Terry Howe

Yeh, collection or some other way. We'd explored a couple different things a year ago and it just never went anywhere, but still on the todo list.

Supposedly, it will install with ansible-galaxy. I haven't tested it though, see the readme https://github.com/TerryHowe/ansible-modules-hashivault/blob/master/README.rst

I assume hvac would have support for this, so might not be too hard.

This code is very manual at constructing desired and current state. The underlying vault or hvac may have changed also since this was created https://github.com/TerryHowe/ansible-modules-hashivault/blob/main/ansible/modules/hashivault/hashivault_write.py#L122

What are your thoughts on how this should be handled? I'm not sure if `permanent` should be treated like a force.

Are you looking for the `version` option https://terryhowe.github.io/ansible-modules-hashivault/modules/hashivault_read_module.html#hashivault-read-module ?

Might be solved by https://github.com/TerryHowe/ansible-modules-hashivault/pull/263 which I haven't messed with yet.

Related issue https://github.com/TerryHowe/ansible-modules-hashivault/issues/234

Might be something could be done here

This was a limitation of ansible in the past. There was no way to redact these and ansible stance was don't log it if you don't want to see it.