configpolicy/roles/named/templates/named.zones.j2

// Zone configuration for ISC BIND
{% for zone in named_zones %}

zone "{{ zone.zone }}" {
    type {{ zone.type|d('master') }};
    file "dynamic/{{ zone.zone }}.zone";
{% if zone.allow_update|d %}
    allow-update {
{% for auth in zone.allow_update %}
{% if auth.key is defined %}
        key {{ auth.key }};
{% else %}
        {{ auth }};
{% endif %}
{% endfor %}
    };
{% endif %}
{% if zone.update_policy|d %}
    update-policy {
{% for auth in zone.update_policy %}
        {{ auth }};
{% endfor %}
    };
{% endif %}
};
{% endfor %}