+1 -1

machines/sodacream/configuration.nix

reviewed

··· 26 26 enable = true; 27 27 tailscale.enable = true; 28 28 sshd.enable = false; 29 29 - docker.enable = true; 29 29 + podman.enable = true; 30 30 }; 31 31 }; 32 32

-1

modules/server/default.nix

reviewed

··· 23 23 ./jellyfin.nix 24 24 ./home-assistant.nix 25 25 ./podman.nix 26 26 - ./docker.nix 27 26 ]; 28 27 }

-26

modules/server/docker.nix

reviewed

··· 1 1 - { lib, pkgs, config, user, ... }: 2 2 - 3 3 - with lib; 4 4 - let 5 5 - cfgRoot = config.modules.server; 6 6 - cfg = config.modules.server.docker; 7 7 - in { 8 8 - options.modules.server.docker = { 9 9 - enable = mkOption { 10 10 - default = false; 11 11 - example = true; 12 12 - description = "Whether to enable Docker."; 13 13 - type = types.bool; 14 14 - }; 15 15 - }; 16 16 - 17 17 - config = mkIf (cfg.enable && cfgRoot.enable) { 18 18 - virtualisation.docker.enable = true; 19 19 - 20 20 - environment.systemPackages = with pkgs; [ 21 21 - docker-compose 22 22 - ]; 23 23 - 24 24 - users.extraGroups.docker.members = [ user ]; 25 25 - }; 26 26 - }

+4 -1

modules/server/podman.nix

reviewed

··· 1 1 - { lib, config, ... }: 1 1 + { lib, config, user, ... }: 2 2 3 3 with lib; 4 4 let ··· 26 26 oci-containers.backend = "podman"; 27 27 podman = { 28 28 enable = true; 29 29 + dockerCompat = true; 29 30 autoPrune.enable = true; 30 31 defaultNetwork.settings = { 31 32 dns_enabled = true; 32 33 }; 33 34 }; 34 35 }; 36 36 + 37 37 + users.users."${user}".extraGroups = [ "podman" ]; 35 38 36 39 boot.kernel.sysctl = mkIf cfg.tweakKernel { 37 40 "kernel.unprivileged_userns_clone" = true;