rewrite the build-key.sh script so that it creates .crt files

[adeck]

So, just the same thing that you did with build-key-server.sh. Should take ~10 minutes to do + test.

[adeck]

Related to #35 ; the vars must be parameterized for each generated client and server cert. Makes sense. Otherwise, they all contain identical contents, which wouldn't make a whole lot of sense.

I'm keeping these as separate issues, though, because solving one doesn't necessarily solve the other. And they both need solving.

[adeck]

So, here's the skinny... I've decided to make a separate vars file for clients, anyway, partly because doing that makes things marginally easier to read, and partly because it makes things easier to code, but mainly because I get the feeling I may want to further distinguish the two vars files down the road and I might as well separate those concerns now.

[adeck]

Also worth noting that if this is anything to go by, the only thing that really needs to differ between clients is Common Name, so I may want to default to the server parameters in the client vars file (i.e. {{ item.ou | default(openvpn.server.ou) }}).