From bebaf38b551816c41cbb592fdb0935145a686ca9 Mon Sep 17 00:00:00 2001
From: Takashi Kajinami <kajinamit@oss.nttdata.com>
Date: Tue, 31 Oct 2023 15:21:23 +0900
Subject: [PATCH] Drop old workaround to update named data dir permission

The workaround is no longer needed since bind introduced a separate
directory for dynamic zones.

See https://bugzilla.redhat.com/show_bug.cgi?id=1315821 for details.

Change-Id: Ic4af1749f6e63a8d7702fd139d68502c50069947
---
 manifests/backend/bind9.pp | 11 -----------
 1 file changed, 11 deletions(-)

diff --git a/manifests/backend/bind9.pp b/manifests/backend/bind9.pp
index 0d83d1b2..86903758 100644
--- a/manifests/backend/bind9.pp
+++ b/manifests/backend/bind9.pp
@@ -97,17 +97,6 @@ class designate::backend::bind9 (
         additional_options => $dns_additional_options,
       }
     }
-
-    # /var/named is root:named on RedHat and /var/cache/bind is root:bind on
-    # Debian. Both groups only have read access but require write permission in
-    # order to be able to use rndc addzone/delzone commands that Designate uses.
-    # NOTE(bnemec): ensure_resource is to avoid a chicken and egg problem with
-    # removing this from puppet-openstack-integration.  Once that has been done
-    # the ensure_resource wrapper could be removed.
-    ensure_resource('file', $::dns::params::vardir, {
-      mode    => 'g+w',
-      require => Package[$::dns::params::dns_server_package]
-    })
   }
 
   if $manage_pool {