Paul Hoffer

Sorry for delayed response, I was unexpectedly out of office a bit. To answer both of your questions: 1. Are the differences in terms of the verbs, query parameters, body...

We did some additional testing Friday and this morning and have a little more information we can provide. We added user/pass authentication to the Opensearch cluster, using the same policies...

Our goal is to use IAM roles to verify access and requests to our newer infrastructure pieces (Opensearch is the first we've added and tried to do this with). Our...

That debugging capability would be really helpful! I appreciate you tried those other aspects in debugging. I think we'll be able to get a lot more info with debugging updates...

Here is an example with the debugging added: ERROR: ``` {"message":"The request signature we calculated does not match the signature you provided. Check your AWS Secret Access Key and signing...

We do initialize this client on app boot, do we need to re-initialize it periodically (or on failure)? That would make sense

We are using `Aws::AssumeRoleWebIdentityCredentials` which will [allegedly auto refresh](https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/AssumeRoleWebIdentityCredentials.html). I wonder if there is some scenario under which it doesn't. Can you think of any reason this credential class wouldn't...

I don't believe it is possible to use Moped with 2.x, so you could possibly use `!mongoid3` to for the 2.x check. I'm not completely sure about that though.

We are working to make a Rails 6.1 app Zeitwerk compatible, and we're running into the same issue as #215 with `controllers_path` being configured, and then encountering the Zeitwerk conflict....