)]}'
{"/PATCHSET_LEVEL":[{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"45ac2e69425e0f8c33f8f61d5440aac4a2ae2919","unresolved":true,"context_lines":[],"source_content_type":"","patch_set":5,"id":"6b6d40b0_b0e4c47e","updated":"2026-03-25 06:51:57.000000000","message":"Removing RP, please address review comments.","commit_id":"124830873c18695bd86e44d1563214a9ce6714b4"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"be0345abab91dbb599f64244c81d90f818e926f1","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":5,"id":"bbfdf899_71d6aa69","updated":"2026-02-05 10:46:38.000000000","message":"recheck - podman rabbitmq problem","commit_id":"124830873c18695bd86e44d1563214a9ce6714b4"},{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"20dbb22c943bd0e29ffa880b79277cb10f9a019d","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":5,"id":"10742290_7bc1655d","in_reply_to":"6b6d40b0_b0e4c47e","updated":"2026-03-30 09:46:25.000000000","message":"Done","commit_id":"124830873c18695bd86e44d1563214a9ce6714b4"},{"author":{"_account_id":37203,"name":"Bertrand Lanson","display_name":"Bertrand Lanson","email":"bertrand.lanson@infomaniak.com","username":"lanson","status":"Infomaniak Network SA"},"change_message_id":"0db17df095e18e4da0251edb7ea42c5d1973efd8","unresolved":false,"context_lines":[],"source_content_type":"","patch_set":6,"id":"907a54c5_7e4fb051","updated":"2026-05-29 18:29:31.000000000","message":"recheck - this has been sitting here a while","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"}],"ansible/group_vars/all/opensearch.yml":[{"author":{"_account_id":36765,"name":"Seunghun Lee","display_name":"Seunghun Lee","email":"seunghun@stackhpc.com","username":"seunghun1ee","status":"Cloud Engineer at StackHPC"},"change_message_id":"9f5c545a1622c1a08d820d7c9f0b4fba2a6b9247","unresolved":true,"context_lines":[{"line_number":9,"context_line":"opensearch_address: \"{{ elasticsearch_address if elasticsearch_address is defined else kolla_internal_fqdn }}\""},{"line_number":10,"context_line":"enable_opensearch: \"{{ enable_central_logging | bool or enable_osprofiler | bool or (enable_cloudkitty | bool and cloudkitty_storage_backend \u003d\u003d \u0027opensearch\u0027) }}\""},{"line_number":11,"context_line":"enable_opensearch_dashboards: \"{{ enable_opensearch | bool }}\""},{"line_number":12,"context_line":"enable_opensearch_dashboards_auth: true"},{"line_number":13,"context_line":"enable_opensearch_dashboards_external: \"{{ enable_opensearch_dashboards | bool }}\""},{"line_number":14,"context_line":"enable_opensearch_dashboards_external_auth: true"},{"line_number":15,"context_line":""}],"source_content_type":"text/x-yaml","patch_set":5,"id":"ec7b01a5_c91550c9","line":12,"updated":"2026-03-03 15:33:36.000000000","message":"What about changing the name of the variable to ``enable_opensearch_dashboards_internal_auth`` to be more explicit","commit_id":"124830873c18695bd86e44d1563214a9ce6714b4"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"477f705ba63a24f56a9b614f9e84ed43eb09a6ad","unresolved":false,"context_lines":[{"line_number":9,"context_line":"opensearch_address: \"{{ elasticsearch_address if elasticsearch_address is defined else kolla_internal_fqdn }}\""},{"line_number":10,"context_line":"enable_opensearch: \"{{ enable_central_logging | bool or enable_osprofiler | bool or (enable_cloudkitty | bool and cloudkitty_storage_backend \u003d\u003d \u0027opensearch\u0027) }}\""},{"line_number":11,"context_line":"enable_opensearch_dashboards: \"{{ enable_opensearch | bool }}\""},{"line_number":12,"context_line":"enable_opensearch_dashboards_auth: true"},{"line_number":13,"context_line":"enable_opensearch_dashboards_external: \"{{ enable_opensearch_dashboards | bool }}\""},{"line_number":14,"context_line":"enable_opensearch_dashboards_external_auth: true"},{"line_number":15,"context_line":""}],"source_content_type":"text/x-yaml","patch_set":5,"id":"f4a72420_735eb02c","line":12,"in_reply_to":"ec7b01a5_c91550c9","updated":"2026-03-30 09:45:20.000000000","message":"Acknowledged","commit_id":"124830873c18695bd86e44d1563214a9ce6714b4"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"f5eb1a3a26a5294b652cdcbd7ee254bb7804c888","unresolved":true,"context_lines":[{"line_number":13,"context_line":"    (enable_cloudkitty | bool and cloudkitty_storage_backend \u003d\u003d \u0027opensearch\u0027)"},{"line_number":14,"context_line":"  }}"},{"line_number":15,"context_line":"enable_opensearch_dashboards: \"{{ enable_opensearch | bool }}\""},{"line_number":16,"context_line":"enable_opensearch_dashboards_internal_auth: true"},{"line_number":17,"context_line":"enable_opensearch_dashboards_external: \"{{ enable_opensearch_dashboards | bool }}\""},{"line_number":18,"context_line":"enable_opensearch_dashboards_external_auth: true"},{"line_number":19,"context_line":""}],"source_content_type":"text/x-yaml","patch_set":7,"id":"53d822db_5625d5af","line":16,"range":{"start_line":16,"start_character":0,"end_line":16,"end_character":48},"updated":"2026-06-11 09:10:44.000000000","message":"This should be in defaults, not group vars, used only in opensearch role.\n\n+ what about to set \n\nenable_opensearch_dashboards_internal_auth: \"{{ opensearch_dashboards_user | bool and opensearch_dashboards_password | bool }}\"\n\n?\n\nActually you are already using this default in haproxy template.","commit_id":"b9c0cfc12b8ea62f00d10627127b589c6d42642c"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"953c37b4db6261895b61cb90d14f940736c35477","unresolved":true,"context_lines":[{"line_number":13,"context_line":"    (enable_cloudkitty | bool and cloudkitty_storage_backend \u003d\u003d \u0027opensearch\u0027)"},{"line_number":14,"context_line":"  }}"},{"line_number":15,"context_line":"enable_opensearch_dashboards: \"{{ enable_opensearch | bool }}\""},{"line_number":16,"context_line":"enable_opensearch_dashboards_internal_auth: true"},{"line_number":17,"context_line":"enable_opensearch_dashboards_external: \"{{ enable_opensearch_dashboards | bool }}\""},{"line_number":18,"context_line":"enable_opensearch_dashboards_external_auth: true"},{"line_number":19,"context_line":""}],"source_content_type":"text/x-yaml","patch_set":7,"id":"6e7d29d1_912677d3","line":16,"range":{"start_line":16,"start_character":0,"end_line":16,"end_character":48},"in_reply_to":"53d822db_5625d5af","updated":"2026-06-11 09:47:27.000000000","message":"I would be cautious with this, as it introduces implicit behavior based on credential presence and can lead to unintended auth disabling in production.\n\ncurrently it is\n- more predictable\n- more secure\n\nproposal is:\n- convenient\n- risky in production\n\nMaybe it would be good to get additional opinions from others on this topic as well?","commit_id":"b9c0cfc12b8ea62f00d10627127b589c6d42642c"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"21518db4a7272c1c3d581b9a908ff5616b5781e9","unresolved":true,"context_lines":[{"line_number":13,"context_line":"    (enable_cloudkitty | bool and cloudkitty_storage_backend \u003d\u003d \u0027opensearch\u0027)"},{"line_number":14,"context_line":"  }}"},{"line_number":15,"context_line":"enable_opensearch_dashboards: \"{{ enable_opensearch | bool }}\""},{"line_number":16,"context_line":"enable_opensearch_dashboards_internal_auth: true"},{"line_number":17,"context_line":"enable_opensearch_dashboards_external: \"{{ enable_opensearch_dashboards | bool }}\""},{"line_number":18,"context_line":"enable_opensearch_dashboards_external_auth: true"},{"line_number":19,"context_line":""}],"source_content_type":"text/x-yaml","patch_set":7,"id":"c88f8c62_5d682c12","line":16,"range":{"start_line":16,"start_character":0,"end_line":16,"end_character":48},"in_reply_to":"6e7d29d1_912677d3","updated":"2026-06-11 15:00:20.000000000","message":"Hmm, so why we are adding new variable for enable/disable ? \n\nNow user can disable auth by -\u003e for example -\u003e opensearch_dashboards_user: \"\" \n\nAnd that\u0027s it.","commit_id":"b9c0cfc12b8ea62f00d10627127b589c6d42642c"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"f5eb1a3a26a5294b652cdcbd7ee254bb7804c888","unresolved":true,"context_lines":[{"line_number":15,"context_line":"enable_opensearch_dashboards: \"{{ enable_opensearch | bool }}\""},{"line_number":16,"context_line":"enable_opensearch_dashboards_internal_auth: true"},{"line_number":17,"context_line":"enable_opensearch_dashboards_external: \"{{ enable_opensearch_dashboards | bool }}\""},{"line_number":18,"context_line":"enable_opensearch_dashboards_external_auth: true"},{"line_number":19,"context_line":""},{"line_number":20,"context_line":"#######################"},{"line_number":21,"context_line":"## Opensearch Options"}],"source_content_type":"text/x-yaml","patch_set":7,"id":"3409b21b_6caf9a1e","line":18,"range":{"start_line":18,"start_character":0,"end_line":18,"end_character":48},"updated":"2026-06-11 