From 776fd91ffb3fb88836271a053ecd3f14dc32d996 Mon Sep 17 00:00:00 2001
From: Knut Ahlers <knut@ahlers.me>
Date: Sun, 7 Jan 2018 18:40:34 +0100
Subject: [PATCH] Add ability for sudo access

Signed-off-by: Knut Ahlers <knut@ahlers.me>
---
 tasks/main.yml | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/tasks/main.yml b/tasks/main.yml
index c5edacb..e15c843 100644
--- a/tasks/main.yml
+++ b/tasks/main.yml
@@ -39,3 +39,20 @@
     group: '{{ item.name }}'
   when: item.github_key_user is defined and item.ssh_key is not defined
   with_items: '{{ users }}'
+
+- name: Set up sudo access for user
+  copy:
+    content: |
+      {{ item.name }} ALL=(ALL) NOPASSWD: ALL
+    dest: '/etc/sudoers.d/{{ item.name }}'
+  when: item.sudo is defined and item.sudo
+  with_items: '{{ users }}'
+
+- name: Revoke sudo access for user
+  file:
+    dest: '/etc/sudoers.d/{{ item.name }}'
+    state: absent
+  when: item.sudo is not defined or not item.sudo
+  with_items: '{{ users }}'
+
+...