---
# tasks file for roles/powerdns-recursor
- name: "add powerdns-recursor repository"
  become: true
  block:
    - name: "powerdns repo apt key"
      become: true
      get_url: 
        url: https://repo.powerdns.com/FD380FBB-pub.asc
        dest: "/etc/apt/trusted.gpg.d/{{ repo_signed_key }}"
    
    - name: "powerdns-recursor {{ powerdns_version }} repo"
      become: true
      apt_repository:
        repo: deb [arch=amd64] {{ repo_uri }} {{ repo_components }}
        state: "{{ repo_state }}"
        update_cache: yes
        filename: powerdns-rec-{{ powerdns_version }}

- name: "install powerdns-recursor {{ powerdns_version }}"
  become: true
  apt:
    name: "pdns-recursor{{ deb_powerdns_version }}"
    autoremove: true
    update_cache: true

- name: "configure powerdns-recursor"
  become: true
  block:
    - name: "download root.zone"
      get_url:
        url: https://www.internic.net/domain/root.zone
        dest: /etc/powerdns/root.zone

    - name: "template powerdns-recursor configs"
      become: true
      template:
        src: "templates{{ item }}.j2"
        dest: "{{ item }}"
        owner: root
        group: root
        mode: 0644
      loop:
        - /etc/powerdns/recursor.conf
        - /etc/powerdns/recursor.lua
        - /etc/powerdns/recursor.d/allow.lst
        - /etc/powerdns/recursor.d/forward.lst
        - /etc/powerdns/recursor.d/dns-script.lua
  notify:
    - Restart powerdns-recursor