From 5169891e74d9652e377161109953e4161730efd5 Mon Sep 17 00:00:00 2001
From: Kacper Zontek <59336383+Jikan7@users.noreply.github.com>
Date: Tue, 23 Apr 2024 14:38:39 +0200
Subject: [PATCH] add ':*' for task definition (#27)

---
 modules/service/main.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/service/main.tf b/modules/service/main.tf
index b39f84d..d85b812 100644
--- a/modules/service/main.tf
+++ b/modules/service/main.tf
@@ -562,7 +562,7 @@ data "aws_iam_policy_document" "run_task" {
     actions = ["ecs:RunTask"]
 
     resources = [
-      "arn:aws:ecs:${data.aws_region.this.id}:${data.aws_caller_identity.this.id}:task-definition/${random_id.prefix.hex}-${each.key}"
+      "arn:aws:ecs:${data.aws_region.this.id}:${data.aws_caller_identity.this.id}:task-definition/${random_id.prefix.hex}-${each.key}:*"
     ]
   }
 }