40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
|
# File 'lib/ufo/iam_role/builder.rb', line 40
def resource(policies, managed_policy_arns)
properties = {
AssumeRolePolicyDocument: {
Version: "2012-10-17",
Statement: [
{
Effect: "Allow",
Principal: {
Service: "ecs-tasks.amazonaws.com"
},
Action: "sts:AssumeRole"
}
]
},
}
properties[:Policies] = policies if policies
properties[:ManagedPolicyArns] = managed_policy_arns if managed_policy_arns
attrs = {
Type: "AWS::IAM::Role",
Properties: properties
}
attrs.deep_stringify_keys
end
|