#!/bin/bash

[ $(CreoleGet activer_saltstack) != 'oui' ] && exit 0

name=local
cert=$(CreoleGet minion_domain_name)
etcdir=/etc/salt/pki
etcdirminion=$etcdir/minion
ori=$etcdirminion/minion.pub
# certificates are in '/var/lib/salt/pki' dir #23763
vardir=/var/lib/salt/pki
dst_minion=$vardir/minion
dst=$vardir/master/minions/$cert
pre=$vardir/master/minions_pre/$cert

# salt-master is running as 'salt' user ##23763
if [ ! -d $etcdirminion ]; then
    mkdir -p $etcdirminion
fi
chown -R salt:salt $etcdirminion

if [ ! -f $ori ]; then
    salt-key --gen-keys=minion --gen-keys-dir=$etcdirminion
    cp $etcdirminion/* $dst_minion/
fi

if [ ! -f $dst ]; then
    cp -a $ori $dst
    rm -f $pre
fi

exit 0
