#!/bin/bash

FQDN=$1

# Add the host
ipa-getkeytab -p host/${FQDN}@AD.LYSATOR.LIU.SE -k /tmp/${FQDN}.keytab || exit 1
/opt/puppetlabs/puppet/bin/eyaml encrypt --pkcs7-public-key=public_key.pkcs7.pem --output=block --label=ipa_client::keytab_content --file=/tmp/${FQDN}.keytab | tee -a nodes/${FQDN}.yaml
shred /tmp/${FQDN}.keytab || exit 1
rm /tmp/${FQDN}.keytab

ROOT_PASSWORD=`pwgen -s 16 -N 1`
echo ${ROOT_PASSWORD} | mkpasswd -R 5000000 -s -m sha-512 | /opt/puppetlabs/puppet/bin/eyaml encrypt --pkcs7-public-key=public_key.pkcs7.pem --output=block --label=profiles::root::password --stdin | tee -a nodes/${FQDN}.yaml
echo ""
echo "The output above has been saved to nodes/${FQDN}.yaml." 
echo "Please commit the file and push it."
echo -e "\e[32mGenerated password for the server:\e[39m ${ROOT_PASSWORD}"
echo -e "\e[35mSave the password or delete the entry from nodes/${FQDN}.yaml\e[39m"