09:10:44.000000000","message":"ditto","commit_id":"b9c0cfc12b8ea62f00d10627127b589c6d42642c"}],"ansible/group_vars/all/prometheus.yml":[{"author":{"_account_id":36765,"name":"Seunghun Lee","display_name":"Seunghun Lee","email":"seunghun@stackhpc.com","username":"seunghun1ee","status":"Cloud Engineer at StackHPC"},"change_message_id":"9f5c545a1622c1a08d820d7c9f0b4fba2a6b9247","unresolved":true,"context_lines":[{"line_number":12,"context_line":"enable_prometheus_cadvisor: \"{{ enable_prometheus | bool }}\""},{"line_number":13,"context_line":"enable_prometheus_fluentd_integration: \"{{ enable_prometheus | bool and enable_fluentd | bool }}\""},{"line_number":14,"context_line":"enable_prometheus_alertmanager: \"{{ enable_prometheus | bool }}\""},{"line_number":15,"context_line":"enable_prometheus_alertmanager_auth: true"},{"line_number":16,"context_line":"enable_prometheus_alertmanager_external: \"{{ enable_prometheus_alertmanager | bool }}\""},{"line_number":17,"context_line":"enable_prometheus_alertmanager_external_auth: true"},{"line_number":18,"context_line":"enable_prometheus_ceph_mgr_exporter: false"}],"source_content_type":"text/x-yaml","patch_set":5,"id":"192eb986_71c5b6f8","line":15,"updated":"2026-03-03 15:33:36.000000000","message":"ditto","commit_id":"124830873c18695bd86e44d1563214a9ce6714b4"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"477f705ba63a24f56a9b614f9e84ed43eb09a6ad","unresolved":false,"context_lines":[{"line_number":12,"context_line":"enable_prometheus_cadvisor: \"{{ enable_prometheus | bool }}\""},{"line_number":13,"context_line":"enable_prometheus_fluentd_integration: \"{{ enable_prometheus | bool and enable_fluentd | bool }}\""},{"line_number":14,"context_line":"enable_prometheus_alertmanager: \"{{ enable_prometheus | bool }}\""},{"line_number":15,"context_line":"enable_prometheus_alertmanager_auth: true"},{"line_number":16,"context_line":"enable_prometheus_alertmanager_external: \"{{ enable_prometheus_alertmanager | bool }}\""},{"line_number":17,"context_line":"enable_prometheus_alertmanager_external_auth: true"},{"line_number":18,"context_line":"enable_prometheus_ceph_mgr_exporter: false"}],"source_content_type":"text/x-yaml","patch_set":5,"id":"24225e17_e9da1bad","line":15,"in_reply_to":"192eb986_71c5b6f8","updated":"2026-03-30 09:45:20.000000000","message":"Acknowledged","commit_id":"124830873c18695bd86e44d1563214a9ce6714b4"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"f5eb1a3a26a5294b652cdcbd7ee254bb7804c888","unresolved":true,"context_lines":[{"line_number":12,"context_line":"enable_prometheus_cadvisor: \"{{ enable_prometheus | bool }}\""},{"line_number":13,"context_line":"enable_prometheus_fluentd_integration: \"{{ enable_prometheus | bool and enable_fluentd | bool }}\""},{"line_number":14,"context_line":"enable_prometheus_alertmanager: \"{{ enable_prometheus | bool }}\""},{"line_number":15,"context_line":"enable_prometheus_alertmanager_internal_auth: true"},{"line_number":16,"context_line":"enable_prometheus_alertmanager_external: \"{{ enable_prometheus_alertmanager | bool }}\""},{"line_number":17,"context_line":"enable_prometheus_alertmanager_external_auth: true"},{"line_number":18,"context_line":"enable_prometheus_ceph_mgr_exporter: false"}],"source_content_type":"text/x-yaml","patch_set":7,"id":"d911bd2c_e4f89915","line":15,"range":{"start_line":15,"start_character":0,"end_line":15,"end_character":50},"updated":"2026-06-11 09:10:44.000000000","message":"ditto","commit_id":"b9c0cfc12b8ea62f00d10627127b589c6d42642c"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"f5eb1a3a26a5294b652cdcbd7ee254bb7804c888","unresolved":true,"context_lines":[{"line_number":13,"context_line":"enable_prometheus_fluentd_integration: \"{{ enable_prometheus | bool and enable_fluentd | bool }}\""},{"line_number":14,"context_line":"enable_prometheus_alertmanager: \"{{ enable_prometheus | bool }}\""},{"line_number":15,"context_line":"enable_prometheus_alertmanager_internal_auth: true"},{"line_number":16,"context_line":"enable_prometheus_alertmanager_external: \"{{ enable_prometheus_alertmanager | bool }}\""},{"line_number":17,"context_line":"enable_prometheus_alertmanager_external_auth: true"},{"line_number":18,"context_line":"enable_prometheus_ceph_mgr_exporter: false"},{"line_number":19,"context_line":"enable_prometheus_openstack_exporter: \"{{ enable_prometheus | bool }}\""},{"line_number":20,"context_line":"enable_prometheus_openstack_exporter_external: false"}],"source_content_type":"text/x-yaml","patch_set":7,"id":"9e8a639f_026f2aa2","line":17,"range":{"start_line":16,"start_character":0,"end_line":17,"end_character":50},"updated":"2026-06-11 09:10:44.000000000","message":"ditto","commit_id":"b9c0cfc12b8ea62f00d10627127b589c6d42642c"}],"ansible/roles/haproxy-config/templates/haproxy_single_service_split.cfg.j2":[{"author":{"_account_id":23084,"name":"Bartosz Bezak","email":"bartosz@stackhpc.com","username":"b.bezak"},"change_message_id":"15e0177548f027f128d0a4396736397737ae9be4","unresolved":true,"context_lines":[{"line_number":144,"context_line":"{%         set backend_http_extra \u003d haproxy_service.backend_http_extra | default([]) + haproxy_backend_http_extra %}"},{"line_number":145,"context_line":"{%         set tls_backend \u003d haproxy_service.tls_backend | default(false) %}"},{"line_number":146,"context_line":"{#         Allow for basic auth #}"},{"line_number":147,"context_line":"{%         set auth_enabled \u003d haproxy_service.auth_enabled | default(false) | bool %}"},{"line_number":148,"context_line":"{%         set auth_user \u003d haproxy_service.auth_user | default() %}"},{"line_number":149,"context_line":"{%         set auth_pass \u003d haproxy_service.auth_pass | default() %}"},{"line_number":150,"context_line":"{%         if auth_enabled and auth_user and auth_pass %}"}],"source_content_type":"text/x-jinja2","patch_set":4,"id":"747cabda_e27b1e7c","line":147,"updated":"2026-02-04 14:55:05.000000000","message":"maybe to preserve previous behavior we should default here to ``true``. if somebody has custom configuration for HAProxy endpoint using this template?\n\nor even better like so:\n\n  {% set auth_user \u003d haproxy_service.auth_user | default() %}\n  {% set auth_pass \u003d haproxy_service.auth_pass | default() %}\n  {% set auth_enabled \u003d haproxy_service.auth_enabled\n       | default(auth_user and auth_pass) | bool %}\n\n?","commit_id":"4d4c6896b701007f22ac734b0c7ba0274bcf2618"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"477f705ba63a24f56a9b614f9e84ed43eb09a6ad","unresolved":false,"context_lines":[{"line_number":144,"context_line":"{%         set backend_http_extra \u003d haproxy_service.backend_http_extra | default([]) + haproxy_backend_http_extra %}"},{"line_number":145,"context_line":"{%         set tls_backend \u003d haproxy_service.tls_backend | default(false) %}"},{"line_number":146,"context_line":"{#         Allow for basic auth #}"},{"line_number":147,"context_line":"{%         set auth_enabled \u003d haproxy_service.auth_enabled | default(false) | bool %}"},{"line_number":148,"context_line":"{%         set auth_user \u003d haproxy_service.auth_user | default() %}"},{"line_number":149,"context_line":"{%         set auth_pass \u003d haproxy_service.auth_pass | default() %}"},{"line_number":150,"context_line":"{%         if auth_enabled and auth_user and auth_pass %}"}],"source_content_type":"text/x-jinja2","patch_set":4,"id":"b59eb74d_db17f3b6","line":147,"in_reply_to":"558d191f_c17ad8d3","updated":"2026-03-30 09:45:20.000000000","message":"Acknowledged","commit_id":"4d4c6896b701007f22ac734b0c7ba0274bcf2618"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"b21221866e763140b855d949a50acdedff94aff5","unresolved":true,"context_lines":[{"line_number":144,"context_line":"{%         set backend_http_extra \u003d haproxy_service.backend_http_extra | default([]) + haproxy_backend_http_extra %}"},{"line_number":145,"context_line":"{%         set tls_backend \u003d haproxy_service.tls_backend | default(false) %}"},{"line_number":146,"context_line":"{#         Allow for basic auth #}"},{"line_number":147,"context_line":"{%         set auth_enabled \u003d haproxy_service.auth_enabled | default(false) | bool %}"},{"line_number":148,"context_line":"{%         set auth_user \u003d haproxy_service.auth_user | default() %}"},{"line_number":149,"context_line":"{%         set auth_pass \u003d haproxy_service.auth_pass | default() %}"},{"line_number":150,"context_line":"{%         if auth_enabled and auth_user and auth_pass %}"}],"source_content_type":"text/x-jinja2","patch_set":4,"id":"558d191f_c17ad8d3","line":147,"in_reply_to":"747cabda_e27b1e7c","updated":"2026-02-05 08:20:29.000000000","message":"Agreed. yes, external configs... \nI have updated the logic to ensure backward compatibility as you suggested.