Support for passing task execution role via arguments (#4)

* up-to-date

* up-to-date

* Support for setting task execution ARN via argument

Author: tuvshuud

main.tf

@@ -54,7 +54,7 @@ module "container_definition" {
 resource "aws_ecs_task_definition" "td" {
   family                = "${var.name_preffix}-td"
   container_definitions = "[ ${module.container_definition.json_map} ]"
-  task_role_arn         = aws_iam_role.ecs_task_execution_role.arn
+  task_role_arn         = var.task_role_arn == null ? aws_iam_role.ecs_task_execution_role.arn : var.task_role_arn
   execution_role_arn    = aws_iam_role.ecs_task_execution_role.arn
   network_mode          = "awsvpc"
   dynamic "placement_constraints" {

variables.tf

@@ -177,6 +177,12 @@ variable "port_mappings" {
   ]
 }
 
+variable "task_role_arn" {
+  description = "(Optional) The ARN of IAM role that allows your Amazon ECS container task to make calls to other AWS services. If not specified, `aws_iam_role.ecs_task_execution_role.arn` is used"
+  type        = string
+  default     = null
+}
+
 variable "readonly_root_filesystem" {
   description = "(Optional) Determines whether a container is given read-only access to its root filesystem. Due to how Terraform type casts booleans in json it is required to double quote this value"
   type        = bool