#!/bin/bash
source "$ROOT_PATH"/scripts/common.sh
PUBLIC_CERT_VAR_NAME="ENV_${AWS_SM_SUB_PATH_UPPER}_VAULT_P81_ZERO_CERTS_PUBLIC"
KEY_VAR_NAME="ENV_${AWS_SM_SUB_PATH_UPPER}_VAULT_P81_ZERO_CERTS_KEY"
CA_VAR_NAME="ENV_${AWS_SM_SUB_PATH_UPPER}_VAULT_P81_ZERO_CERTS_CA"

PUBLIC_CERT_VALUE="${!PUBLIC_CERT_VAR_NAME}"
KEY_VALUE="${!KEY_VAR_NAME}"
CA_VALUE="${!CA_VAR_NAME}"

mkdir -p ${VAULT_CERT_LOCAL_PATH}
echo "${PUBLIC_CERT_VALUE}" | base64 -d > ${VAULT_CERT_LOCAL_PATH}/public.crt  || handle_error "failed to get vault public.crt from secrets manager"
echo "${KEY_VALUE}" | base64 -d > ${VAULT_CERT_LOCAL_PATH}/private.key || handle_error "failed to get vault private.key from secrets manager"
echo "${CA_VALUE}" | base64 -d > ${VAULT_CERT_LOCAL_PATH}/ca.crt  || handle_error "failed to get vault ca.crt from secrets manager"