nixos
garden.packages
Section titled “garden.packages”A set of packages to install in the garden environment.
Type: lazy attribute set of package
Default:
{ }Declared by:
garden.device.capabilities.bluetooth
Section titled “garden.device.capabilities.bluetooth”Whether to enable bluetooth support.
Type: boolean
Default:
trueExample:
trueDeclared by:
garden.device.capabilities.tpm
Section titled “garden.device.capabilities.tpm”Whether the system has tpm support
Type: boolean
Default:
falseDeclared by:
garden.device.capabilities.yubikey
Section titled “garden.device.capabilities.yubikey”Whether to enable yubikey support.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.device.cpu
Section titled “garden.device.cpu”The manufacturer of the primary system cpu
Type: null or one of “intel”, “vm-intel”, “amd”, “vm-amd”
Default:
nullDeclared by:
garden.device.gpu
Section titled “garden.device.gpu”The manufacturer of the primary system gpu
Type: null or one of “amd”, “intel”, “nvidia”
Default:
nullDeclared by:
garden.device.keyboard
Section titled “garden.device.keyboard”the keyboard layout to use for a given system
Type: one of “us”, “gb”
Default:
"gb"Declared by:
garden.device.monitors
Section titled “garden.device.monitors”this does not affect any drivers and such, it is only necessary for declaring things like monitors in window manager configurations you can avoid declaring this, but I’d rather if you did declare
Type: attribute set of (submodule)
Declared by:
garden.device.monitors.<name>.height
Section titled “garden.device.monitors.<name>.height”the height of the monitor in pixels
Type: signed integer
Default:
1080Example:
1024Declared by:
garden.device.monitors.<name>.name
Section titled “garden.device.monitors.<name>.name”the name of the monitor
Type: string
Default:
"‹name›"Example:
"HDMI-1"Declared by:
garden.device.monitors.<name>.refresh-rate
Section titled “garden.device.monitors.<name>.refresh-rate”the refresh rate of the monitor in Hz
Type: signed integer
Default:
60Example:
120Declared by:
garden.device.monitors.<name>.scale
Section titled “garden.device.monitors.<name>.scale”the scale factor for the monitor
Type: floating point number
Default:
1.0Example:
1.5Declared by:
garden.device.monitors.<name>.width
Section titled “garden.device.monitors.<name>.width”the width of the monitor in pixels
Type: signed integer
Default:
1920Example:
1080Declared by:
garden.environment.flakePath
Section titled “garden.environment.flakePath”The path to the configuration
Type: string
Default:
"/Users/isabel/.config/flake"Declared by:
garden.profiles.graphical.enable
Section titled “garden.profiles.graphical.enable”Whether to enable Graphical interface.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.profiles.headless.enable
Section titled “garden.profiles.headless.enable”Whether to enable Headless.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.profiles.hetzner.enable
Section titled “garden.profiles.hetzner.enable”Whether to enable Hetzner Cloud profile.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.profiles.hetzner.ipv4
Section titled “garden.profiles.hetzner.ipv4”The IPv4 address to assign to the server. This should be a single IP address, not a range.
Type: string
Declared by:
garden.profiles.hetzner.ipv6
Section titled “garden.profiles.hetzner.ipv6”The IPv6 address to assign to the server. This should be a single IP address, not a range.
