step by step

hosts/tesla-nixos/configuration.nix

@@ -86,9 +86,6 @@
       # Rootless Podman
       virtualisation.podman = {
         enable = true;
-        # Provide Docker-compatible CLI & /var/run/docker.sock shim (for rootful).
-        # We'll still point the runner directly at the rootless socket (recommended).
-        dockerCompat = true;
         defaultNetwork.settings.dns_enabled = true;
       };
       environment.systemPackages = with pkgs; [
@@ -117,7 +114,7 @@
           ExecStart = "${pkgs.podman}/bin/podman system service --time=0";
           Restart = "always";
         };
-        WantedBy = [ "default.target" ];
+        wantedBy = [ "default.target" ];
       };
 
       # Make the user session available at boot (so the user service can run)
@@ -151,11 +148,9 @@
             dockerVolumes = [
               "/var/lib/gitlab-runner/cache:/cache"
             ];
-
-            # If that option isn’t available in your channel, instead supply a full
-            # config.toml via `services.gitlab-runner.configFile` where you set:
-            #   [runners.docker]
-            #   host = "unix:///run/user/UID/podman/podman.sock"
+            environmentVariables = [
+              "DOCKER_HOST=unix:///run/user/2100/podman/podman.sock"
+            ];
           }; # end services.ci-nspawn-rootless-podman
         }; # end services.gitlab-runner
       }; # end containers.ci.config