Comment 1 for bug 1438137

Hi Stuart,

This is a bit tricky, because if we set the default to True we could be leaving services silently exposed over IPv6. Considering this I tried to avoid a big security risk and users (deployers or charm authors) have to opt-in to soft-fail.

If a given charm doesn't mind this, then the author can simple use soft_fail=True. I think this is a fair balance between security and usability of our library.

Best,