---
- name: "Install {{ service_name }} systemd unit file"
  template:
    src: "template/service.j2"
    dest: "/etc/systemd/system/{{ service_name }}.service"

- name: "Start {{ service_name }} service"
  systemd:
    enabled: yes
    state: started
    name: "{{ service_name }}"
    daemon_reload: yes

- name: "Add sudoers record for {{ service_name }} service"
  lineinfile:
    path: /etc/sudoers.d/{{ service_name }}
    state: present
    create: yes
    regexp: "^{{ service_control_user }} ALL="
    line: "{{ service_control_user }} ALL= NOPASSWD: /bin/systemctl * {{ service_name }}"
    validate: "/usr/sbin/visudo -cf %s"