Type: string
Declared by:
garden.profiles.laptop.enable
Section titled “garden.profiles.laptop.enable”Whether to enable Laptop.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.profiles.oracle.enable
Section titled “garden.profiles.oracle.enable”Whether to enable Oracle Cloud profile.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.profiles.server.enable
Section titled “garden.profiles.server.enable”Whether to enable Server.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.profiles.upcloud.enable
Section titled “garden.profiles.upcloud.enable”Whether to enable UpCloud profile.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.profiles.workstation.enable
Section titled “garden.profiles.workstation.enable”Whether to enable Workstation.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.akkoma.enable
Section titled “garden.services.akkoma.enable”Whether to enable Enable the akkoma service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.akkoma.domain
Section titled “garden.services.akkoma.domain”Domain name for the akkoma service
Type: string
Default:
"networking.domain"Declared by:
garden.services.akkoma.host
Section titled “garden.services.akkoma.host”The host for akkoma service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.akkoma.port
Section titled “garden.services.akkoma.port”The port for akkoma service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.anubis.enable
Section titled “garden.services.anubis.enable”Whether to enable Enable the anubis service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.anubis.domain
Section titled “garden.services.anubis.domain”Domain name for the anubis service
Type: string
Default:
"networking.domain"Declared by:
garden.services.anubis.host
Section titled “garden.services.anubis.host”The host for anubis service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.anubis.port
Section titled “garden.services.anubis.port”The port for anubis service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.arr.enable
Section titled “garden.services.arr.enable”Whether to enable arr services.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.arr.contentDir
Section titled “garden.services.arr.contentDir”Directory for storing application data for arr services
Type: string
Default:
"\${cfg.mediaDir}/content"Declared by:
garden.services.arr.mediaDir
Section titled “garden.services.arr.mediaDir”Directory for storing media files managed by arr services
Type: string
Default:
"/media"Declared by:
garden.services.arr.mediaGroup
Section titled “garden.services.arr.mediaGroup”Group that owns the media and content directories
Type: string
Default:
"media"Declared by:
garden.services.arr.mediaOwner
Section titled “garden.services.arr.mediaOwner”User that owns the media and content directories
Type: string
Default:
"root"Declared by:
garden.services.arr.openFirewall
Section titled “garden.services.arr.openFirewall”Whether to enable open the firewall for the arr services.
Type: boolean
Default:
"true"Example:
trueDeclared by:
garden.services.attic.enable
Section titled “garden.services.attic.enable”Whether to enable Enable the attic service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.attic.domain
Section titled “garden.services.attic.domain”Domain name for the attic service
Type: string
Default:
"networking.domain"Declared by:
garden.services.attic.host
Section titled “garden.services.attic.host”The host for attic service
Type: string
Default:
"[::]"Declared by:
garden.services.attic.port
Section titled “garden.services.attic.port”The port for attic service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3003Declared by:
garden.services.atuin.enable
Section titled “garden.services.atuin.enable”Whether to enable Enable the atuin service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.atuin.domain
Section titled “garden.services.atuin.domain”Domain name for the atuin service
Type: string
Default:
"networking.domain"Declared by:
garden.services.atuin.host
Section titled “garden.services.atuin.host”The host for atuin service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.atuin.port
Section titled “garden.services.atuin.port”The port for atuin service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3004Declared by:
garden.services.blahaj.enable
Section titled “garden.services.blahaj.enable”Whether to enable Enable the blahaj service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.blahaj.domain
Section titled “garden.services.blahaj.domain”Domain name for the blahaj service
Type: string
Default:
"networking.domain"Declared by:
garden.services.blahaj.host
Section titled “garden.services.blahaj.host”The host for blahaj service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.blahaj.port
Section titled “garden.services.blahaj.port”The port for blahaj service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.borgbackup.enable
Section titled “garden.services.borgbackup.enable”Whether to enable Enable the borgbackup service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.borgbackup.domain
Section titled “garden.services.borgbackup.domain”Domain name for the borgbackup service
Type: string
Default:
"networking.domain"Declared by:
garden.services.borgbackup.host
Section titled “garden.services.borgbackup.host”The host for borgbackup service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.borgbackup.jobs
Section titled “garden.services.borgbackup.jobs”Define borg backup jobs.
Type: attribute set of (submodule)
Default:
{ }Declared by:
garden.services.borgbackup.jobs.<name>.enable
Section titled “garden.services.borgbackup.jobs.<name>.enable”Whether to enable borgbackup job.
Type: boolean
Default:
"true"Example:
trueDeclared by:
garden.services.borgbackup.jobs.<name>.exclude
Section titled “garden.services.borgbackup.jobs.<name>.exclude”List of glob patterns to exclude from the backup.
Type: list of string
Default:
[ ]Example:
[ "*.cache" "*.tmp"]Declared by:
garden.services.borgbackup.jobs.<name>.passkeyFile
Section titled “garden.services.borgbackup.jobs.<name>.passkeyFile”Path to the file containing the Borg repository passkey.
Type: absolute path
Example:
"/run/secrets/borg-passkey"Declared by:
garden.services.borgbackup.jobs.<name>.paths
Section titled “garden.services.borgbackup.jobs.<name>.paths”List of paths to back up.
Type: list of absolute path
Default:
[ ]Example:
[ "/home/user/Documents" "/etc"]Declared by:
garden.services.borgbackup.jobs.<name>.repo
Section titled “garden.services.borgbackup.jobs.<name>.repo”The Borg repository location.
Type: string
Example:
"repo"Declared by:
garden.services.borgbackup.port
Section titled “garden.services.borgbackup.port”The port for borgbackup service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.cloudflared.enable
Section titled “garden.services.cloudflared.enable”Whether to enable Enable the cloudflared service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.cloudflared.domain
Section titled “garden.services.cloudflared.domain”Domain name for the cloudflared service
Type: string
Default:
"networking.domain"Declared by:
garden.services.cloudflared.host
Section titled “garden.services.cloudflared.host”The host for cloudflared service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.cloudflared.port
Section titled “garden.services.cloudflared.port”The port for cloudflared service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.forgejo.enable
Section titled “garden.services.forgejo.enable”Whether to enable Enable the forgejo service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.forgejo.domain
Section titled “garden.services.forgejo.domain”Domain name for the forgejo service
Type: string
Default:
"networking.domain"Declared by:
garden.services.forgejo.host
Section titled “garden.services.forgejo.host”The host for forgejo service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.forgejo.port
Section titled “garden.services.forgejo.port”The port for forgejo service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3011Declared by:
garden.services.immich.enable
Section titled “garden.services.immich.enable”Whether to enable Enable the immich service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.immich.domain
Section titled “garden.services.immich.domain”Domain name for the immich service
Type: string
Default:
"networking.domain"Declared by:
garden.services.immich.host
Section titled “garden.services.immich.host”The host for immich service
Type: string
Default:
"0.0.0.0"Declared by:
garden.services.immich.port
Section titled “garden.services.immich.port”The port for immich service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3007Declared by:
garden.services.isabelroses-website.enable
Section titled “garden.services.isabelroses-website.enable”Whether to enable Enable the isabelroses-website service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.isabelroses-website.domain
Section titled “garden.services.isabelroses-website.domain”Domain name for the isabelroses-website service
Type: string
Default:
"networking.domain"Declared by:
garden.services.isabelroses-website.host
Section titled “garden.services.isabelroses-website.host”The host for isabelroses-website service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.isabelroses-website.port
Section titled “garden.services.isabelroses-website.port”The port for isabelroses-website service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.jellyfin.enable
Section titled “garden.services.jellyfin.enable”Whether to enable Enable the jellyfin service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.jellyfin.domain
Section titled “garden.services.jellyfin.domain”Domain name for the jellyfin service
Type: string
Default:
"networking.domain"Declared by:
garden.services.jellyfin.host
Section titled “garden.services.jellyfin.host”The host for jellyfin service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.jellyfin.port
Section titled “garden.services.jellyfin.port”The port for jellyfin service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
8096Declared by:
garden.services.kanidm.enable
Section titled “garden.services.kanidm.enable”Whether to enable Enable the kanidm service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.kanidm.domain
Section titled “garden.services.kanidm.domain”Domain name for the kanidm service
Type: string
Default:
"networking.domain"Declared by:
garden.services.kanidm.host
Section titled “garden.services.kanidm.host”The host for kanidm service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.kanidm.port
Section titled “garden.services.kanidm.port”The port for kanidm service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3010Declared by:
garden.services.mailserver.enable
Section titled “garden.services.mailserver.enable”Whether to enable Enable the mailserver service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.mailserver.domain
