Fix the init for Kerberos with password auth

A number of 5 attempts has been added to avoid infinite loop if a fatal error of the Kerberos server. Also the die function has been fixed to escape special char with \$, else empty message was given.
criteo · Nov 14, 2024 · 63362c6 · 63362c6
1 parent 6311a6c
commit 63362c6
Showing 1 changed file with 6 additions and 3 deletions.
diff --git a/script/init.sh b/script/init.sh
@@ -42,15 +42,18 @@ echo "=== Init "${machine_container}" docker container ==="
 docker exec "${machine_container}" /bin/bash -c "
 
 die() {
-  >&2 echo \"$1\"
+  >&2 echo \$1
   exit 1
 }
 
 echo '* Kerberos password authentication:'
-until echo bob | kinit bob@${REALM_KRB5}; do
+(for attempt in {1..5}; do
+  echo bob | kinit bob@${REALM_KRB5} && exit
   echo Waiting for kerberos server started ...
   sleep 1
-done
+  echo attempt=\${attempt}
+  [ \${attempt} -eq 5 ] && exit 1
+done) && echo OK || die KO
 
 echo '* Kerberos keytab authentication:'
 kinit -kt /etc/bob.keytab bob@${REALM_KRB5} && echo OK || die KO