NationTech/harmony
5
0
Fork 2
Code Issues 40 Pull Requests 13 Actions Packages Projects Releases Wiki Activity

fix: readded tokio retry to get ca cert for a nats cluster which was accidentally removed during a refactor #229

Merged
johnride merged 1 commits from fix/nats-ca-cert-retry into master 2026-03-15 12:36:07 +00:00
Conversation 0 Commits 1 Files Changed 1 +27 -4
1 changed files with 27 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
harmony/src/modules/nats/pki.rs
View File

@@ -1,3 +1,7 @@
use std::time::Duration;
use tokio_retry::{Retry, strategy::ExponentialBackoff};
use crate::modules::{
cert_manager::{
capability::{CertificateManagement, CertificateManagementConfig},
@@ -69,9 +73,28 @@ where
.await
.map_err(|e| e.to_string())?;
self.topology
let strategy = ExponentialBackoff::from_millis(250)
.factor(2)
.max_delay(Duration::from_millis(1000))
.take(10);
Retry::spawn(strategy, || async {
log::debug!("Attempting CA cert fetch");
let res = self
.topology
.get_ca_certificate(root_ca_cert_name.into(), &root_ca_config)
.await;
match res {
Ok(cert) => Ok(cert),
Err(e) => {
log::warn!("Retryable error: {:?}", e);
Err(e)
}
}
})
.await
.map_err(|e| e.to_string())
.map_err(|e| format!("Retries exhausted: {:?}", e))
}
}