From e50ccd7ef05521d676ab724d96578a0c0f225fa0 Mon Sep 17 00:00:00 2001
From: Bertrand Benjamin <benjamin.bertrand@opytex.org>
Date: Wed, 12 Jan 2022 14:56:04 +0100
Subject: [PATCH] Feat: add sudo group and sudoers

---
 roles/core/files/sudoers  |  7 +++++++
 roles/core/tasks/main.yml | 10 ++++++++++
 2 files changed, 17 insertions(+)
 create mode 100644 roles/core/files/sudoers

diff --git a/roles/core/files/sudoers b/roles/core/files/sudoers
new file mode 100644
index 0000000..7d54e99
--- /dev/null
+++ b/roles/core/files/sudoers
@@ -0,0 +1,7 @@
+root  ALL=(ALL) ALL
+%sudo ALL=(ALL) ALL
+
+Defaults env_reset
+Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
+
+#includedir /etc/sudoers.d
diff --git a/roles/core/tasks/main.yml b/roles/core/tasks/main.yml
index 3d939f9..8fe831e 100644
--- a/roles/core/tasks/main.yml
+++ b/roles/core/tasks/main.yml
@@ -6,3 +6,13 @@
     state: present
   with_items: "{{ pacman_pkgs }}"
 
+- name: Configure sudoers
+  template:
+    src: files/sudoers
+    dest: /etc/sudoers
+    mode: 0440
+
+- name: Create sudo group
+  group:
+    name: sudo
+    state: present