Updated readme + Ability to retain log_group after service deleted #64

kyletbase2 · 2021-11-22T04:15:45Z

No description provided.

Guslington · 2021-12-17T05:13:43Z

ecs-service.cfndsl.rb


  definitions, task_volumes, secrets = Array.new(3){[]}
-  secrets_policy = {}
+  secrets_policy = external_parameters.fetch(:secrets_policy, {})


@kyletbase2 What's the use case for a custom secrets policy?

@Guslington This was for a customer who wanted to retrieve DB credentials from Secrets Manager, and pass it to an ECS task using "ValueFrom" environment variables. Maybe there's a better / supported way to do this, but I couldn't find it.

The AWS docs say this needs to be given to the task execution role (not task role, which afaik is what the iam_policies config modifies.

kyletbase2 added 4 commits October 27, 2021 09:23

Added ability to specify your own secrets_policy

d48117d

Updated readme

d349f24

Added ability to retain log_group after service has been deleted

ae43ff2

Updated readme

83d3297

Guslington reviewed Dec 17, 2021

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Updated readme + Ability to retain log_group after service deleted #64

Updated readme + Ability to retain log_group after service deleted #64

Uh oh!

kyletbase2 commented Nov 22, 2021

Uh oh!

Guslington Dec 17, 2021

Uh oh!

kyletbase2 Mar 11, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Updated readme + Ability to retain log_group after service deleted #64

Are you sure you want to change the base?

Updated readme + Ability to retain log_group after service deleted #64

Uh oh!

Conversation

kyletbase2 commented Nov 22, 2021

Uh oh!

Guslington Dec 17, 2021

Choose a reason for hiding this comment

Uh oh!

kyletbase2 Mar 11, 2022

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants