chore: podman for binex
This commit is contained in:
parent
640cfafe3f
commit
948ce34e70
|
@ -42,6 +42,10 @@
|
||||||
layout = "de";
|
layout = "de";
|
||||||
xkbVariant = "bone";
|
xkbVariant = "bone";
|
||||||
};
|
};
|
||||||
|
virtualisation.podman = {
|
||||||
|
enable = false;
|
||||||
|
dockerCompat = true;
|
||||||
|
};
|
||||||
|
|
||||||
system.activationScripts.decryptKey.text = ''
|
system.activationScripts.decryptKey.text = ''
|
||||||
ln -f -s ${../../keys/PatC.key} /run/decrypt.key.pub
|
ln -f -s ${../../keys/PatC.key} /run/decrypt.key.pub
|
||||||
|
|
|
@ -17,6 +17,7 @@
|
||||||
msr = uidGid 208;
|
msr = uidGid 208;
|
||||||
avahi = uidGid 209;
|
avahi = uidGid 209;
|
||||||
fwupd-refresh = uidGid 210;
|
fwupd-refresh = uidGid 210;
|
||||||
|
podman = uidGid 211;
|
||||||
systemd-oom = uidGid 300;
|
systemd-oom = uidGid 300;
|
||||||
systemd-coredump = uidGid 301;
|
systemd-coredump = uidGid 301;
|
||||||
};
|
};
|
||||||
|
|
|
@ -23,6 +23,18 @@ lib.optionalAttrs (!minimal) {
|
||||||
group = "patrick";
|
group = "patrick";
|
||||||
hashedPassword = config.secrets.secrets.global.users.patrick.passwordHash;
|
hashedPassword = config.secrets.secrets.global.users.patrick.passwordHash;
|
||||||
autoSubUidGidRange = false;
|
autoSubUidGidRange = false;
|
||||||
|
subUidRanges = [
|
||||||
|
{
|
||||||
|
count = 65534;
|
||||||
|
startUid = 100001;
|
||||||
|
}
|
||||||
|
];
|
||||||
|
subGidRanges = [
|
||||||
|
{
|
||||||
|
count = 65534;
|
||||||
|
startGid = 100001;
|
||||||
|
}
|
||||||
|
];
|
||||||
};
|
};
|
||||||
users.groups.patrick.gid = config.users.users.patrick.uid;
|
users.groups.patrick.gid = config.users.users.patrick.uid;
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue