Check for existing secrets and create them more granularly

This allows an user to delete only the lnd certs for example and
run nix-shell to recreate them, leaving other secrets intact.

secrets/generate_secrets.sh

@@ -2,11 +2,7 @@
 
 SECRETSFILE=secrets/secrets.nix
 
-if [ -e "$SECRETSFILE" ]; then
+if [ ! -e "$SECRETSFILE" ]; then
-    echo $SECRETSFILE already exists. No new secrets were generated.
-    exit 1
-fi
-
     echo Write secrets to $SECRETSFILE
     {
         echo \{
@@ -18,17 +14,28 @@ echo Write secrets to $SECRETSFILE
         echo \}
     } >> $SECRETSFILE
     echo Done
+else
+    echo $SECRETSFILE already exists. Skipping.
+fi
 
-echo Generate Self-Signed Cert
+if [ ! -e secrets/nginx.key ] || [ ! -e secrets/nginx.cert ]; then
+    echo Generate Nginx Self-Signed Cert
     openssl genrsa -out secrets/nginx.key 2048
     openssl req -new -key secrets/nginx.key -out secrets/nginx.csr -subj "/C=KN"
     openssl x509 -req -days 1825 -in secrets/nginx.csr -signkey secrets/nginx.key -out secrets/nginx.cert
     rm secrets/nginx.csr
     echo Done
+else
+    echo Nginx Cert already exists. Skipping.
+fi
 
+if [ ! -e secrets/lnd.key ] || [ ! -e secrets/lnd.cert ]; then
     echo Generate LND compatible TLS Cert
     openssl ecparam -genkey -name prime256v1 -out secrets/lnd.key
     openssl req -config secrets/openssl.cnf -new -sha256 -key secrets/lnd.key -out secrets/lnd.csr -subj '/CN=localhost/O=lnd'
     openssl req -config secrets/openssl.cnf -x509 -sha256 -days 1825 -key secrets/lnd.key -in secrets/lnd.csr -out secrets/lnd.cert
     rm secrets/lnd.csr
     echo Done
+else
+    echo LND cert already exists. Skipping.
+fi