#!/bin/sh -e

. ldap-config

[ -n "$(echo "$1"|grep '/etc/openldap')" ] && SLAPD_CONF="$1" && shift

ldap_config "$SLAPD_CONF"

[ "$#" -ge 1 ] || fatal "more arguments required"
proxyuser="$1"
shift

case "$proxyuser" in
	create)
		proxyuser_pass_crypted="$(slappasswd -T "$PROXYUSER_FILE" -c {CRYPT})"

		ldapadd -a -D "$rootdn" $rootpw -x -H "ldap://${host:-127.0.0.1}"<<EOF
dn: cn=proxyuser,$base
cn: proxyuser
sn: proxyuser
objectclass: top
objectclass: person
userpassword: $proxyuser_pass_crypted
EOF
		;;

	remove)
		ldapdelete -D "$rootdn" $rootpw -x -H "ldap://${host:-127.0.0.1}" "cn=proxyuser,$base"
		;;

	*)
		;;

esac
