Removing duplicated resource. fix #2

jnonino · jnonino · commit 5b5ce1011084 · 2019-08-15T09:15:21.000+01:00
diff --git a/README.md b/README.md
@@ -36,6 +36,7 @@ Check the section "Other modules that you may need to use this module" for detai
 * event_rule_name: The rule's name.
 * event_target_ecs_target_subnets: The subnets associated with the task or service.
 * event_target_ecs_target_task_definition_arn: The ARN of the task definition to use if the event target is an Amazon ECS cluster.
+* ecs_execution_task_role_arn: (Required) The task definition execution role.	
 * event_rule_schedule_expression: (Required, if event_pattern isn't specified) The scheduling expression. For example, cron(0 20 * * ? *) or rate(5 minutes).
 * event_rule_event_pattern: (Required, if schedule_expression isn't specified) Event pattern described a JSON object. See full documentation of CloudWatch Events and Event Patterns for details.
 * event_rule_description: (Optional) The description of the rule.
diff --git a/files/iam/ecs_task_execution_iam_role.json b/files/iam/ecs_task_execution_iam_role.json
diff --git a/main.tf b/main.tf
@@ -6,19 +6,6 @@ provider "aws" {
   region  = var.region
 }
 
-# ---------------------------------------------------------------------------------------------------------------------
-# AWS ECS Task Execution Role
-# ---------------------------------------------------------------------------------------------------------------------
-resource "aws_iam_role" "ecs_task_execution_role" {
-  name               = "${var.name_preffix}-ecs-task-execution-role"
-  assume_role_policy = file("${path.module}/files/iam/ecs_task_execution_iam_role.json")
-}
-
-resource "aws_iam_role_policy_attachment" "ecs_task_execution_role_policy_attach" {
-  role       = aws_iam_role.ecs_task_execution_role.name
-  policy_arn = "arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy"
-}
-
 # ---------------------------------------------------------------------------------------------------------------------
 # CLOUDWATCH EVENT ROLE
 # ---------------------------------------------------------------------------------------------------------------------
@@ -30,7 +17,7 @@ resource "aws_iam_role" "scheduled_task_cw_event_role" {
 data "template_file" "scheduled_task_cw_event_role_cloudwatch_policy" {
   template = "${file("${path.module}/files/iam/scheduled_task_cw_event_role_cloudwatch_policy.json")}"
   vars     = {
-    TASK_EXECUTION_ROLE_ARN = aws_iam_role.ecs_task_execution_role.arn
+    TASK_EXECUTION_ROLE_ARN = var.ecs_execution_task_role_arn
   }
 }
 
diff --git a/variables.tf b/variables.tf
@@ -65,6 +65,10 @@ variable "event_target_ecs_target_task_definition_arn" {
   description = "(Required) The ARN of the task definition to use if the event target is an Amazon ECS cluster."
 }
 
+variable "ecs_execution_task_role_arn" {	
+  description = "(Required) The task definition execution role"	
+}
+
 variable "event_target_target_id" {
   description = "(Optional) The unique target assignment ID. If missing, will generate a random, unique id."
   default     = null
