[mcp] Reworks how system users are defined. [public-html] Adds system user for pushing updates.

system/hosts/mcp/containers.nix

@@ -18,6 +18,7 @@
     ./containers/shared-postgres.nix
     ./containers/synapse.nix
     ./containers/traefik.nix
+    ./containers/users.nix
   ];
 
   # Enable common container config files in /etc/containers
@@ -44,26 +45,6 @@
     #podman-compose # start group of containers for dev
   ];
 
-  users.groups = {
-    git = { };
-    timetagger = { };
-  };
-  users.users = {
-    gitea = {
-      uid = 2001;
-      isSystemUser = true;
-      description = "System User for Gitea";
-      extraGroups = [ "git" ];
-      group = "git";
-    };
-    timetagger = {
-      uid = 2002;
-      isSystemUser = true;
-      description = "System User for TimeTagger";
-      group = "timetagger";
-    };
-  };
-
   virtualisation.oci-containers.backend = "podman";
   virtualisation.oci-containers.containers =
     let