Section titled “garden.services.mailserver.domain”Domain name for the mailserver service
Type: string
Default:
"networking.domain"Declared by:
garden.services.mailserver.host
Section titled “garden.services.mailserver.host”The host for mailserver service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.mailserver.port
Section titled “garden.services.mailserver.port”The port for mailserver service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.matrix.enable
Section titled “garden.services.matrix.enable”Whether to enable Enable the matrix service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.matrix.domain
Section titled “garden.services.matrix.domain”Domain name for the matrix service
Type: string
Default:
"networking.domain"Declared by:
garden.services.matrix.host
Section titled “garden.services.matrix.host”The host for matrix service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.matrix.port
Section titled “garden.services.matrix.port”The port for matrix service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3012Declared by:
garden.services.nginx.enable
Section titled “garden.services.nginx.enable”Whether to enable Enable the nginx service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.nginx.domain
Section titled “garden.services.nginx.domain”Domain name for the nginx service
Type: string
Default:
"networking.domain"Declared by:
garden.services.nginx.host
Section titled “garden.services.nginx.host”The host for nginx service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.nginx.port
Section titled “garden.services.nginx.port”The port for nginx service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.nixpkgs-prs-bot.enable
Section titled “garden.services.nixpkgs-prs-bot.enable”Whether to enable Enable the nixpkgs-prs-bot service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.nixpkgs-prs-bot.bsky.enable
Section titled “garden.services.nixpkgs-prs-bot.bsky.enable”Whether to enable bsky.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.nixpkgs-prs-bot.domain
Section titled “garden.services.nixpkgs-prs-bot.domain”Domain name for the nixpkgs-prs-bot service
Type: string
Default:
"networking.domain"Declared by:
garden.services.nixpkgs-prs-bot.fedi.enable
Section titled “garden.services.nixpkgs-prs-bot.fedi.enable”Whether to enable fedi.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.nixpkgs-prs-bot.host
Section titled “garden.services.nixpkgs-prs-bot.host”The host for nixpkgs-prs-bot service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.nixpkgs-prs-bot.port
Section titled “garden.services.nixpkgs-prs-bot.port”The port for nixpkgs-prs-bot service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.pds.enable
Section titled “garden.services.pds.enable”Whether to enable Enable the pds service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.pds.domain
Section titled “garden.services.pds.domain”Domain name for the pds service
Type: string
Default:
"networking.domain"Declared by:
garden.services.pds.host
Section titled “garden.services.pds.host”The host for pds service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.pds.port
Section titled “garden.services.pds.port”The port for pds service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3001Declared by:
garden.services.pds-dash.enable
Section titled “garden.services.pds-dash.enable”Whether to enable Enable the pds-dash service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.pds-dash.domain
Section titled “garden.services.pds-dash.domain”Domain name for the pds-dash service
Type: string
Default:
"networking.domain"Declared by:
garden.services.pds-dash.host
Section titled “garden.services.pds-dash.host”The host for pds-dash service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.pds-dash.port
Section titled “garden.services.pds-dash.port”The port for pds-dash service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3014Declared by:
garden.services.pds-gatekeeper.enable
Section titled “garden.services.pds-gatekeeper.enable”Whether to enable Enable the pds-gatekeeper service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.pds-gatekeeper.domain
Section titled “garden.services.pds-gatekeeper.domain”Domain name for the pds-gatekeeper service
Type: string
Default:
"networking.domain"Declared by:
garden.services.pds-gatekeeper.host
Section titled “garden.services.pds-gatekeeper.host”The host for pds-gatekeeper service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.pds-gatekeeper.port
Section titled “garden.services.pds-gatekeeper.port”The port for pds-gatekeeper service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3002Declared by:
garden.services.piper.enable
Section titled “garden.services.piper.enable”Whether to enable Enable the piper service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.piper.domain
Section titled “garden.services.piper.domain”Domain name for the piper service
