#!/bin/sh -e
+USER="$1"
+if test -z "$USER"; then
+ echo Usage: domtool-addcert USERNAME
+ exit 1
+fi
+
KEYDIR=/afs/hcoop.net/common/etc/domtool/keys/$1
KEYFILE=$KEYDIR/key.pem
CERTFILE=/afs/hcoop.net/common/etc/domtool/certs/$1.pem
NEW=~/.new.pem
KEYIN=~/.keyin
-mkdir $KEYDIR || echo Already exists
+mkdir -p $KEYDIR
openssl genrsa -out $KEYFILE
chown -R domtool.domtool $KEYDIR
-fs sa $KEYDIR $1 read
+fs sa $KEYDIR $USER read
echo "." >$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
echo "." >>$KEYIN
-echo "$1" >>$KEYIN
-echo "$1@hcoop.net" >>$KEYIN
+echo "$USER" >>$KEYIN
+echo "$USER@hcoop.net" >>$KEYIN
echo "" >>$KEYIN
echo "" >>$KEYIN
openssl req -new -key $KEYFILE -out $NEWREQ -days 365 <$KEYIN