· 9 years ago · Jan 31, 2017, 07:02 PM
1variable aws_access_key {}
2variable aws_secret_key {}
3
4provider "aws" {
5 region = "eu-central-1"
6 access_key = "${var.aws_access_key}"
7 secret_key = "${var.aws_secret_key}"
8}
9
10resource "aws_iam_role" "ecs_deploy_role" {
11 name = "ecs_deploy_role"
12 assume_role_policy = <<EOF
13{
14 "Version": "2012-10-17",
15 "Statement": [
16 {
17 "Effect": "Allow",
18 "Principal": {
19 "Service": "ec2.amazonaws.com"
20 },
21 "Action": "sts:AssumeRole"
22 }
23 ]
24}
25EOF
26}
27
28resource "aws_iam_policy_attachment" "ecs_deploy_role_attach" {
29 name = "ecs_deploy_role_attach"
30 roles = ["${aws_iam_role.ecs_deploy_role.name}"]
31 policy_arn = "arn:aws:iam::aws:policy/AmazonEC2ContainerServiceFullAccess"
32}