offlinehacker/container.nix

## container.nix
{ pkgs, lib, ...}: {
  imports = [
    ./nixos/modules/profiles/minimal.nix
  ];

  boot.isContainer = true;
  boot.specialFileSystems = lib.mkForce {};
  networking.hostName = "";

  services.journald.console = "/dev/console";

  systemd.services.audit.enable = false;
  systemd.services.systemd-logind.enable = false;
  systemd.services.console-getty.enable = false;
  services.nscd.enable = false;

  systemd.sockets.nix-daemon.enable = lib.mkDefault false;
  systemd.services.nix-daemon.enable = lib.mkDefault false;

  services.postgresql.enable = true;
}

## docker-image.nix
{ pkgs, lib, ...}: {
  imports = [
    ./nixos/modules/profiles/minimal.nix
  ];

  boot.isContainer = true;
  boot.specialFileSystems = lib.mkForce {};
  networking.hostName = "";

  services.journald.console = "/dev/console";

  systemd.services.audit.enable = false;
  systemd.services.systemd-logind.enable = false;
  systemd.services.console-getty.enable = false;
  services.nscd.enable = false;

  systemd.sockets.nix-daemon.enable = lib.mkDefault false;
  systemd.services.nix-daemon.enable = lib.mkDefault false;

  services.postgresql.enable = true;
}

## run.sh
podman run --systemd=true --pids-limit 0 --tmpfs /run --tmpfs /run/wrappers -ti localhost/xtruder/nixos-postgresql:latest
	{ pkgs, lib, ...}: {
	imports = [
	./nixos/modules/profiles/minimal.nix
	];

	boot.isContainer = true;
	boot.specialFileSystems = lib.mkForce {};
	networking.hostName = "";

	services.journald.console = "/dev/console";

	systemd.services.audit.enable = false;
	systemd.services.systemd-logind.enable = false;
	systemd.services.console-getty.enable = false;
	services.nscd.enable = false;

	systemd.sockets.nix-daemon.enable = lib.mkDefault false;
	systemd.services.nix-daemon.enable = lib.mkDefault false;

	services.postgresql.enable = true;
	}