\n\nNow, auth_enabled defaults to true if auth_user and auth_pass are defined, preserving the existing behavior for all services. At the same time, it allows operators to explicitly set it to false when needed.\n\nI have also ensured that auth_enabled is passed as an argument to the backend_macro. This is necessary to correctly toggle the ACL and authentication directives within the macro\u0027s local scope.","commit_id":"4d4c6896b701007f22ac734b0c7ba0274bcf2618"},{"author":{"_account_id":27339,"name":"Michal Arbet","email":"michal.arbet@ultimum.io","username":"michalarbet"},"change_message_id":"ce3f4decb89abbdbc01486cd780c2e6e05adf958","unresolved":true,"context_lines":[{"line_number":146,"context_line":"{#         Allow for basic auth #}"},{"line_number":147,"context_line":"{%         set auth_user \u003d haproxy_service.auth_user | default() %}"},{"line_number":148,"context_line":"{%         set auth_pass \u003d haproxy_service.auth_pass | default() %}"},{"line_number":149,"context_line":"{%         set auth_enabled \u003d haproxy_service.auth_enabled | default(auth_user and auth_pass) | bool %}"},{"line_number":150,"context_line":"{%         if auth_enabled and auth_user and auth_pass %}"},{"line_number":151,"context_line":"{{ userlist_macro(haproxy_name, auth_user, auth_pass) }}"},{"line_number":152,"context_line":"{%         endif %}"}],"source_content_type":"text/x-jinja2","patch_set":7,"id":"72e86afa_db538597","line":149,"range":{"start_line":149,"start_character":0,"end_line":149,"end_character":103},"updated":"2026-06-11 15:01:09.000000000","message":"what about this default ?","commit_id":"b9c0cfc12b8ea62f00d10627127b589c6d42642c"}],"ansible/roles/opensearch/defaults/main.yml":[{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":36,"context_line":"        mode: \"http\""},{"line_number":37,"context_line":"        external: false"},{"line_number":38,"context_line":"        port: \"{{ opensearch_dashboards_port }}\""},{"line_number":39,"context_line":"        auth_enabled: \"{{ enable_opensearch_dashboards_internal_auth }}\""},{"line_number":40,"context_line":"        auth_user: \"{{ opensearch_dashboards_user }}\""},{"line_number":41,"context_line":"        auth_pass: \"{{ opensearch_dashboards_password }}\""},{"line_number":42,"context_line":"        backend_http_extra:"}],"source_content_type":"text/x-yaml","patch_set":6,"id":"8c78da6a_51435a3a","line":39,"updated":"2026-05-29 18:57:14.000000000","message":"| bool","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":36,"context_line":"        mode: \"http\""},{"line_number":37,"context_line":"        external: false"},{"line_number":38,"context_line":"        port: \"{{ opensearch_dashboards_port }}\""},{"line_number":39,"context_line":"        auth_enabled: \"{{ enable_opensearch_dashboards_internal_auth }}\""},{"line_number":40,"context_line":"        auth_user: \"{{ opensearch_dashboards_user }}\""},{"line_number":41,"context_line":"        auth_pass: \"{{ opensearch_dashboards_password }}\""},{"line_number":42,"context_line":"        backend_http_extra:"}],"source_content_type":"text/x-yaml","patch_set":6,"id":"bab60707_d88ff7e8","line":39,"in_reply_to":"8c78da6a_51435a3a","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":47,"context_line":"        external: true"},{"line_number":48,"context_line":"        external_fqdn: \"{{ opensearch_dashboards_external_fqdn }}\""},{"line_number":49,"context_line":"        port: \"{{ opensearch_dashboards_port_external }}\""},{"line_number":50,"context_line":"        auth_enabled: \"{{ enable_opensearch_dashboards_external_auth }}\""},{"line_number":51,"context_line":"        listen_port: \"{{ opensearch_dashboards_listen_port }}\""},{"line_number":52,"context_line":"        auth_user: \"{{ opensearch_dashboards_user }}\""},{"line_number":53,"context_line":"        auth_pass: \"{{ opensearch_dashboards_password }}\""}],"source_content_type":"text/x-yaml","patch_set":6,"id":"4b37be59_81869e9f","line":50,"updated":"2026-05-29 18:57:14.000000000","message":"| book","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":47,"context_line":"        external: true"},{"line_number":48,"context_line":"        external_fqdn: \"{{ opensearch_dashboards_external_fqdn }}\""},{"line_number":49,"context_line":"        port: \"{{ opensearch_dashboards_port_external }}\""},{"line_number":50,"context_line":"        auth_enabled: \"{{ enable_opensearch_dashboards_external_auth }}\""},{"line_number":51,"context_line":"        listen_port: \"{{ opensearch_dashboards_listen_port }}\""},{"line_number":52,"context_line":"        auth_user: \"{{ opensearch_dashboards_user }}\""},{"line_number":53,"context_line":"        auth_pass: \"{{ opensearch_dashboards_password }}\""}],"source_content_type":"text/x-yaml","patch_set":6,"id":"b396ff34_1af8bc69","line":50,"in_reply_to":"4b37be59_81869e9f","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"}],"ansible/roles/prometheus/defaults/main.yml":[{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":55,"context_line":"        mode: \"http\""},{"line_number":56,"context_line":"        external: false"},{"line_number":57,"context_line":"        port: \"{{ prometheus_alertmanager_port }}\""},{"line_number":58,"context_line":"        auth_enabled: \"{{ enable_prometheus_alertmanager_internal_auth }}\""},{"line_number":59,"context_line":"        auth_user: \"{{ prometheus_alertmanager_user }}\""},{"line_number":60,"context_line":"        auth_pass: \"{{ prometheus_alertmanager_password }}\""},{"line_number":61,"context_line":"        active_passive: \"{{ prometheus_alertmanager_active_passive | bool }}\""}],"source_content_type":"text/x-yaml","patch_set":6,"id":"cef330cb_cb647f50","line":58,"updated":"2026-05-29 18:57:14.000000000","message":"bool","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":55,"context_line":"        mode: \"http\""},{"line_number":56,"context_line":"        external: false"},{"line_number":57,"context_line":"        port: \"{{ prometheus_alertmanager_port }}\""},{"line_number":58,"context_line":"        auth_enabled: \"{{ enable_prometheus_alertmanager_internal_auth }}\""},{"line_number":59,"context_line":"        auth_user: \"{{ prometheus_alertmanager_user }}\""},{"line_number":60,"context_line":"        auth_pass: \"{{ prometheus_alertmanager_password }}\""},{"line_number":61,"context_line":"        active_passive: \"{{ prometheus_alertmanager_active_passive | bool }}\""}],"source_content_type":"text/x-yaml","patch_set":6,"id":"bdea8a05_cf0f34c3","line":58,"in_reply_to":"cef330cb_cb647f50","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":67,"context_line":"        external: true"},{"line_number":68,"context_line":"        external_fqdn: \"{{ prometheus_alertmanager_external_fqdn }}\""},{"line_number":69,"context_line":"        port: \"{{ prometheus_alertmanager_public_port }}\""},{"line_number":70,"context_line":"        auth_enabled: \"{{ enable_prometheus_alertmanager_external_auth }}\""},{"line_number":71,"context_line":"        listen_port: \"{{ prometheus_alertmanager_listen_port }}\""},{"line_number":72,"context_line":"        auth_user: \"{{ prometheus_alertmanager_user }}\""},{"line_number":73,"context_line":"        auth_pass: \"{{ prometheus_alertmanager_password }}\""}],"source_content_type":"text/x-yaml","patch_set":6,"id":"86cd7244_f07dcc2c","line":70,"updated":"2026-05-29 18:57:14.000000000","message":"bool","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":67,"context_line":"        external: true"},{"line_number":68,"context_line":"        external_fqdn: \"{{ prometheus_alertmanager_external_fqdn }}\""},{"line_number":69,"context_line":"        port: \"{{ prometheus_alertmanager_public_port }}\""},{"line_number":70,"context_line":"        auth_enabled: \"{{ enable_prometheus_alertmanager_external_auth }}\""},{"line_number":71,"context_line":"        listen_port: \"{{ prometheus_alertmanager_listen_port }}\""},{"line_number":72,"context_line":"        auth_user: \"{{ prometheus_alertmanager_user }}\""},{"line_number":73,"context_line":"        auth_pass: \"{{ prometheus_alertmanager_password }}\""}],"source_content_type":"text/x-yaml","patch_set":6,"id":"8d8dbb29_dbd84115","line":70,"in_reply_to":"86cd7244_f07dcc2c","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"}],"doc/source/reference/high-availability/haproxy-guide.rst":[{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":110,"context_line":"   * - Prometheus Alertmanager"},{"line_number":111,"context_line":"     - ``enable_prometheus_alertmanager_internal_auth`` (internal)"},{"line_number":112,"context_line":"       Enables HAProxy basic authentication on internal VIP."},{"line_number":113,"context_line":"       Default: ``yes``"},{"line_number":114,"context_line":""},{"line_number":115,"context_line":"       ``enable_prometheus_alertmanager_external_auth`` (external)"},{"line_number":116,"context_line":"       Enables HAProxy basic authentication on external VIP."