---
# TODO: This is from which port it start, so it's port -> till the end
# so if 53 is defined, then it allows all ports from 53 to end for users to use
# maybe redirect of ports would be better?
- name: Allow podman privileged ports for non root users for {{ item.name }}
  ansible.posix.sysctl:
    name: net.ipv4.ip_unprivileged_port_start
    value: "{{ item.privileged_ports_start | int }}"
    sysctl_file: /etc/sysctl.conf
    sysctl_set: true
    state: present
    reload: true
  when: item.privileged_ports_start is defined and not item.privileged_ports_start == ""

- name: Create a network (rootless)
  containers.podman.podman_network:
    name: "{{ item.network }}"
  become: true
  become_user: "{{ item.rootless_user }}"
  when:
    - not item.rootless_user == ""

- name: Create a network
  containers.podman.podman_network:
    name: "{{ item.network }}"
  become: true
  when:
    - item.rootless_user == "" or not item.rootless_user is defined