#!/bin/sh

# Keep renewing/recreating kerberos tickets for ldap/hostname

if [ $(id -u) -ne 0 ]; then
    echo "Error: You are not root"
    exit 1
fi

. /etc/default/slapd
KSTART="k5start -b -f ${KRB5_KTNAME} -u ldap -i $(hostname --fqdn) -q -K 60"
case "${1}" in
  start)
    pgrep -U "${SLAPD_USER}" -G "${SLAPD_GROUP}" -fx "${KSTART}" >/dev/null \
        || sudo -u "${SLAPD_USER}" ${KSTART} \
        || exit 1
    ;;
  stop)
    pkill -U "${SLAPD_USER}" -G "${SLAPD_GROUP}" -fx "${KSTART}" >/dev/null \
    ;;
  *)
    echo "Usage: $0 {start|stop}" >&2
    exit 1
    ;;
esac