Add secrets to task defintion (#28)

* Add secrets

* fix variable naming

* Fix variable type

* Fix variable check

* Fix for valid JSON

Author: ericduvic

main.tf

@@ -198,6 +198,9 @@ resource "aws_ecs_task_definition" "task" {
   %{if var.task_mount_points != null~}
   "mountPoints": ${jsonencode(var.task_mount_points)},
   %{~endif}
+  %{if var.task_container_secrets != null~}
+  "secrets": ${jsonencode(var.task_container_secrets)},
+  %{~endif}
   "environment": ${jsonencode(local.task_environment)}
 }]
 EOF

variables.tf

@@ -98,6 +98,12 @@ variable "task_container_environment" {
   type        = map(string)
 }
 
+variable "task_container_secrets" {
+  description = "The secrets variables to pass to a container."
+  default     = null
+  type        = list(map(string))
+}
+
 variable "log_retention_in_days" {
   description = "Number of days the logs will be retained in CloudWatch."
   default     = 30