Type: string
Default:
"networking.domain"Declared by:
garden.services.piper.host
Section titled “garden.services.piper.host”The host for piper service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.piper.port
Section titled “garden.services.piper.port”The port for piper service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3015Declared by:
garden.services.postgresql.enable
Section titled “garden.services.postgresql.enable”Whether to enable Enable the postgresql service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.postgresql.domain
Section titled “garden.services.postgresql.domain”Domain name for the postgresql service
Type: string
Default:
"networking.domain"Declared by:
garden.services.postgresql.host
Section titled “garden.services.postgresql.host”The host for postgresql service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.postgresql.port
Section titled “garden.services.postgresql.port”The port for postgresql service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.prowlarr.enable
Section titled “garden.services.prowlarr.enable”Whether to enable Enable the prowlarr service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.prowlarr.domain
Section titled “garden.services.prowlarr.domain”Domain name for the prowlarr service
Type: string
Default:
"networking.domain"Declared by:
garden.services.prowlarr.host
Section titled “garden.services.prowlarr.host”The host for prowlarr service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.prowlarr.port
Section titled “garden.services.prowlarr.port”The port for prowlarr service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3022Declared by:
garden.services.qbittorrent.enable
Section titled “garden.services.qbittorrent.enable”Whether to enable Enable the qbittorrent service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.qbittorrent.domain
Section titled “garden.services.qbittorrent.domain”Domain name for the qbittorrent service
Type: string
Default:
"networking.domain"Declared by:
garden.services.qbittorrent.host
Section titled “garden.services.qbittorrent.host”The host for qbittorrent service
Type: string
Default:
"0.0.0.0"Declared by:
garden.services.qbittorrent.port
Section titled “garden.services.qbittorrent.port”The port for qbittorrent service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3019Declared by:
garden.services.radarr.enable
Section titled “garden.services.radarr.enable”Whether to enable Enable the radarr service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.radarr.domain
Section titled “garden.services.radarr.domain”Domain name for the radarr service
Type: string
Default:
"networking.domain"Declared by:
garden.services.radarr.host
Section titled “garden.services.radarr.host”The host for radarr service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.radarr.port
Section titled “garden.services.radarr.port”The port for radarr service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3021Declared by:
garden.services.redis.enable
Section titled “garden.services.redis.enable”Whether to enable Enable the redis service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.redis.domain
Section titled “garden.services.redis.domain”Domain name for the redis service
Type: string
Default:
"networking.domain"Declared by:
garden.services.redis.host
Section titled “garden.services.redis.host”The host for redis service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.redis.port
Section titled “garden.services.redis.port”The port for redis service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.services.sonarr.enable
Section titled “garden.services.sonarr.enable”Whether to enable Enable the sonarr service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.sonarr.domain
Section titled “garden.services.sonarr.domain”Domain name for the sonarr service
Type: string
Default:
"networking.domain"Declared by:
garden.services.sonarr.host
Section titled “garden.services.sonarr.host”The host for sonarr service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.sonarr.port
Section titled “garden.services.sonarr.port”The port for sonarr service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3020Declared by:
garden.services.tranquil.enable
Section titled “garden.services.tranquil.enable”Whether to enable Enable the tranquil service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.tranquil.domain
Section titled “garden.services.tranquil.domain”Domain name for the tranquil service
Type: string
Default:
"networking.domain"Declared by:
garden.services.tranquil.host
Section titled “garden.services.tranquil.host”The host for tranquil service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.tranquil.port
Section titled “garden.services.tranquil.port”The port for tranquil service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3032Declared by:
garden.services.uptime-kuma.enable
