#
# Cookbook:: aws-parallelcluster-environment
# Recipe:: login_nodes_keys
# frozen_string_literal: true

#
# Copyright:: 2013-2023 Amazon.com, Inc. or its affiliates. All Rights Reserved.
#
# Licensed under the Apache License, Version 2.0 (the "License"). You may not use this file except in compliance with the
# License. A copy of the License is located at
#
# http://aws.amazon.com/apache2.0/
#
# or in the "LICENSE.txt" file accompanying this file. This file is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES
# OR CONDITIONS OF ANY KIND, express or implied. See the License for the specific language governing permissions and
# limitations under the License.

return if on_docker? || node['cluster']['scheduler'] == 'awsbatch'

script_name = "keys-manager.sh"
head_node_keys_manager_script_dir = "#{node['cluster']['scripts_dir']}/login_nodes"
keys_dir = "#{node['cluster']['shared_dir_login_nodes']}"

case node['cluster']['node_type']
when 'ComputeFleet'
  # Do nothing
when 'HeadNode'

  directory head_node_keys_manager_script_dir do
    owner 'root'
    group 'root'
    mode '0744'
    recursive true
  end

  cookbook_file head_node_keys_manager_script_dir + '/' + script_name do
    source 'login_nodes/keys-manager.sh'
    owner 'root'
    group 'root'
    mode '0744'
  end

  volume "export keys_manager_script_dir" do
    shared_dir "#{head_node_keys_manager_script_dir}"
    action :export
  end

  execute 'Initialize Login Nodes keys' do
    command "bash #{head_node_keys_manager_script_dir}/#{script_name} --create --folder-path #{keys_dir}"
    user 'root'
  end

when 'LoginNode'
  keys_manager_script_dir = "#{node['cluster']['scripts_dir']}/utils"

  directory keys_manager_script_dir do
    owner 'root'
    group 'root'
    mode '0744'
    recursive true
  end

  volume "mount keys_manager_script_dir" do
    action :mount
    shared_dir "#{keys_manager_script_dir}"
    device(lazy { "#{node['cluster']['head_node_private_ip']}:#{head_node_keys_manager_script_dir}" })
    fstype 'nfs'
    options node['cluster']['nfs']['hard_mount_options']
    retries 10
    retry_delay 6
  end

  execute 'Import Login Nodes keys' do
    command "bash #{keys_manager_script_dir}/#{script_name} --import --folder-path #{keys_dir}"
    user 'root'
  end
else
  raise "node_type must be HeadNode or ComputeFleet or LoginNode"
end