include:
  - system.apk

applications_podman_pkgs:
  pkg.installed:
    - pkgs:
      - podman
      - podman-openrc

application_podman_compose_pkg:
  pkg.installed:
    - pkgs:
      - podman-compose
    - fromrepo: testing
    - require:
      - applications_podman_pkgs

applications_podman_rootless_confd:
  file.keyvalue:
    - name: /etc/conf.d/podman
    - key_values:
        podman_user: '"puser"'
    - separator: '='
    - uncomment: '#'
    - key_ignore_case: false
    - value_ignore_case: false
    - append_if_not_found: true
    - require:
      - applications_podman_pkgs

applications_podman_service:
  service.running:
    - name: podman
    - enable: True
    - watch:
      - file: /etc/conf.d/podman
    - require:
      - applications_podman_rootless_confd

applications_podman_rootless_cgroup_mode:
  file.keyvalue:
    - name: /etc/rc.conf
    - key_values:
        rc_cgroup_mode: '"unified"'
    - separator: '='
    - uncomment: '#'
    - key_ignore_case: false
    - value_ignore_case: false
    - append_if_not_found: true
    - require:
      - applications_podman_pkgs

applications_podman_rootless_cgroups:
  service.running:
    - name: cgroups
    - enable: True
    - watch:
      - applications_podman_rootless_cgroup_mode

applications_podman_user:
  user.present:
    - name: puser
    - uid: 2000
    - shell: /bin/zsh
    - home: /home/puser
    - usergroup: True
    - createhome: True
    - require:
      - applications_podman_pkgs

applications_podman_rootless_modules:
  file.append:
    - name: /etc/modules
    - text:
      - tun
      - fuse

applications_podman_rootless_subgid:
  file.append:
    - name: /etc/subgid
    - text: puser:100000:65536
    - require:
      - applications_podman_user

applications_podman_rootless_subuid:
  file.append:
    - name: /etc/subuid
    - text: puser:100000:65536
    - require:
      - applications_podman_user