---
- assert:
    that: ansible_user_id != "root"

- name: create /etc/sudoers.d/{user} config file
  become: true
  template:
    src: sudoers
    dest: '/etc/sudoers.d/{{ansible_user_id}}'
    owner: root
    group: root
    mode: '0440'