The snippet that I’m using is here, but this will apply to running any privileged command without a password:
youruser ALL = (root) NOPASSWD: /sbin/start yourservice, /sbin/stop yourservice, /sbin/restart yourserviceI did not previously know that sudoers allowed rules at the argument level, though I’d used NOPASSWD before. The man page is pretty packed with usage info, and it appears there is a lot to learn. For today, a lot of things I’d been doing with my deployment scripting should get a lot easier :).