Section titled “garden.services.uptime-kuma.enable”Whether to enable Enable the uptime-kuma service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.uptime-kuma.domain
Section titled “garden.services.uptime-kuma.domain”Domain name for the uptime-kuma service
Type: string
Default:
"networking.domain"Declared by:
garden.services.uptime-kuma.host
Section titled “garden.services.uptime-kuma.host”The host for uptime-kuma service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.uptime-kuma.port
Section titled “garden.services.uptime-kuma.port”The port for uptime-kuma service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3008Declared by:
garden.services.vaultwarden.enable
Section titled “garden.services.vaultwarden.enable”Whether to enable Enable the vaultwarden service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.vaultwarden.domain
Section titled “garden.services.vaultwarden.domain”Domain name for the vaultwarden service
Type: string
Default:
"networking.domain"Declared by:
garden.services.vaultwarden.host
Section titled “garden.services.vaultwarden.host”The host for vaultwarden service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.vaultwarden.port
Section titled “garden.services.vaultwarden.port”The port for vaultwarden service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3013Declared by:
garden.services.wakapi.enable
Section titled “garden.services.wakapi.enable”Whether to enable Enable the wakapi service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.wakapi.domain
Section titled “garden.services.wakapi.domain”Domain name for the wakapi service
Type: string
Default:
"networking.domain"Declared by:
garden.services.wakapi.host
Section titled “garden.services.wakapi.host”The host for wakapi service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.wakapi.port
Section titled “garden.services.wakapi.port”The port for wakapi service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
3006Declared by:
garden.services.xmrig.enable
Section titled “garden.services.xmrig.enable”Whether to enable Enable the xmrig service.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.services.xmrig.domain
Section titled “garden.services.xmrig.domain”Domain name for the xmrig service
Type: string
Default:
"networking.domain"Declared by:
garden.services.xmrig.host
Section titled “garden.services.xmrig.host”The host for xmrig service
Type: string
Default:
"127.0.0.1"Declared by:
garden.services.xmrig.port
Section titled “garden.services.xmrig.port”The port for xmrig service
Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)
Default:
0Declared by:
garden.system.bluetooth.enable
Section titled “garden.system.bluetooth.enable”Whether to enable loading bluetooth drivers and enable blueman.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.boot.grub.device
Section titled “garden.system.boot.grub.device”The device to install the bootloader to.
Type: null or string
Default:
"nodev"Declared by:
garden.system.boot.initrd.optimizeCompressor
Section titled “garden.system.boot.initrd.optimizeCompressor”Whether to enable initrd compression algorithm optimizations for size. Enabling this option will force initrd to use zstd (default) with level 19 and -T0 (STDIN). This will reduce thee initrd size greatly at the cost of compression speed. Not recommended for low-end hardware. .
Type: boolean
Default:
"config.garden.profiles.workstation.enable"Example:
trueDeclared by:
garden.system.boot.initrd.tweaks.enable
Section titled “garden.system.boot.initrd.tweaks.enable”Whether to enable quality of life tweaks for the initrd stage.
Type: boolean
Default:
trueExample:
trueDeclared by:
garden.system.boot.loader
Section titled “garden.system.boot.loader”The bootloader that should be used for the device.
Type: one of “none”, “grub”, “systemd-boot”
Default:
"none"Declared by:
garden.system.boot.memtest.enable
Section titled “garden.system.boot.memtest.enable”Whether to enable memtest86+.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.boot.memtest.package
Section titled “garden.system.boot.memtest.package”The memtest86plus package to use.
Type: package
Default:
pkgs.memtest86plusDeclared by:
garden.system.boot.secureBoot
Section titled “garden.system.boot.secureBoot”Whether to enable secure-boot and load necessary packages.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.boot.silent
Section titled “garden.system.boot.silent”Whether to enable almost entirely silent boot process through quiet kernel parameter
.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.boot.tmpOnTmpfs
Section titled “garden.system.boot.tmpOnTmpfs”Whether to enable /tmp living on tmpfs. false means it will be cleared manually on each reboot.
Type: boolean
Default:
trueExample:
trueDeclared by:
garden.system.emulation.enable
Section titled “garden.system.emulation.enable”Whether to enable emulation of additional arcitechtures via binfmt. enabling this option will make it so that the system can build for additional systems such as aarc64 on x86_64 and vice versa. .