}],"source_content_type":"text/x-rst","patch_set":6,"id":"8e89af31_04168b17","line":113,"updated":"2026-05-29 18:57:14.000000000","message":"default is true, not yes","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":110,"context_line":"   * - Prometheus Alertmanager"},{"line_number":111,"context_line":"     - ``enable_prometheus_alertmanager_internal_auth`` (internal)"},{"line_number":112,"context_line":"       Enables HAProxy basic authentication on internal VIP."},{"line_number":113,"context_line":"       Default: ``yes``"},{"line_number":114,"context_line":""},{"line_number":115,"context_line":"       ``enable_prometheus_alertmanager_external_auth`` (external)"},{"line_number":116,"context_line":"       Enables HAProxy basic authentication on external VIP."}],"source_content_type":"text/x-rst","patch_set":6,"id":"b05d990e_48cb950a","line":113,"in_reply_to":"8e89af31_04168b17","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":114,"context_line":""},{"line_number":115,"context_line":"       ``enable_prometheus_alertmanager_external_auth`` (external)"},{"line_number":116,"context_line":"       Enables HAProxy basic authentication on external VIP."},{"line_number":117,"context_line":"       Default: ``yes``"},{"line_number":118,"context_line":""},{"line_number":119,"context_line":"   * - OpenSearch Dashboards"},{"line_number":120,"context_line":"     - ``enable_opensearch_dashboards_internal_auth`` (internal)"}],"source_content_type":"text/x-rst","patch_set":6,"id":"0dc9b7cd_9b3ef539","line":117,"updated":"2026-05-29 18:57:14.000000000","message":"ditto","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":114,"context_line":""},{"line_number":115,"context_line":"       ``enable_prometheus_alertmanager_external_auth`` (external)"},{"line_number":116,"context_line":"       Enables HAProxy basic authentication on external VIP."},{"line_number":117,"context_line":"       Default: ``yes``"},{"line_number":118,"context_line":""},{"line_number":119,"context_line":"   * - OpenSearch Dashboards"},{"line_number":120,"context_line":"     - ``enable_opensearch_dashboards_internal_auth`` (internal)"}],"source_content_type":"text/x-rst","patch_set":6,"id":"6be29308_ad65a7b1","line":117,"in_reply_to":"0dc9b7cd_9b3ef539","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":119,"context_line":"   * - OpenSearch Dashboards"},{"line_number":120,"context_line":"     - ``enable_opensearch_dashboards_internal_auth`` (internal)"},{"line_number":121,"context_line":"       Enables HAProxy basic authentication on internal VIP."},{"line_number":122,"context_line":"       Default: ``yes``"},{"line_number":123,"context_line":""},{"line_number":124,"context_line":"       ``enable_opensearch_dashboards_external_auth`` (external)"},{"line_number":125,"context_line":"       Enables HAProxy basic authentication on external VIP."}],"source_content_type":"text/x-rst","patch_set":6,"id":"4e9de813_417ae49a","line":122,"updated":"2026-05-29 18:57:14.000000000","message":"ditto","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":119,"context_line":"   * - OpenSearch Dashboards"},{"line_number":120,"context_line":"     - ``enable_opensearch_dashboards_internal_auth`` (internal)"},{"line_number":121,"context_line":"       Enables HAProxy basic authentication on internal VIP."},{"line_number":122,"context_line":"       Default: ``yes``"},{"line_number":123,"context_line":""},{"line_number":124,"context_line":"       ``enable_opensearch_dashboards_external_auth`` (external)"},{"line_number":125,"context_line":"       Enables HAProxy basic authentication on external VIP."}],"source_content_type":"text/x-rst","patch_set":6,"id":"22f3317d_cca67643","line":122,"in_reply_to":"4e9de813_417ae49a","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":123,"context_line":""},{"line_number":124,"context_line":"       ``enable_opensearch_dashboards_external_auth`` (external)"},{"line_number":125,"context_line":"       Enables HAProxy basic authentication on external VIP."