Update.

roles/common/templates/etc/sudoers.d/50-user.pc.j2

@@ -1,26 +1,26 @@
 # {{ ansible_managed }}
 
-{% for item in sudoers_file_defaults | default([]) %}
+{% for item in sudoers_pc_file_defaults | default([]) %}
 Defaults {{ item }}
 {% endfor %}
 
 # Host alias specification
-{% for item in sudoers_file_host_aliases | default([]) %}
+{% for item in sudoers_pc_file_host_aliases | default([]) %}
 Host_Alias {{ item.name }} = {{ item.entry }}
 {% endfor %}
 
 # User alias specification
-{% for item in sudoers_file_user_aliases | default([]) %}
+{% for item in sudoers_pc_file_user_aliases | default([]) %}
 User_Alias {{ item.name }} = {{ item.entry }}
 {% endfor %}
 
 # Cmnd alias specification
-{% for item in sudoers_file_cmnd_aliases | default([]) %}
+{% for item in sudoers_pc_file_cmnd_aliases | default([]) %}
 Cmnd_Alias {{ item.name }} = {{ item.entry }}
 {% endfor %}
 
 # Runas alias specification
-{% for item in sudoers_file_runas_aliases | default([]) %}
+{% for item in sudoers_pc_file_runas_aliases | default([]) %}
 Runas_Alias {{ item.name }} = {{ item.entry }}
 {% endfor %}
 

roles/common/templates/etc/sudoers.d/50-user.server.j2

@@ -0,0 +1,53 @@
+# {{ ansible_managed }}
+
+{% for item in sudoers_server_file_defaults | default([]) %}
+Defaults {{ item }}
+{% endfor %}
+
+# Host alias specification
+{% for item in sudoers_server_file_host_aliases | default([]) %}
+Host_Alias {{ item.name }} = {{ item.entry }}
+{% endfor %}
+
+# User alias specification
+{% for item in sudoers_server_file_user_aliases | default([]) %}
+User_Alias {{ item.name }} = {{ item.entry }}
+{% endfor %}
+
+# Cmnd alias specification
+{% for item in sudoers_server_file_cmnd_aliases | default([]) %}
+Cmnd_Alias {{ item.name }} = {{ item.entry }}
+{% endfor %}
+
+# Runas alias specification
+{% for item in sudoers_server_file_runas_aliases | default([]) %}
+Runas_Alias {{ item.name }} = {{ item.entry }}
+{% endfor %}
+
+# User privilege specification
+
+{# rule for user 'back' #}
+{% for item in sudoers_server_file_user_back_privileges | default([]) %}
+back {{ item }}
+{% endfor -%}
+
+
+{%- if ansible_virtualization_role == 'host' %}
+
+{% for item in sudoers_server_file_user_back_disk_privileges | default([]) %}
+back {{ item }}
+{% endfor %}
+{% endif -%}
+
+{# other (host specific) rules #} 
+{%-  if (sudoers_server_file_user_privileges is defined and sudoers_server_file_user_privileges) %}
+
+{% for item in sudoers_server_file_user_privileges | default([]) %}
+{{ item.name }} {{ item.entry }}
+{% endfor %}
+{% endif %}
+
+# Group privilege specification
+{% for item in sudoers_server_file_group_privileges | default([]) %}
+{{ item.name }} {{ item.entry }}
+{% endfor -%}

roles/common/templates/etc/sudoers.pc.j2

@@ -7,34 +7,34 @@
 #
 # See the man page for details on how to write a sudoers file.
 #
-{% for item in sudoers_defaults %}
+{% for item in sudoers_pc_defaults %}
 {% if item != '' %}
 Defaults {{ item }}
 {% endif %}
 {% endfor %}
 
 # Host alias specification
-{% for item in sudoers_host_aliases | default([]) %}
+{% for item in sudoers_pc_host_aliases | default([]) %}
 Host_Alias {{ item.name }} = {{ item.entry }}
 {% endfor %}
 
 # User alias specification
-{% for item in sudoers_user_aliases | default([]) %}
+{% for item in sudoers_pc_user_aliases | default([]) %}
 User_Alias {{ item.name }} = {{ item.entry }}
 {% endfor %}
 
 # Cmnd alias specification
-{% for item in sudoers_cmnd_aliases | default([]) %}
+{% for item in sudoers_pc_cmnd_aliases | default([]) %}
 Cmnd_Alias {{ item.name }} = {{ item.entry }}
 {% endfor %}
 
 # Runas alias specification
-{% for item in sudoers_runas_aliases | default([]) %}
+{% for item in sudoers_pc_runas_aliases | default([]) %}
 Runas_Alias {{ item.name }} = {{ item.entry }}
 {% endfor %}
 
 # User privilege specification
-{% for item in sudoers_user_privileges | default([]) %}
+{% for item in sudoers_pc_user_privileges | default([]) %}
 {{ item.name }} {{ item.entry }}
 {% endfor %}
 
@@ -46,7 +46,7 @@ Runas_Alias {{ item.name }} = {{ item.entry }}
 
 # Group privilege specification
 
-{% for item in sudoers_group_privileges | default([]) %}
+{% for item in sudoers_pc_group_privileges | default([]) %}
 {{ item.name }} {{ item.entry }}
 {% endfor %}
 

roles/common/templates/etc/sudoers.server.j2

@@ -0,0 +1,53 @@
+# {{ ansible_managed }}
+
+# This file MUST be edited with the 'visudo' command as root.
+#
+# Please consider adding local content in /etc/sudoers.d/ instead of
+# directly modifying this file.
+#
+# See the man page for details on how to write a sudoers file.
+#
+{% for item in sudoers_server_defaults %}
+{% if item != '' %}
+Defaults {{ item }}
+{% endif %}
+{% endfor %}
+
+# Host alias specification
+{% for item in sudoers_server_host_aliases | default([]) %}
+Host_Alias {{ item.name }} = {{ item.entry }}
+{% endfor %}
+
+# User alias specification
+{% for item in sudoers_server_user_aliases | default([]) %}
+User_Alias {{ item.name }} = {{ item.entry }}
+{% endfor %}
+
+# Cmnd alias specification
+{% for item in sudoers_server_cmnd_aliases | default([]) %}
+Cmnd_Alias {{ item.name }} = {{ item.entry }}
+{% endfor %}
+
+# Runas alias specification
+{% for item in sudoers_server_runas_aliases | default([]) %}
+Runas_Alias {{ item.name }} = {{ item.entry }}
+{% endfor %}
+
+# User privilege specification
+{% for item in sudoers_server_user_privileges | default([]) %}
+{{ item.name }} {{ item.entry }}
+{% endfor %}
+
+# Allow members of group sudo to execute any command
+%sudo ALL=(ALL:ALL) ALL
+
+# Group privilege specification
+
+{% for item in sudoers_server_group_privileges | default([]) %}
+{{ item.name }} {{ item.entry }}
+{% endfor %}
+
+# See sudoers(5) for more information on "#include" directives:
+
+#includedir /etc/sudoers.d
+