---
- hosts: 127.0.0.1
user: root
tasks:
- group: name=mygroup state=present
- name: Add user to mygroup
user: name=myuser groups=mygroup append=yes
- name: Setup authorized key
authorized_key:
user: myuser
state: present
key: "{{ lookup('file', 'myuser_key.pub') }}"
- name: Allow mygroup group to have passwordless sudo
lineinfile:
dest: /etc/sudoers
state: present
regexp: '^%mygroup'
line: '%mygroup ALL=(ALL) NOPASSWD: ALL