Add Podman container infrastructure role for containerized services

- Implemented complete Podman infrastructure role following rick-infra patterns
- Minimal installation approach: only install podman, trust Arch dependency management
- Configured with crun runtime for optimal performance and security
- Security-focused: HTTPS-only registries, rootless containers, systemd hardening
- Registry support: docker.io, quay.io, ghcr.io with secure configurations
- Ready for service-specific users with isolated container environments
- Quadlet support for native systemd container management
- Container-to-host networking via bridge networks with host gateway access
- Foundation for future containerized services (Authentik, Nextcloud)
- Maintains rick-infra philosophy: infrastructure provides foundation, apps manage specifics

roles/podman/handlers/main.yml

@@ -0,0 +1,13 @@
+---
+# Podman Infrastructure Role - Handlers
+# Matches the handler pattern from other infrastructure roles
+
+- name: reload systemd
+  systemd:
+    daemon_reload: yes
+
+- name: restart podman
+  systemd:
+    name: podman
+    state: restarted
+  when: podman_service_enabled | default(true)