# Containerfile
# podman image build -q -t debian:podman-trixie -f Containerfile .
# podman run -q -it --rm --device /dev/fuse debian:podman-trixie
  # in development container e.g. 
FROM debian:trixie

ENV DEBIAN_FRONTEND="noninteractive"

RUN apt-get update && \
    apt-get install -y --no-install-recommends podman podman-compose \
    fuse-overlayfs slirp4netns uidmap iptables aardvark-dns nftables ca-certificates sudo \
    git ssh && \
    apt-get upgrade -y

RUN useradd webgui -s /bin/bash && \
    echo "webgui:1001:64535" > /etc/subuid && \
    echo "webgui:1001:64535" > /etc/subgid

ARG _REPO_URL="https://raw.githubusercontent.com/containers/image_build/refs/heads/main/podman"
ADD $_REPO_URL/containers.conf /etc/containers/containers.conf
ADD $_REPO_URL/podman-containers.conf /home/webgui/.config/containers/containers.conf

RUN mkdir -p /home/webgui/.local/share/containers && \
    chown webgui:webgui -R /home/webgui && \
    chmod 0644 /etc/containers/containers.conf

VOLUME /home/webgui/.local/share/containers

# Replace setuid bits by proper file capabilities for uidmap binaries.
# See <https://github.com/containers/podman/discussions/19931>.
RUN apt-get install -y libcap2-bin && \
    chmod 0755 /usr/bin/newuidmap /usr/bin/newgidmap && \
    setcap cap_setuid=ep /usr/bin/newuidmap && \
    setcap cap_setgid=ep /usr/bin/newgidmap && \
    apt-get autoremove --purge -y libcap2-bin

ENV _CONTAINERS_USERNS_CONFIGURED=""

RUN SNIPPET="export PROMPT_COMMAND='history -a' && \
             export HISTFILE=/commandhistory/.bash_history" && \
             echo "$SNIPPET" >> "/root/.bashrc"

#USER webgui
#WORKDIR /home/webgui

