From d84183b3170f75674ea582a3a0c44e0883972f20 Mon Sep 17 00:00:00 2001
From: Jacob Gillespie <jacobwgillespie@gmail.com>
Date: Thu, 5 Sep 2024 12:30:24 +0100
Subject: [PATCH] Allow permission to modify own ECS cluster

---
 main.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/main.tf b/main.tf
index 147a793..0e57277 100644
--- a/main.tf
+++ b/main.tf
@@ -353,7 +353,7 @@ resource "aws_iam_role" "cloud-agent" {
         },
 
         {
-          Action    = ["ecs:ListTasks", "ecs:DescribeTasks", "ecs:StopTask"],
+          Action    = ["ecs:*"],
           Effect    = "Allow",
           Resource  = ["*"],
           Condition = { ArnEquals = { "ecs:cluster" = aws_ecs_cluster.cloud-agent[0].arn } }