feat(docker): switch to rootfull

workflow · Jul 17, 2024 · 7eed4b9 · 7eed4b9
1 parent 0e6c60c
commit 7eed4b9
Show file tree

Hide file tree

Showing 2 changed files with 7 additions and 8 deletions.
diff --git a/flake.lock b/flake.lock
diff --git a/system/virtualisation.nix b/system/virtualisation.nix
@@ -1,21 +1,20 @@
-{pkgs, ...}: {
-  virtualisation.docker.rootless = {
+{...}: {
+  virtualisation.docker = {
     enable = true;
-    setSocketVariable = true;
   };
 
   # https://rootlesscontaine.rs/getting-started/common/cgroup2/#enabling-cpu-cpuset-and-io-delegation
   # For minikube
   # Writes to /etc/systemd/system/[email protected]/overrides.conf
-  systemd.services."user@".serviceConfig = {
-    Delegate = "cpu cpuset io memory pids";
-  };
+  # systemd.services."user@".serviceConfig = {
+  #   Delegate = "cpu cpuset io memory pids";
+  # };
 
   virtualisation.libvirtd.enable = true;
 
   virtualisation.podman = {
     enable = true;
   };
 
-  users.users.farlion.extraGroups = ["libvirtd" "kvm"];
+  users.users.farlion.extraGroups = ["libvirtd" "kvm" "docker"];
 }