Domain Deletion fails for domains with and without DNSSEC #3392
Assignees
Labels
Milestone
Comments
|
@h-m-f-t did note that a domain that couldn't be deleted last week by one of the analysts was able to be deleted today (and it didn't ever have DS data). |
allly-b
changed the title
32 tasks
3 tasks
Matt-Spence
added a commit
that referenced
this issue
Feb 20, 2025
#3392: fix domain deletion - [MS]
github-project-automation
bot
moved this from 👀 In review
to ✅ Done
in .gov Product Board
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Current Behavior
Deleting a domain from the registry through the admin portal will fail if a domain has dnssec enabled with the error message
Error deleting this Domain: This subdomain is being used as a hostname on another domain:. This originally appeared to be caused by the existence of DS records that point to the domain, preventing the domain from being deleted. However, some domains still got blocked from deletion even though they never had DNSSEC. To add to this bug, a few domains that never had dnssec were successfully deleted and we are unsure why it works for some and not othersExpected Behavior
Deleting a domain should work with or without it having dnssec or any other data. Deleting a domain from the registry through the admin portal deletes DS Data first, allowing for domains with DNSSec enabled to be successfully deleted. If deleting a DS record fails, then the error message displayed should accurately reflect that it is DS data, not a host, that is preventing the domain from being deleted. All other items connected to this domain should be deleted as well.
Note: there may also be something wrong with the way contacts are deleted.
Steps to Reproduce
Additional Context
Relevant slack thread
Issue Links
No response
The text was updated successfully, but these errors were encountered: