#! /bin/sh

PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin

FILTER="(&(objectClass=lfNetwork))"
DBDIR="/var/db/lfldap"
PREFIX="/usr/local"
HOOKDIR="${PREFIX}/share/lfldap/hooks"
NETWORKS_FILE="${DBDIR}/networks"
NETWORKS_TEMP="${DBDIR}/networks.tmp"

trap cleanup 0
cleanup()
{
	rm -f "$NETWORKS_TEMP"
}

mkdir -p "$DBDIR"
rm -f "$NETWORKS_TEMP"

if [ ! -f "$NETWORKS_FILE" ]; then
	touch "$NETWORKS_FILE"
fi

ldapsearch			\
	-x -s sub		\
	"$FILTER"		\
	cidrPrefix		\
	| awk '/^cidrPrefix: / { print $2 }' >${NETWORKS_TEMP}

if ! [ -s "$NETWORKS_TEMP" ]; then
	printf >&2 '%s: no networks returned; configuration error?\n' "$0"
	exit 1
fi

if ! cmp -s "$NETWORKS_FILE" "$NETWORKS_TEMP"; then
	printf '%s updated:\n\n' "$NETWORKS_FILE"
	diff "$NETWORKS_FILE" "$NETWORKS_TEMP"
	printf '\n'

	mv "$NETWORKS_TEMP" "$NETWORKS_FILE"
else
	rm -f "$NETWORKS_TEMP"
fi

# Run hooks even if the networks didn't change, since the user might want
# new hooks to run.

exit=0

export NETWORKS_FILE

for hook in ${HOOKDIR}/*.sh; do
	sh $hook || exit=1
done

exit $exit