[Unit]
Description=Rootless Podman REST (UNIX socket only)
After=default.target

[Service]
Type=simple
Environment="XDG_RUNTIME_DIR=/run/user/%U"
UMask=007
NoNewPrivileges=yes
ExecStartPre=/usr/bin/mkdir -p ${XDG_RUNTIME_DIR}/podman-host
ExecStartPre=/usr/bin/chmod 770 ${XDG_RUNTIME_DIR}/podman-host
ExecStart=/usr/bin/podman system service --time=0 unix://${XDG_RUNTIME_DIR}/podman-host/podman.sock
Restart=always
RestartSec=2

[Install]
WantedBy=default.target