diff --git a/hosts/vps1/configuration.nix b/hosts/vps1/configuration.nix
index 41f0d8d..05e4cb3 100644
--- a/hosts/vps1/configuration.nix
+++ b/hosts/vps1/configuration.nix
@@ -35,6 +35,7 @@ in
   programs.fish.enable = true;
 
   nix.settings.experimental-features = [ "nix-command" "flakes" ];
+  nix.settings.allowed-users = [ "@wheel" ];
 
   boot.tmp.cleanOnBoot = true;
   zramSwap.enable = true;
@@ -156,10 +157,31 @@ in
     extraGroups = [
       "wheel"
       "docker"
+      "podman"
       config.services.openvscode-server.group
     ];
     shell = pkgs.fish;
   };
+  
+  users.users.mikprin = {
+    isNormalUser = true;
+    extraGroups = [
+      "podman"
+    ];
+    shell = pkgs.fish;
+  };
+
+  # TODO move to separate
+  virtualisation.docker.enable = true;
+
+  virtualisation.containers.enable = true;
+  virtualisation = {
+    podman = {
+      enable = true;
+      dockerCompat = false;
+      defaultNetwork.settings.dns_enabled = true;
+    };
+  };
 
   nixpkgs.config.allowUnfree = true;
 
diff --git a/hosts/vps1/services/git.nix b/hosts/vps1/services/git.nix
index 149471b..d1bb995 100644
--- a/hosts/vps1/services/git.nix
+++ b/hosts/vps1/services/git.nix
@@ -137,9 +137,7 @@ in
       ];
     };
   };
-  # TODO move to separate
-  virtualisation.docker.enable = true;
-
+  
   sops.secrets."forgejo/email_password" = sops_opts;
 
   sops.secrets."forgejo/db_password" = sops_opts;