containerctl/example.container

{
	"name": "example-container",
	"image": {
		"registry": "registry.opensuse.org",
		"image": "nginx",
		"tag": "latest"
	},
	"privileged": false,
	"read_only": false,
	"replace": false,
	"pull_policy": "always",
	"restart": "always",
	"network": {
		"mode": "podman1",
		"options": []
	},
	"dns": {
		"search": "internal.contenso.com",
		"servers": [ "1.1.1.1", "1.0.0.1" ]
	},
	"ports": {
		"tcp": [ "53", "80", "443" ],
		"udp": [ "53", "443" ]
	},
	"env": {
		"FOO": "BAR",
		"MAN_WIDTH": "42"
	},
	"secrets": {
		"MySecret1": {
			"type": "mount",
			"options": "uid=0,gid=0,chmod=0777",
			"target": "/var/run/secrets/MySecret1"
		},
		"MySecret2": {
			"type": "mount",
			"target": "/var/run/secrets/MySecret2"
		},
		"MySecret3": {
			"type": "env",
			"target": "MY_SECRET_3"
		}
	},
	"volumes": {
		"etc": "/etc:ro,noexec",
		"var": "/var"
	},
	"capabilities": {
		"add": [ "NET_RAW" ],
		"drop": [ "CAP_SYS_ADMIN" ]
	}
}