doc(podman-system.unit.5.md): clarify user/group

Clarify User= and Group= quadlet options when used simultaneously. Signed-off-by: Albert Esteve <aesteve@redhat.com>
2026-03-26 18:43:30 -04:00 · 2025-08-04 15:37:32 +02:00
parent f27e52b2a8
commit ca3347cc2b
1 changed files with 6 additions and 0 deletions
--- a/docs/source/markdown/podman-systemd.unit.5.md
+++ b/docs/source/markdown/podman-systemd.unit.5.md
@@ -554,6 +554,9 @@ This key can be listed multiple times.
 The (numeric) GID to run as inside the container. This does not need to match the GID on the host,
 which can be modified with `UserNS`, but if that is not specified, this GID is also used on the host.

+Note: when both `User=` and `Group=` are specified, they are combined into a single `--user USER:GROUP`
+argument passed to Podman. Using `Group=` without `User=` will result in an error.
+
 ### `GroupAdd=`

 Assign additional groups to the primary user running within the container process. Also supports the `keep-groups` special flag.
@@ -968,6 +971,9 @@ The default paths that are read-only are /proc/asound, /proc/bus, /proc/fs, /pro
 The (numeric) UID to run as inside the container. This does not need to match the UID on the host,
 which can be modified with `UserNS`, but if that is not specified, this UID is also used on the host.

+Note: when both `User=` and `Group=` are specified, they are combined into a single `--user USER:GROUP`
+argument passed to Podman.
+
 ### `UserNS=`

 Set the user namespace mode for the container. This is equivalent to the Podman `--userns` option and