From cb561805d696670e9a628ff06693fcc905b20e84 Mon Sep 17 00:00:00 2001
From: Sam Al-Sapti <sam@sapti.me>
Date: Sat, 11 Nov 2023 16:41:47 +0100
Subject: [PATCH] Use sudoers module

---
 roles/common/tasks/users.yml | 13 +++++++------
 1 file changed, 7 insertions(+), 6 deletions(-)

diff --git a/roles/common/tasks/users.yml b/roles/common/tasks/users.yml
index a1f27a5..550eaeb 100644
--- a/roles/common/tasks/users.yml
+++ b/roles/common/tasks/users.yml
@@ -17,10 +17,11 @@
     exclusive: true
   loop: "{{ users }}"
 
-- name: Allow passwordless sudo to 'sudo' group
-  ansible.builtin.lineinfile:
-    path: /etc/sudoers
-    regexp: '^%sudo ALL='
-    line: '%sudo ALL=(ALL:ALL) NOPASSWD: ALL'
-    validate: /usr/sbin/visudo -cf %s
+- name: Allow passwordless sudo
+  community.general.sudoers:
+    name: passwordless
+    group: sudo
+    host: ALL
+    commands: ALL
+    nopassword: true
     state: present