- Newest
- Most votes
- Most comments
Hello,
You will need to provide an Instance Role during the App Runner service creation. The instance role is an optional role that App Runner uses to provide permissions to AWS API actions that your App Runner service would like to make.
Before creating the App Runner service, create an IAM role with the required custom or managed IAM policies and attach the below trust relationship to it.
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Service": "tasks.apprunner.amazonaws.com"
},
"Action": "sts:AssumeRole"
}
]
}
After the IAM role is created and the trust-relationship added, specify this IAM role as the Instance Role during the AppRunner service creation. Please refer this document for more info on how to use the App Runner Instance Role.
If you are using the AWS SDK to perform AWS API calls, the SDK will use the credentials provided by your Instance Role and perform the required AWS API calls.
Relevant content
- asked 2 years ago
- asked 10 days ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 9 months ago