Skip to content

Commit 9bc8535

Browse files
DavSanchezDavSanchez
authored
ci(fargate-runner): add passrole as custom policy (#2082)
* ci(fargate-runner): add passrole as custom policy * fix: remove role region
1 parent 4ceaa00 commit 9bc8535

File tree

1 file changed

+5
-0
lines changed

1 file changed

+5
-0
lines changed

test/terraform/fargate/main.tf

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -114,6 +114,11 @@ module "agent_control_infra" {
114114
"arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.secret_name_system_identity_private_key}",
115115
"arn:aws:secretsmanager:${var.region}:${var.accountId}:secret:${var.secret_name_prod_system_identity_private_key}",
116116
]
117+
},
118+
{
119+
"Effect" : "Allow",
120+
"Action" : "iam:PassRole",
121+
"Resource" : "arn:aws:iam::${var.accountId}:role/Agent_Control_Canaries_*-EKS_Worker_Role"
117122
}
118123
]
119124
}

0 commit comments

Comments
 (0)