#!/bin/bash -e
# split the default certificate for cupsys

KEY_PATH=/etc/cups/ssl/server.key
CRT_PATH=/etc/cups/ssl/server.crt
rm -f $KEY_PATH $CRT_PATH

while read line; do
    if echo $line | grep -q "BEGIN PRIVATE KEY"; then OUTFILE=$KEY_PATH; fi
    if echo $line | grep -q "BEGIN CERTIFICATE"; then OUTFILE=$CRT_PATH; fi
    echo $line >> $OUTFILE
done < /etc/ssl/private/cert.pem

chmod 644 $CRT_PATH
chmod 640 $KEY_PATH
chown root:ssl-cert $KEY_PATH

