Merge pull request #26742 from aesteve-rh/fix-doc

openshift-merge-bot[bot] · web-flow · commit 43ea8337c1b9 · 2025-08-05T11:53:00.000Z
doc(podman-system.unit.5.md): clarify user/group
diff --git a/docs/source/markdown/podman-systemd.unit.5.md b/docs/source/markdown/podman-systemd.unit.5.md
@@ -554,6 +554,9 @@ This key can be listed multiple times.
 The (numeric) GID to run as inside the container. This does not need to match the GID on the host,
 which can be modified with `UserNS`, but if that is not specified, this GID is also used on the host.
 
+Note: when both `User=` and `Group=` are specified, they are combined into a single `--user USER:GROUP`
+argument passed to Podman. Using `Group=` without `User=` will result in an error.
+
 ### `GroupAdd=`
 
 Assign additional groups to the primary user running within the container process. Also supports the `keep-groups` special flag.
@@ -968,6 +971,9 @@ The default paths that are read-only are /proc/asound, /proc/bus, /proc/fs, /pro
 The (numeric) UID to run as inside the container. This does not need to match the UID on the host,
 which can be modified with `UserNS`, but if that is not specified, this UID is also used on the host.
 
+Note: when both `User=` and `Group=` are specified, they are combined into a single `--user USER:GROUP`
+argument passed to Podman.
+
 ### `UserNS=`
 
 Set the user namespace mode for the container. This is equivalent to the Podman `--userns` option and
