chore: correct version_added

pfeifferj · pfeifferj · commit 88b4cc79203b · 2025-11-05T20:05:45.000+01:00
Remove changelog files that are managed in release PRs
diff --git a/changelogs/fragments/353-add-kubernetes-auth.yml b/changelogs/fragments/353-add-kubernetes-auth.yml
@@ -0,0 +1,3 @@
+---
+minor_changes:
+  - community.hashi_vault collection - add support for ``kubernetes`` auth method (https://github.com/ansible-collections/community.hashi_vault/pull/353).
diff --git a/plugins/doc_fragments/auth.py b/plugins/doc_fragments/auth.py
@@ -20,7 +20,7 @@ class ModuleDocFragment(object):
           - C(aws_iam_login) was renamed C(aws_iam) in collection version C(2.1.0) and was removed in C(3.0.0).
           - C(azure) auth method was added in collection version C(3.2.0).
           - C(gcp) auth method was added in collection version C(7.1.0).
-          - C(kubernetes) auth method was added in collection version C(8.0.0).
+          - C(kubernetes) auth method was added in collection version C(7.2.0).
         choices:
           - token
           - userpass
@@ -82,12 +82,12 @@ class ModuleDocFragment(object):
       kubernetes_token:
         description: The Kubernetes Token (JWT) to use for Kubernetes authentication to Vault.
         type: str
-        version_added: 6.3.0
+        version_added: 7.2.0
       kubernetes_token_path:
         description: If no kubernetes_token is specified, will try to read the token from this path.
         default: '/var/run/secrets/kubernetes.io/serviceaccount/token'
         type: str
-        version_added: 6.3.0
+        version_added: 7.2.0
       aws_profile:
         description: The AWS profile
         type: str
diff --git a/plugins/lookup/hashi_vault.py b/plugins/lookup/hashi_vault.py
@@ -49,13 +49,6 @@
     secret:
       description: Vault path to the secret being requested in the format C(path[:field]).
       required: True
-    secret_field:
-      description:
-        - Field within the secret being requested.
-        - This is set automatically when using the C(secret:field) syntax.
-        - Use of this option is discouraged in favor of the C(:field) syntax.
-      required: False
-      version_added: 6.3.0
     return_format:
       description:
         - Controls how multiple key/value pairs in a path are treated on return.
@@ -257,18 +250,9 @@
 
 display = Display()
 
-HAS_HVAC = False
-try:
-    import hvac
-    HAS_HVAC = True
-except ImportError:
-    HAS_HVAC = False
-
 
 class LookupModule(HashiVaultLookupBase):
     def run(self, terms, variables=None, **kwargs):
-        if not HAS_HVAC:
-            raise AnsibleError("Please pip install hvac to use the hashi_vault lookup module.")
 
         ret = []
 
@@ -318,18 +302,20 @@ def field_ops(self):
             field = s_f[1]
         else:
             field = None
-        self.set_option('secret_field', field)
+
+        self._secret_field = field
 
     def get(self):
         '''gets a secret. should always return a list'''
 
+        field = self._secret_field
         secret = self.get_option('secret')
-        field = self.get_option('secret_field')
         return_as = self.get_option('return_format')
+        hvac_exceptions = self.helper.get_hvac().exceptions
 
         try:
             data = self.client.read(secret)
-        except hvac.exceptions.Forbidden:
+        except hvac_exceptions.Forbidden:
             raise AnsibleError("Forbidden: Permission Denied to secret '%s'." % secret)
 
         if data is None:

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+---`
	`2`	`+minor_changes:`
	`3`	+ - community.hashi_vault collection - add support for ``kubernetes`` auth method (https://github.com/ansible-collections/community.hashi_vault/pull/353).