From 9e2f85de130bee33ba00bf7a613365d1a70b3b56 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Felix=20Schr=C3=B6ter?= <dev@felschr.com>
Date: Mon, 18 Sep 2023 19:33:14 +0200
Subject: [PATCH] feat(virtualisation): set userns auto for containers

---
 hosts/home-pc.nix             |  3 ++-
 hosts/work-pc.nix             |  1 +
 virtualisation/containers.nix | 10 ++++++++++
 3 files changed, 13 insertions(+), 1 deletion(-)
 create mode 100644 virtualisation/containers.nix

diff --git a/hosts/home-pc.nix b/hosts/home-pc.nix
index cdad54e..f5ae837 100644
--- a/hosts/home-pc.nix
+++ b/hosts/home-pc.nix
@@ -12,8 +12,9 @@
     ../system/printing/home.nix
     ../system/gaming.nix
     ../desktop
-    ../virtualisation/libvirt.nix
+    ../virtualisation/containers.nix
     ../virtualisation/podman.nix
+    ../virtualisation/libvirt.nix
     ../modules/systemdNotify.nix
     ../services/samba/home-pc.nix
     ../services/restic/home-pc.nix
diff --git a/hosts/work-pc.nix b/hosts/work-pc.nix
index edf541a..b7de034 100644
--- a/hosts/work-pc.nix
+++ b/hosts/work-pc.nix
@@ -8,6 +8,7 @@
     ../system/desktop.nix
     ../system/printing/home.nix
     ../desktop
+    ../virtualisation/containers.nix
     ../virtualisation/podman.nix
   ];
 
diff --git a/virtualisation/containers.nix b/virtualisation/containers.nix
new file mode 100644
index 0000000..e9e54b1
--- /dev/null
+++ b/virtualisation/containers.nix
@@ -0,0 +1,10 @@
+_:
+
+{
+  # Enable /etc/containers configuration (used by podman, cri-o, etc.)
+  virtualisation.containers.enable = true;
+  virtualisation.containers.containersConf.settings = {
+    # Create unique User Namespace for the container
+    containers.userns = "auto";
+  };
+}