

Encryption mode to use

Order of this location block in relation to the others in the vhost

Order of this location block in relation to the others in the vhost

The offset of the key file

Whether to inherit values set in security.acme.defaults or not.

Name of the IDO resource

Action to perform for this CHILD_SA on DPD timeout

The interface the vlan will transmit packets through.

Extra configuration append to unit

Whether to manage network configuration using systemd-network

A list of tunnel interfaces to be added to the network section of the unit

A list of bridge interfaces to be added to the network section of the unit

The IPv6 address assigned to the interface in the container

Extra arguments to pass to ghostunnel server

additional groups to add the dynamic user to

Sets the password for WPA-PSK that will be converted to the pre-shared key

Country code (ISO/IEC 3166-1)

How strictly this policy should be enforced

Specifies the (clear text) password for the MQTT User.

Specifies the password hash for the account, generated with grub-mkpasswd-pbkdf2

Project ID.

Database host address.

Database host port.

A list of BridgeMDB sections to be added to the unit

A list of BridgeFDB sections to be added to the unit

Order of this location block in relation to the others in the vhost

Configuration options used by SimpleSAMLphp

Length of the new salt in byte (64 is the effective maximum).

Basic Auth password file for a vhost

Tarsnap archive configurations

An attribute set of options as described in: https://pgbackrest.org/configuration.html

All options can be used

The path to the upperdir

Whether the service should accept new connections

A video kernel parameter (framebuffer mode) configuration for the specific output:

<xres>x<yres>[M][R][-<bpp>][@<refresh>][i][m][eDd]

See for more information:

• https://docs.kernel.org/fb/modedb.html
• https://wiki.archlinux.org/title/Kernel_mode_setting#Forcing_modes

Configure unit start rate limiting

Configure unit start rate limiting

The broadcast address on the interface.

Time in seconds to wait for the YubiKey.

If not empty, which job classes should be executed by this process. If left empty, all job classes will be executed by this process.

The system domain name

The path of Apache's document root directory

Predetect hook executed before autorandr attempts to run xrandr.

An arbitrary list of items such as derivations

An arbitrary list of items such as derivations

Netfilter mark and mask for input traffic

The $table_prefix is the value placed in the front of your database tables

Each attribute in this set specifies an option in the [VXLAN] section of the unit

These lines go to the end of the location verbatim.

These lines go to the end of the location verbatim.

Node name.

Limits for timeline cleanup.

Netfilter mark and mask for output traffic

Compression method to use

Address of the remote MQTT broker.

A list of BridgeVLAN sections to be added to the unit

Port the RPC server will bind to.

Packet range from which to choose a random value to subtract from rekey_packets

Template section of vault-agent

By default, H2O, without prejudice, will use as many TLS versions & cipher suites as it & the TLS library (OpenSSL) can support

The list of path(s) to the lowerdir(s)

Public server registration name, and also the name of the Root channel

TLS certificate to use instead of the hardcoded one in case of HTTPS connections

A file containing a the client secret for an openid_connect adapter

The network family that Anubis should bind to

systemd-boot orders the menu entries by their sort keys, so if you want something to appear after all the NixOS entries, it should start with o or onwards

Sets the password for WPA3-SAE

Environment variables passed to the backup script

IPv4 destination.

IPv6 destination.

Description of this unit used in systemd messages and progress indicators.

Description of this unit used in systemd messages and progress indicators.

Basic Auth password file for a vhost

Whether to include Anubis's default bot detection rules via the (data)/meta/default-config.yaml import

The domain part of the JID for the recorder.

Adapter command to run.

Order of this location block in relation to the others in the vhost

Whether to copy the DSCP (Differentiated Services Field Codepoint) header field to/from the outer IP header in tunnel mode

Each attribute in this set specifies an option in the [CAN] section of the unit

Each attribute in this set specifies an option in the [PIE] section of the unit

Each attribute in this set specifies an option in the [FooOverUDP] section of the unit

Username for the api or remote transport

Name of this virtual host