#!/bin/bash

VAULT_TOKEN=$(cd bootstrap/stage2-harden && terraform output -raw vault_token)
VAULT_ADDR=$(cd bootstrap/stage2-harden && terraform output -raw vault_uri)
MINIO_ADDR=$(cd bootstrap/stage2-harden && terraform output -raw minio_uri)
MINIO_SERVER=$(cd bootstrap/stage2-harden && terraform output -raw minio_server)
NODE_IP=$(cd bootstrap/stage2-harden && terraform output -raw node_ip)

MINIO_ACCESS_KEY=$(VAULT_TOKEN="$VAULT_TOKEN" VAULT_ADDR="$VAULT_ADDR" vault kv get -mount="management" -field="access_key" "minio")
MINIO_SECRET_KEY=$(VAULT_TOKEN="$VAULT_TOKEN" VAULT_ADDR="$VAULT_ADDR" vault kv get -mount="management" -field="secret_key" "minio")

cat << EOF > backend.tfvars
endpoints       = { s3 = "${MINIO_ADDR}" }
access_key      = "${MINIO_ACCESS_KEY}"
secret_key      = "${MINIO_SECRET_KEY}"
bucket          = "management"
key             = "terraform.tfstate"
region          = "eu-central-1"
EOF

cat << EOF > terraform.tfvars
endpoints       = { s3 = "${MINIO_ADDR}" }
access_key      = "${MINIO_ACCESS_KEY}"
secret_key      = "${MINIO_SECRET_KEY}"
bucket          = "management"
key             = "terraform.tfstate"
region          = "eu-central-1"
minio_server    = "${MINIO_SERVER}"
vault_token     = "${VAULT_TOKEN}"
vault_addr      = "${VAULT_ADDR}"
node_ip         = "${NODE_IP}"
node_username   = "root"
EOF