larstobi
commented
2 years ago I see no furhter activity on this one, so I'm closing it. Feel free to reopen if it's still valid. Thanks! :-)
Closed tcerda95 closed 2 years ago
larstobi
commented
2 years ago I see no furhter activity on this one, so I'm closing it. Feel free to reopen if it's still valid. Thanks! :-)
Add support for reading ssm parameter store values. I have updated the iam policy for reading the container secret as defined here https://aws.amazon.com/es/premiumsupport/knowledge-center/ecs-data-security-container-task/ . Basically the action
ssm:GetParametershas been added totask_container_secretspolicy.This would allow reading plain and secure strings stored in SSM Parameter Store. This opens the possibility to read non-sensitive, plain text configuration values from SSM and secured values from Secrets Manager.
I have tested this and verified that the role was correctly created with the policy as well as that it is able to read SSM parameters along with Secrects Manager parameters defined in the
task_container_secrecsinput variable.