#!/bin/bash

# Define static values
MYSQL_USER="snipeit"
MYSQL_DATABASE="db-snipeit"
MYSQL_HOST="mariadb"
MYSQL_PORT="3306"

# Prompt user for MariaDB root password
read -sp "Enter MariaDB root password: " ROOT_PASSWORD
echo ""

# Ensure the password is not empty
if [[ -z "$ROOT_PASSWORD" ]]; then
    echo "Error: Password cannot be empty."
    exit 1
fi

# Prompt user for APP_KEY
read -sp "Enter APP_KEY: " APP_KEY
echo ""

# Ensure the APP_KEY is not empty
if [[ -z "$APP_KEY" ]]; then
    echo "Error: APP_KEY cannot be empty."
    exit 1
fi

# Define namespace
NAMESPACE="snipeit"

# Create the Kubernetes secret
kubectl create secret generic snipeit-db-secret \
  --from-literal=MYSQL_USER="$MYSQL_USER" \
  --from-literal=MYSQL_DATABASE="$MYSQL_DATABASE" \
  --from-literal=MYSQL_PASSWORD="$ROOT_PASSWORD" \
  --from-literal=MYSQL_PORT_3306_TCP_ADDR="$MYSQL_HOST" \
  --from-literal=MYSQL_PORT_3306_TCP_PORT="$MYSQL_PORT" \
  --from-literal=APP_KEY="$APP_KEY" \
  --namespace="$NAMESPACE"

echo "✅ Secrets created successfully in namespace '$NAMESPACE'."