},{"line_number":126,"context_line":"       Default: ``yes``"},{"line_number":127,"context_line":""},{"line_number":128,"context_line":"Setting any of these flags to ``no`` disables HAProxy basic authentication"},{"line_number":129,"context_line":"for that VIP. This allows integration with a custom identity provider"}],"source_content_type":"text/x-rst","patch_set":6,"id":"58bf9c36_e355c416","line":126,"updated":"2026-05-29 18:57:14.000000000","message":"ditt","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":123,"context_line":""},{"line_number":124,"context_line":"       ``enable_opensearch_dashboards_external_auth`` (external)"},{"line_number":125,"context_line":"       Enables HAProxy basic authentication on external VIP."},{"line_number":126,"context_line":"       Default: ``yes``"},{"line_number":127,"context_line":""},{"line_number":128,"context_line":"Setting any of these flags to ``no`` disables HAProxy basic authentication"},{"line_number":129,"context_line":"for that VIP. This allows integration with a custom identity provider"}],"source_content_type":"text/x-rst","patch_set":6,"id":"fde2a096_41f4cba2","line":126,"in_reply_to":"58bf9c36_e355c416","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":125,"context_line":"       Enables HAProxy basic authentication on external VIP."},{"line_number":126,"context_line":"       Default: ``yes``"},{"line_number":127,"context_line":""},{"line_number":128,"context_line":"Setting any of these flags to ``no`` disables HAProxy basic authentication"},{"line_number":129,"context_line":"for that VIP. This allows integration with a custom identity provider"},{"line_number":130,"context_line":"(e.g., LDAP, OIDC) or exposing the service without authentication."},{"line_number":131,"context_line":""}],"source_content_type":"text/x-rst","patch_set":6,"id":"e3fd237e_648254ba","line":128,"updated":"2026-05-29 18:57:14.000000000","message":"I’d say to false","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":125,"context_line":"       Enables HAProxy basic authentication on external VIP."},{"line_number":126,"context_line":"       Default: ``yes``"},{"line_number":127,"context_line":""},{"line_number":128,"context_line":"Setting any of these flags to ``no`` disables HAProxy basic authentication"},{"line_number":129,"context_line":"for that VIP. This allows integration with a custom identity provider"},{"line_number":130,"context_line":"(e.g., LDAP, OIDC) or exposing the service without authentication."},{"line_number":131,"context_line":""}],"source_content_type":"text/x-rst","patch_set":6,"id":"4cb34fe5_a596b35a","line":128,"in_reply_to":"e3fd237e_648254ba","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":22629,"name":"Michal Nasiadka","email":"mnasiadka@gmail.com","username":"mnasiadka"},"change_message_id":"0e6eb67443b8df83b6797c5fc0efb5d8df622ca1","unresolved":true,"context_lines":[{"line_number":132,"context_line":".. note::"},{"line_number":133,"context_line":""},{"line_number":134,"context_line":"   Disabling basic authentication does **not** automatically configure"},{"line_number":135,"context_line":"   any external identity provider. If ``*_auth`` is set to ``no``, the"},{"line_number":136,"context_line":"   operator must configure authentication directly in the service"},{"line_number":137,"context_line":"   (for example, integrating Alertmanager or OpenSearch Dashboards with"},{"line_number":138,"context_line":"   LDAP, OIDC or another method)."}],"source_content_type":"text/x-rst","patch_set":6,"id":"09c61e0c_e24496c9","line":135,"updated":"2026-05-29 18:57:14.000000000","message":"ditto","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"},{"author":{"_account_id":37306,"name":"Piotr Milewski","display_name":"Piotr Milewski","email":"vurmil@gmail.com","username":"vurmil"},"change_message_id":"ba1f19703f97dc4e505a0608a24332ceb8f7ab84","unresolved":false,"context_lines":[{"line_number":132,"context_line":".. note::"},{"line_number":133,"context_line":""},{"line_number":134,"context_line":"   Disabling basic authentication does **not** automatically configure"},{"line_number":135,"context_line":"   any external identity provider. If ``*_auth`` is set to ``no``, the"},{"line_number":136,"context_line":"   operator must configure authentication directly in the service"},{"line_number":137,"context_line":"   (for example, integrating Alertmanager or OpenSearch Dashboards with"},{"line_number":138,"context_line":"   LDAP, OIDC or another method)."}],"source_content_type":"text/x-rst","patch_set":6,"id":"7122dd9e_f88d9c1e","line":135,"in_reply_to":"09c61e0c_e24496c9","updated":"2026-06-09 09:47:26.000000000","message":"Acknowledged","commit_id":"8f2553b7f7de90ed7cee48d72d32602b1d047219"}]}
