Switching to sudoers config files

roles/base/tasks/core_sudo.yml

@@ -1,18 +1,18 @@
 ---
 # file: roles/base/tasks/core_sudo.yml
 
-- name: Enabled passwordless for wheel group
-  lineinfile:
-    path: /etc/sudoers
-    state: present
-    regexp: '^%wheel'
-    line: '%wheel ALL=(ALL) NOPASSWD: ALL'
-    validate: 'visudo -cf %s'
+- name: Configure passwordless for wheel group
+  template:
+    src: "%wheel.j2"
+    dest: "/etc/sudoers.d/%wheel"
+    owner: root
+    group: root
+    mode: '0440'
   
-- name: Enabled passwordless for sudo group
-  lineinfile:
-    path: /etc/sudoers
-    state: present
-    regexp: '^%sudo'
-    line: '%sudo   ALL=(ALL:ALL) NOPASSWD: ALL'
-    validate: 'visudo -cf %s'
+- name: Configure passwordless for sudo group
+  template:
+    src: "%sudo.j2"
+    dest: "/etc/sudoers.d/%sudo"
+    owner: root
+    group: root
+    mode: '0440'

roles/base/templates/%sudo.j2

@@ -0,0 +1 @@
+%sudo	ALL=(ALL)	NOPASSWD: ALL

roles/base/templates/%wheel.j2

@@ -0,0 +1 @@
+%wheel	ALL=(ALL)	NOPASSWD: ALL