Difference between revisions of "ECS execution policy"
Jump to navigation
Jump to search
| Line 28: | Line 28: | ||
| + | |||
| + | == Related == | ||
| + | * [[AWS managed policy: AmazonECSTaskExecutionRolePolicy]] | ||
{{aws_iam_policy}} | {{aws_iam_policy}} | ||
Revision as of 16:01, 29 May 2023
resource "aws_iam_policy" "ecs_policy" {
name = "your-task-ecs-execution-policy"
description = "ECS execution policy"
policy = <<EOF
{
"Version": "2012-10-17",
"Statement": [
{
"Action": [
"ecr:GetAuthorizationToken",
"ecr:BatchCheckLayerAvailability",
"ecr:GetDownloadUrlForLayer",
"ecr:BatchGetImage",
"logs:CreateLogStream",
"logs:PutLogEvents",
"ssm:GetParameters",
"secretsmanager:GetSecretValue",
"kms:Decrypt"
],
"Effect": "Allow",
"Resource": "*"
}
]
}
EOF
}
Related
Terraform resource: aws_iam_policy, AmazonECSTaskExecutionRolePolicy
Advertising:
