Changed: Podman

2025-03-26 15:36:46 +01:00
parent 622806ddef
commit dd81a54403
2 changed files with 17 additions and 17 deletions
--- a/modules/system.nix
+++ b/modules/system.nix
@@ -10,7 +10,7 @@
    users.users.${username} = {
        isNormalUser = true;
        description = username;
-        extraGroups = ["networkmanager" "wheel"];
+        extraGroups = ["networkmanager" "wheel" "podman"];
    };
 # given the users in this list the right to specify additional substituters via:
 #    1. `nixConfig.substituers` in `flake.nix`
@@ -106,6 +106,7 @@
    services.gvfs.enable = true;
    services.tumbler.enable = true;

+# Virtualisation
    virtualisation = {
        containers.enable = true;

@@ -114,24 +115,20 @@
            dockerCompat = true;
            defaultNetwork.settings.dns_enabled = true;
        };
-        
-        docker = {
-            enable = true;
-            rootless = {
-                enable = true;
-                setSocketVariable = true;
-            };
-            daemon.settings = {
-                data-root = "/docker/containers";
-                userland-proxy = false;
-                experimental = true;
-                metrics-addr = "0.0.0.0:9323";
-                ipv6 = true;
-                fixed-cidr-v6 = "fd00::/80";
+
+        oci-containers = {
+            backend = "podman";
+            containers = {
+                /*container-name = {
+                    image = "image";
+                    autoStart = true;
+                    ports = [ "127.0.0.1:1234:1234" ];
+                };*/
            };
        };
    };

+
 # networking.firewall.allowedTCPPorts = [ ... ];
 # networking.firewall.allowedUDPPorts = [ ... ];
 # Or disable the firewall altogether.
@@ -195,6 +192,11 @@
        unzip
        p7zip
        xz
+
+# Virtualisation 
+        podman-compose # docker-compose alternative
+        dive # docker layer viewer
+        podman-tui # status of containers in terminal 
    ];

 # Enable sound with pipewire.
--- a/users/phil/nixos.nix
+++ b/users/phil/nixos.nix
@@ -12,8 +12,6 @@
        openssh.authorizedKeys.keys = [
            "ssh-rsa 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 phil@web.cyperpunk.de"
        ];
-        isNormalUser = true;
-        extraGroups = [ "networkmanager" "podman" ];
        shell = pkgs.fish;
    };