-
Notifications
You must be signed in to change notification settings - Fork 0
Configuration to create a load balancer with your service
Komalis edited this page Apr 3, 2025
·
3 revisions
metadata:
appname: "helloworld2"
role:
managed_policies: []
statements:
- sid: "ssmactions"
resources: ["*"]
actions: ["ssmmessages:CreateControlChannel", "ssmmessages:CreateDataChannel", "ssmmessages:OpenControlChannel", "ssmmessages:OpenDataChannel", "secretsmanager:*"]
effect: "Allow"
execution_role:
managed_policies: ["service-role/AmazonECSTaskExecutionRolePolicy", "AmazonEC2ContainerRegistryReadOnly"]
statements:
- sid: "secretmanageractions"
resources: ["*"]
actions: ["secretsmanager:GetSecretValue"]
effect: "Allow"
- sid: "s3actions"
resources: ["*"]
actions: ["s3:*"]
effect: "Allow"
load_balancer:
subnets: ["subnet-xxxxxxx", "subnet-yyyyyyyyy", "subnet-zzzzzzzz"]
security_group_rules:
egress:
- name: cosmical-britney
port: -1
cidr: 192.168.1.1/32
ingress:
- name: sheep-of-power
port: -1
prefix_list: pl-xxxxxxx
listener_port: 8000
target_group_port: 8080
task_definition:
resources:
limits:
cpu: 2
memory: 4096
containers:
- name: helloworld
image: public.ecr.aws/docker/library/python:3.12-bookworm
user: root
#tty: true
command: "python -m http.server 8080"
ports:
- "8080:8080"
resources:
limits:
cpu: 1
memory: 2048
volumes:
- "./easyecs:/root/easyecs"
- "./ecs.yml:/root/ecs.yml"
port_forward:
- "8000:8000"
env: []
secrets: []