From af295cec1bf10cd4121a168919eefe1e2a686072 Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Tue, 28 May 2024 08:25:08 -0500
Subject: [PATCH] r/bitwarden_rs: Fix EROFS when starting container

Even with `Network=host`, Podman tries to write to
`/etc/containers/network` for some reason.  Fortunately, it doesn't
actually need to, so we can trick it into working by mounting an empty
*tmpfs* filesystem there.
---
 roles/bitwarden_rs/templates/vaultwarden.service.j2 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/roles/bitwarden_rs/templates/vaultwarden.service.j2 b/roles/bitwarden_rs/templates/vaultwarden.service.j2
index 001adbd..e56c810 100644
--- a/roles/bitwarden_rs/templates/vaultwarden.service.j2
+++ b/roles/bitwarden_rs/templates/vaultwarden.service.j2
@@ -18,6 +18,7 @@ ExecStart=/usr/bin/podman run \
     --uidmap 1:100000:65536 \
     --gidmap 1:100000:65536 \
     docker.io/vaultwarden/server:latest
+TemporaryFileSystem=/etc/containers/networks
 SuccessExitStatus=143
 ProtectSystem=full
 UMask=0077