Skip to content

Add NATS TLS configuration options to wash host and runtime-operator #183

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
casualjim wants to merge 6 commits into
base: main
Choose a base branch
from
Open

Add NATS TLS configuration options to wash host and runtime-operator #183

casualjim wants to merge 6 commits into from

Conversation

@casualjim
Copy link
Contributor

@casualjim casualjim commented Dec 1, 2025
edited
Loading

I have a nats cluster but it uses tls-first and a custom CA, with these changes the host and operator can communicate with it.

This was done by copilot, so I understand if you don't like these changes.

  • Understand the codebase and identify affected areas
  • Add --nats-tls-ca and --nats-tls-first flags to runtime-operator (Go)
  • Add --nats-tls-ca, --nats-tls-first, and --nats-creds flags to wash host command (Rust)
  • Update the connect_nats function in washlet to support TLS options
  • Build and test the changes
  • Run code review and address feedback
  • Fix CryptoProvider panic by using ring consistently across all TLS dependencies

@casualjim casualjim requested a review from a team as a code owner December 1, 2025 05:32
Copilot AI and others added 6 commits December 1, 2025 09:01
@casualjim
Initial plan
bfdd790
@casualjim
Add --nats-tls-ca and --nats-tls-first flags to wash host and runtime…
d97605c 
…-operator

Co-authored-by: casualjim <456109+casualjim@users.noreply.github.com>
@casualjim
Address code review: validate TLS CA file exists and fix .gitignore
6e2ffea 
Co-authored-by: casualjim <456109+casualjim@users.noreply.github.com>
@casualjim
Add file existence validation for NATS credentials and TLS CA in Go o…
a89ff95 
…perator

Co-authored-by: casualjim <456109+casualjim@users.noreply.github.com>
@casualjim
Remove unused import in washlet tests
ac30bb0 
Co-authored-by: casualjim <456109+casualjim@users.noreply.github.com>
@casualjim
Fix CryptoProvider panic by using ring consistently instead of aws-lc-rs
3fcb088 
Co-authored-by: casualjim <456109+casualjim@users.noreply.github.com>
@casualjim casualjim force-pushed the copilot/fix-nats-tls-configuration branch from be3b6dd to 3fcb088 Compare December 1, 2025 17:02
@lxfontes lxfontes moved this to Todo in wash v2 release Jan 7, 2026
@lxfontes lxfontes moved this from Todo to In Progress in wash v2 release Jan 21, 2026
@lxfontes lxfontes mentioned this pull request Jan 23, 2026
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

wash v2 release
Status: In Progress

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@casualjim