23 lines
412 B
Nix
23 lines
412 B
Nix
{ pkgs, ... }:
|
|
|
|
{
|
|
virtualisation.docker = {
|
|
enable = true;
|
|
rootless = {
|
|
enable = true;
|
|
setSocketVariable = true;
|
|
};
|
|
};
|
|
|
|
users.users.xeovalyte.extraGroups = [ "docker" ];
|
|
|
|
security.wrappers = {
|
|
docker-rootlesskit = {
|
|
owner = "root";
|
|
group = "root";
|
|
capabilities = "cap_net_bind_service+ep";
|
|
source = "${pkgs.rootlesskit}/bin/rootlesskit";
|
|
};
|
|
};
|
|
}
|