Run sudoers related tasks after necessary packages are installed.

Otherwise on system without sudo package, playbook run will fail.

tasks/main.yml

@@ -1,14 +1,14 @@
 ---
 
-# Users
-- include: users.yml
-
 # SSH and sudoers
 - include: ssh.yml
 
 # System and services
 - include: system.yml
 
+# Users and sudoers
+- include: users.yml
+
 # UFW basic rules
 - include: ufw.yml
   when: di_ufw_enabled

tasks/ssh.yml

@@ -16,23 +16,3 @@
     - regexp: '^AllowUsers'
       line: 'AllowUsers {{ di_ssh_allow_users }}'
   notify: restart ssh
-
-- name: configure password sudoers
-  lineinfile:
-    dest: /etc/sudoers
-    state: present
-    regexp: '^{{ item }}'
-    line: '{{ item }} ALL=(ALL) ALL'
-    validate: 'visudo -cf %s'
-  with_items: '{{ di_sudoers_password }}'
-  when: di_sudoers_password | length > 0
-
-- name: configure passwordless sudoers
-  lineinfile:
-    dest: /etc/sudoers
-    state: present
-    regexp: '^{{ item }}'
-    line: '{{ item }} ALL=(ALL) NOPASSWD: ALL'
-    validate: 'visudo -cf %s'
-  with_items: '{{ di_sudoers_passwordless }}'
-  when: di_sudoers_passwordless | length > 0

tasks/users.yml

@@ -8,3 +8,23 @@
     update_password: on_create
   with_items: '{{ di_add_users }}'
   when: di_add_users | length > 0
+
+- name: configure password sudoers
+  lineinfile:
+    dest: /etc/sudoers
+    state: present
+    regexp: '^{{ item }}'
+    line: '{{ item }} ALL=(ALL) ALL'
+    validate: 'visudo -cf %s'
+  with_items: '{{ di_sudoers_password }}'
+  when: di_sudoers_password | length > 0
+
+- name: configure passwordless sudoers
+  lineinfile:
+    dest: /etc/sudoers
+    state: present
+    regexp: '^{{ item }}'
+    line: '{{ item }} ALL=(ALL) NOPASSWD: ALL'
+    validate: 'visudo -cf %s'
+  with_items: '{{ di_sudoers_passwordless }}'
+  when: di_sudoers_passwordless | length > 0