feat(secret): update

paologallinaharbur · paologallinaharbur · commit 4a12ec5a542a · 2025-01-30T11:23:12.000+01:00
diff --git a/test/terraform/fargate/main.tf b/test/terraform/fargate/main.tf
@@ -101,5 +101,6 @@ module "agent_control_infra" {
     canaries_security_group = var.canaries_security_group
     oidc_repository = var.oidc_repository
     oidc_role_name = var.oidc_role_name
+    task_runtime_custom_policies = var.task_runtime_custom_policies
     tags = var.tags
 }
diff --git a/test/terraform/fargate/vars.tf b/test/terraform/fargate/vars.tf
@@ -133,6 +133,15 @@ variable "additional_efs_security_group_rules" {
 # OIDC permissions
 #######################################
 
+variable "task_runtime_custom_policies" {
+  type        = list(string)
+  description = "Custom policies for task runtime as JSON strings."
+  default = [
+    "{ \"Statement\": [{ \"Effect\": \"Allow\", \"Action\": \"eks:*\", \"Resource\": \"*\" }] }",
+    "{ \"Statement\": [{ \"Effect\": \"Allow\", \"Action\": \"ec2:*\", \"Resource\": \"*\" }] }"
+  ]
+}
+
 variable "oidc_repository" {
   default = "repo:newrelic/newrelic-super-agent:*"
 }

Original file line number	Diff line number	Diff line change
`@@ -101,5 +101,6 @@ module "agent_control_infra" {`
`101`	`101`	`canaries_security_group = var.canaries_security_group`
`102`	`102`	`oidc_repository = var.oidc_repository`
`103`	`103`	`oidc_role_name = var.oidc_role_name`
	`104`	`+ task_runtime_custom_policies = var.task_runtime_custom_policies`
`104`	`105`	`tags = var.tags`
`105`	`106`	`}`