glamorous-answer-86536
10/18/2023, 10:04 AMtask_role = aws.iam.Role(
"task-role",
inline_policies=[
aws.iam.RoleInlinePolicyArgs(
name="update-service",
policy=Output.all(
account_id=account_id,
cluster_arn=ecs_cluster.arn,
cluster_name=ecs_cluster.name,
ecs_service_name=ecs_service_name
).apply(
lambda args: json.dumps(
{
"Version": "2012-10-17",
"Statement": [
{
"Action": ["ecs:UpdateService"],
"Effect": "Allow",
"Condition": {
"ArnEquals": {
"ecs:cluster": args['cluster_arn']
}
},
"Resource": (
f"arn:aws:ecs:eu-central-1:{args['account_id']}:"
f"service/{args['cluster_name']}/{args['ecs_service_name']}"
),
}
]
}
)
),
)
],
)
The result for Resource is arn:aws:ecs:eu-central-1:account-id:service/cluster-name/arn:aws:ecs:eu-central-1:account-id:service/cluster-name/ecs-service-name
. Or am I doing somehting wrong here?