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.emulation.systems
Section titled “garden.system.emulation.systems”the systems to enable emulation for
Type: list of string
Default:
[ "aarch64-linux" "i686-linux"]Declared by:
garden.system.kernel.packages
Section titled “garden.system.kernel.packages”The kernel to use for the system.
Type: raw value
Default:
"pkgs.linuxPackages_latest"Declared by:
garden.system.kernel.tweaks.enable
Section titled “garden.system.kernel.tweaks.enable”Whether to enable security and performance related kernel parameters.
Type: boolean
Default:
trueExample:
trueDeclared by:
garden.system.mainUser
Section titled “garden.system.mainUser”The username of the main user for your system
Type: value “isabel” (singular enum)
Default:
"isabel"Declared by:
garden.system.networking.optimizeTcp
Section titled “garden.system.networking.optimizeTcp”Whether to enable Enable tcp optimizations.
Type: boolean
Default:
trueExample:
trueDeclared by:
garden.system.networking.tailscale.enable
Section titled “garden.system.networking.tailscale.enable”Whether to enable Tailscale VPN.
Type: boolean
Default:
"true"Example:
trueDeclared by:
garden.system.networking.tailscale.defaultFlags
Section titled “garden.system.networking.tailscale.defaultFlags”A list of command-line flags that will be passed to the Tailscale daemon on startup
using the config.services.tailscale.extraUpFlags.
If isServer is set to true, the server-specific values will be appended to the list
defined in this option.
Type: list of string
Default:
[ "--ssh"]Declared by:
garden.system.networking.tailscale.isClient
Section titled “garden.system.networking.tailscale.isClient”Whether the target host should utilize Tailscale client features”;
This option is mutually exclusive with config.services.tailscale.isServer as they both
configure Taiscale, but with different flags
Type: boolean
Default:
config.garden.profiles.workstation.enableExample:
trueDeclared by:
garden.system.networking.tailscale.isServer
Section titled “garden.system.networking.tailscale.isServer”Whether the target host should utilize Tailscale server features.
This option is mutually exclusive with config.services.tailscale.isClient as they both
configure Taiscale, but with different flags
Type: boolean
Default:
config.garden.profiles.server.enableExample:
trueDeclared by:
garden.system.printing.enable
Section titled “garden.system.printing.enable”Whether to enable printing.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.printing.extraDrivers
Section titled “garden.system.printing.extraDrivers”A list of additional drivers to install for printing
Type: attribute set of absolute path
Default:
{ }Declared by:
garden.system.security.auditd.enable
Section titled “garden.system.security.auditd.enable”Whether to enable Enable the audit daemon.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.security.auditd.autoPrune.enable
Section titled “garden.system.security.auditd.autoPrune.enable”Whether to enable Enable auto-pruning of audit logs.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.security.auditd.autoPrune.dates
Section titled “garden.system.security.auditd.autoPrune.dates”How often the audit log should be pruned
Type: string
Default:
"daily"Example:
"weekly"Declared by:
garden.system.security.auditd.autoPrune.size
Section titled “garden.system.security.auditd.autoPrune.size”The maximum size of the audit log in bytes
Type: signed integer
Default:
524288000Declared by:
garden.system.security.binaries.enable
Section titled “garden.system.security.binaries.enable”Whether to enable allow for none patched binaries to be run.
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.security.fixWebcam
Section titled “garden.system.security.fixWebcam”Whether to enable Fix the broken webcam by un-blacklisting the related kernel module…
Type: boolean
Default:
falseExample:
trueDeclared by:
garden.system.tools.enable
Section titled “garden.system.tools.enable”Whether to enable tools.
Type: boolean
Default:
trueExample:
trueDeclared by:
garden.system.tools.minimal
Section titled “garden.system.tools.minimal”Whether to enable limit to minimal system tooling.
Type: boolean
Default:
trueExample:
trueDeclared by:
garden.system.users
Section titled “garden.system.users”A list of users that you wish to declare as your non-system users. The first username
in the list will be treated as your main user unless garden.system.mainUser is set.
Type: list of string
Default:
[ "isabel"]Declared by: