Skip to content
This repository has been archived by the owner on Jan 8, 2024. It is now read-only.

Commit

Permalink
runnerinstall/aws-ecs: Add AddTags permission to ODR IAM policy.
Browse files Browse the repository at this point in the history 
The AWS ECS plugin may need to add tags to an AWS ALB, and therefore needs the AddTags permission to do so.
  • Loading branch information
@paladin-devops
paladin-devops committed Jun 21, 2023
1 parent aca518e commit 5c1ff64
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion internal/runnerinstall/ecs.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -84,6 +84,7 @@ const odrRolePolicy = `{
"ecs:DeregisterTaskDefinition",
"ecs:RunTask",
"ecs:StopTask",
"elasticloadbalancing:AddTags",
"elasticloadbalancing:CreateListener",
"elasticloadbalancing:CreateLoadBalancer",
"elasticloadbalancing:CreateRule",
Expand All @@ -97,7 +98,7 @@ const odrRolePolicy = `{
"elasticloadbalancing:DescribeRules",
"elasticloadbalancing:DescribeTargetGroups",
"elasticloadbalancing:ModifyListener",
"elasticloadbalancing:DescribeTargetHealth",
"elasticloadbalancing:DescribeTargetHealth",
"iam:AttachRolePolicy",
"iam:CreateRole",
"iam:GetRole",
Expand Down

0 comments on commit 5c1ff64

Please sign in to comment.