---
- name: ensure podman group
  group:
    name: podman
    state: present
    system: True

- name: ensure podman user
  user:
    name: podman
    state: present
    group: podman
    system: True

- name: ensure podman is installed
  apt:
    name:
      - catatonit
      - fuse-overlayfs
      - podman
      - slirp4netns
      - uidmap
    state: present

- name: ensure containers.conf is configured
  copy:
    src: containers.conf
    dest: /etc/containers/containers.conf
    owner: root
    group: root
    mode: 0644

- name: Check if podman lingers
  stat: path=/var/lib/systemd/linger/podman
  register: linger

- name: enable lingering for podman
  command: loginctl enable-linger podman
  when: not linger.stat.exists

- name: enable podman
  systemd:
    name: podman
    state: started
    enabled: True
    scope: user
  changed_when: False
  become: True
  become_user: podman

- name: check if subuid is configured
  shell: grep podman /etc/subuid
  register: subuid
  changed_when: False
  check_mode: False
  failed_when: False

- name: check if subgid is configured
  shell: grep podman /etc/subgid
  register: subgid
  changed_when: False
  check_mode: False
  failed_when: False

- name: configure subuid
  shell: usermod --add-subuids 200000-201000 podman
  when: subuid.rc != 0

- name: configure subgid
  shell: usermod --add-subgids 200000-201000 podman
  when: subgid.rc != 0
...