#!/bin/sh

set -e

CLIENT_KEYS_FOLDER=/var/lib/oci/ssl

SLAVE_NODE_HOSTNAME=${1}

if [ -z "${SLAVE_NODE_HOSTNAME}" ]; then
	echo "This script needs one hostname as parameter."
	exit 1
fi

for i in $(echo ${SLAVE_NODE_HOSTNAME} | sed -e 's/[.]/ /g'); do
	if echo ${i} | grep -E -q "^(xn--)?[a-z0-9][a-z0-9-]{0,61}[a-z0-9]{0,1}\$"; then
		echo ""
	else
		echo "Not validated"
		exit 1
	fi
done

TARGET_DIR=${CLIENT_KEYS_FOLDER}/slave-nodes/${SLAVE_NODE_HOSTNAME}

if [ ! -d "$TARGET_DIR" ]; then
	echo "Target directory $TARGET_DIR does not exist"
	exit 1
fi

cd ${TARGET_DIR}

SANS_LIST=$(openssl x509 -in ${SLAVE_NODE_HOSTNAME}.pem -noout -text | grep DNS:)

echo $SANS_LIST
