chromium browser fails with permission denied unless run with --no-sandbox

[b1r63r]

Image
image: "docker.io/consol/rocky-xfce-vnc:latest"
platform: "linux/arm64"

Tag
latest

Short overview
podman on raspberry pi 5 under raspberry pi os.

Detailed error description
when starting chromium-browser from command line i get
[904:904:1113/200454.577844:FATAL:credentials.cc(127)] Check failed: . : Permission denied (13)
Trace/breakpoint trap

probably because the home dir is owned by root with permissions 777

if i add --no-sandbox the browser works.

Additional content
i am running under podman, and i have mounted a volume as home dir for the user.
also, the firefox installation in the image is not for arm

ansible code used for deployment. the container gets injected into a pod containing apache guacamole.

• name: "Deploy VNC Desktop sidecar container running as {{ webtop_user.uid }}:{{ webtop_user.group }}"
  containers.podman.podman_container:
  name: "vnc-desktop"
  image: "docker.io/consol/rocky-xfce-vnc:latest"
  platform: "linux/arm64"
  pod: "{{ guac_pod_name }}"
  user: "{{ webtop_user.uid }}:{{ webtop_user.group }}"
  volume:
  - "vnc_desktop_home:/headless:Z"
  env:
  TZ: "{{ timezone | default('Europe/Oslo') }}"
  VNC_PW: "{{ guac_vnc_password }}"
  VNC_PASSWORD: "{{ guac_vnc_password }}"
  rm: false
  restart_policy: on-failure
  become: true
  no_log: true # Hides the VNC_PW
  tags: [guacamole, podman, vnc]