I tried reading through other board posts and custom-user-mappings-in-lxd-containers but wasn’t able to entirely clear up my confusion.
Let’s say I have user alice@host (1000) user bob@c1 (1000) inside container c1.
I configure c1 as follows:
config: raw.idmap both 1000 1000
Files owned by alice on the host now appear as owned by bob from within c1. What does this mean in terms of actual privileges? Is bob is still e.g. uid 1001000 from the host’s point of view? If so, is there some special back-and-fourth uid/suid translation of file ownership at work here?