From 2b8b00b5ee622de5fa58c26de6efc10335a26e80 Mon Sep 17 00:00:00 2001
From: Niclas Thobaben <nthobaben@nclazz.de>
Date: Mon, 27 Dec 2021 21:07:43 +0100
Subject: [PATCH] updated permissions

---
 tasks/02-backup.yml    | 2 ++
 tasks/03-configure.yml | 1 +
 tasks/05-rollback.yml  | 5 +++++
 3 files changed, 8 insertions(+)

diff --git a/tasks/02-backup.yml b/tasks/02-backup.yml
index 7823c12..8b2c716 100644
--- a/tasks/02-backup.yml
+++ b/tasks/02-backup.yml
@@ -1,6 +1,7 @@
 # Backup bind9 config and zone files for potential rollback
 
 - name: Ensure dir {{bind9_zone_dir}} exists
+  become: true
   file:
     path: /srv/dns
     owner: bind
@@ -13,6 +14,7 @@
     bind9_initial_setup: "{{dns_dir_result.changed}}"
 
 - name: List all existing zone files
+  become: true
   shell: "find {{ bind9_zone_dir }} -type f -exec basename {} \\;"
   changed_when: false
   register: existing_zones_result
diff --git a/tasks/03-configure.yml b/tasks/03-configure.yml
index a175445..0aba736 100644
--- a/tasks/03-configure.yml
+++ b/tasks/03-configure.yml
@@ -10,6 +10,7 @@
     mode: 0644
 
 - name: Generate DNS zones
+  become: true
   template:
     src: zone.j2
     dest: "/srv/dns/{{item.name}}.zone"
diff --git a/tasks/05-rollback.yml b/tasks/05-rollback.yml
index 0e2a62f..152214f 100644
--- a/tasks/05-rollback.yml
+++ b/tasks/05-rollback.yml
@@ -1,6 +1,7 @@
 # Rollback changes on error
 
 - name: Rollback /etc/named.conf.local
+  become: true
   copy: 
     remote_src: true
     src: /etc/bind/named.conf.local.bak
@@ -10,19 +11,23 @@
     mode: 0644
 
 - name: Delete /etc/named.conf.local.bak
+  become: true
   file:
     path: /etc/named.conf.local.bak
     state: absent
 
 - name: Delete all changed zone files
+  become: true
   shell: "rm $(find {{bind9_zone_dir}} -not -name '*.bak' -type f)"
   changed_when: false
 
 - name: List all backed up zone files
+  become: true
   shell: "find {{bind9_zone_dir}} -name '*.bak' -type f -exec basename {} \\;"
   changed_when: false
   register: backup_zones_result
 
 - name: Restore backed up zone files
+  become: true
   shell: "mv {{bind9_zone_dir}}/{{item}}.bak {{bind9_zone_dir}}/{{item}}"
   with_items: backup_zones_result.stdout_lines
\ No newline at end of file