Create custom_iam_policy.tf (#16)

MesterJoda · web-flow · commit b6db3ea41a51 · 2021-06-11T09:47:17.000+02:00
diff --git a/examples/test/custom_iam_policy.tf b/examples/test/custom_iam_policy.tf
@@ -0,0 +1,24 @@
+ecs_task_execution_role_custom_policies = [
+    jsonencode(
+      {
+        "Version": "2012-10-17",
+        "Statement": [
+            {
+                "Effect": "Allow",
+                "Action": [
+                    "secretsmanager:GetSecretValue"
+                ],
+                "Resource": [
+                    "arn:aws:secretsmanager:AWS_REGION:AWS_ACC:secret:SECRET_NAME"
+                ]
+            }
+        ]
+      }
+    )
+  ]
+
+#This also works
+
+ ecs_task_execution_role_custom_policies = [
+   "{\"Version\":\"2012-10-17\",\"Statement\":[{\"Effect\":\"Allow\",\"Action\":[\"secretsmanager:GetSecretValue\"],\"Resource\":[\"arn:aws:secretsmanager:AWS_REGION:AWS_ACC:secret:SECRET_NAME\"]}]}"
+ ]
