---

- name: "/etc/sudoers.d presence and permissions"
  ansible.builtin.file:
    path: /etc/sudoers.d
    owner: root
    group: root
    mode: "0750"
    state: directory

- name: "Verify 'evolinux' sudoers file presence (Debian 9 or later)"
  ansible.builtin.template:
    src: sudoers.j2
    dest: /etc/sudoers.d/evolinux
    force: false
    mode: "0440"
    validate: '/usr/sbin/visudo -cf %s'
  register: copy_sudoers_evolinux

- name: "Create '{{ evolinux_sudo_group }}' group (Debian 9 or later)"

  ansible.builtin.group:
    name: "{{ evolinux_sudo_group }}"
    system: yes