gitlab does not auto-generate password

In fact, the README does say "edit config.yaml", but it does not say "you must set the admin password or things will break horribly". (And I know there must be a root password before I do a real deployment, but I'm not there yet, so it should really be documented).

Probably an error on the README file instead of the charm itself. I believe that this is a security measure, and I've done this in several of my charms - the service refuses to configure unless you set a password.

I'd be for changing this to an error on the README file, since creating a default password involves a security risk.

Thanks for the prompt answer!

But to clarify: I'm not proposing a (fixed) default password, I'm proposing to have a randomly-generated password. If there's a specific security risk with that, I'm happy to retract the request (but then somebody should fix the MySQL and Nagios charms). But I believe there isn't, and not just because I somewhat trust those recommended charms — the only difference with "generate a fresh password by hand/with a program like KeePassX" is that the password is also stored inside a file which is accessible to the admin, but if you can access this file that's because you're already root.

Moreover, even if this were properly documented, it should still be possible to get a specific, discoverable error and set the password in a second moment (but that's the focus of https://bugs.launchpad.net/charms/+source/gitlab/+bug/1416687). Right now, if you try starting this charm before you set the password, you're stuck.