updated permissions

tasks/02-backup.yml

@@ -1,6 +1,7 @@
 # Backup bind9 config and zone files for potential rollback
 
 - name: Ensure dir {{bind9_zone_dir}} exists
+  become: true
   file:
     path: /srv/dns
     owner: bind
@@ -13,6 +14,7 @@
     bind9_initial_setup: "{{dns_dir_result.changed}}"
 
 - name: List all existing zone files
+  become: true
   shell: "find {{ bind9_zone_dir }} -type f -exec basename {} \\;"
   changed_when: false
   register: existing_zones_result

tasks/03-configure.yml

@@ -10,6 +10,7 @@
     mode: 0644
 
 - name: Generate DNS zones
+  become: true
   template:
     src: zone.j2
     dest: "/srv/dns/{{item.name}}.zone"

tasks/05-rollback.yml

@@ -1,6 +1,7 @@
 # Rollback changes on error
 
 - name: Rollback /etc/named.conf.local
+  become: true
   copy: 
     remote_src: true
     src: /etc/bind/named.conf.local.bak
@@ -10,19 +11,23 @@
     mode: 0644
 
 - name: Delete /etc/named.conf.local.bak
+  become: true
   file:
     path: /etc/named.conf.local.bak
     state: absent
 
 - name: Delete all changed zone files
+  become: true
   shell: "rm $(find {{bind9_zone_dir}} -not -name '*.bak' -type f)"
   changed_when: false
 
 - name: List all backed up zone files
+  become: true
   shell: "find {{bind9_zone_dir}} -name '*.bak' -type f -exec basename {} \\;"
   changed_when: false
   register: backup_zones_result
 
 - name: Restore backed up zone files
+  become: true
   shell: "mv {{bind9_zone_dir}}/{{item}}.bak {{bind9_zone_dir}}/{{item}}"
   with_items: backup_zones_result.stdout_lines