From d41b386aaf7172fb2d220399e5975269ab79a8cb Mon Sep 17 00:00:00 2001
From: Alan Pearce
Date: Thu, 4 Apr 2024 17:57:58 +0200
Subject: Enable rootless docker

---
 system/settings/programs/docker.nix | 23 +++++++++++++++++++++++
 1 file changed, 23 insertions(+)
 create mode 100644 system/settings/programs/docker.nix

(limited to 'system/settings')

diff --git a/system/settings/programs/docker.nix b/system/settings/programs/docker.nix
new file mode 100644
index 00000000..d7c6a88e
--- /dev/null
+++ b/system/settings/programs/docker.nix
@@ -0,0 +1,23 @@
+{ ... }: {
+  virtualisation.docker = {
+    enable = false;
+    storageDriver = "overlay2";
+    rootless = {
+      enable = true;
+      setSocketVariable = true;
+      daemon.settings = {
+        fixed-cidr-v6 = "fd0c::/80";
+        ipv6 = true;
+        dns = [
+          "1.0.0.1"
+          "1.1.1.1"
+        ];
+      };
+    };
+  };
+  # TODO: autoPrune doesn't affect rootless
+  # systemd.timers.docker-prune.timerConfig = {
+  #   Persistent = true;
+  #   RandomizedDelaySec = 1800;
+  # };
+}
-- 
cgit 1.4.1