- Newest
- Most votes
- Most comments
Hi @Simon, You need to provide this as a trust policy for a App Runner instance role, then this new role would start showing up in the App Runner console
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Principal": { "Service": "tasks.apprunner.amazonaws.com" }, "Action": "sts:AssumeRole" } ] }
Once you have the new role, just make sure to assign the required permission to read data from SSM parameter store. Here is a blog that talks about this integration with a sample app that you can try it out - https://aws.amazon.com/blogs/containers/aws-app-runner-now-integrates-with-aws-secrets-manager-and-aws-systems-manager-parameter-store/. Hope this helps, let us know if you have any further questions. thanks
I didn't work out how to create the instance role that I needed using the web console. However, I was able to take the CloudFormation template from Hari's response and tweak it to fit my needs.
Relevant content
- asked 2 years ago
- asked a month ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 9 months ago
- AWS OFFICIALUpdated 6 months ago
Thanks for your reply @Hari. It didn't tell me how to an instance role using the web console, but budged me towards a solution.