Am Wed, Jun 28, 2023 at 01:03:33PM -0700 schrieb Ryan Tandy: > Hmm. So on upgrade I suppose we would want to automatically migrate those > settings to a drop-in? That actually sounds doable; such a drop-in would > probably not have to be a conffile.
Indeed, so my idea was that e.g. the systemd unit would default to User=openldap and Group=openldap and then the postinst could check if /etc/default/slapd has SLAPD_GROUP and/or SLAPD_USER set to something other than "openlap" and in that case a drop-in would be generated with those settings. Similar for Kerberos etc. > > The most commonly used option is probably SLAPD_OPTIONS, which could also > > be read via an EnvironmentFile from /etc/default. > > Right. Although if that's the only thing still being consumed, I'd be > tempted to just let it go too. :) Actually, that's a fair point, then there would be a clean cut so that it's obvious that /etc/default/slapd is only relevant for folks not using systemd. Again, SLAPD_OPTIONS could easily also be a drop-in after all. > Thanks for the input, it really does help. :) Glad to help! Cheers, Moritz