This module creates following resources.
aws_ecr_registry_policy
(optional)aws_ecr_replication_configuration
(optional)aws_ecr_pull_through_cache_rule
(optional)aws_ecr_registry_scanning_configuration
Name | Version |
---|---|
terraform | >= 1.5 |
aws | >= 4.10 |
Name | Version |
---|---|
aws | 5.19.0 |
No modules.
Name | Type |
---|---|
aws_ecr_pull_through_cache_rule.this | resource |
aws_ecr_registry_policy.this | resource |
aws_ecr_registry_scanning_configuration.this | resource |
aws_ecr_replication_configuration.this | resource |
aws_caller_identity.this | data source |
aws_iam_policy_document.pull_through_cache | data source |
aws_iam_policy_document.replication | data source |
aws_iam_policy_document.this | data source |
aws_region.this | data source |
Name | Description | Type | Default | Required |
---|---|---|---|---|
policy | (Optional) The policy document for ECR registry. This is a JSON formatted string. | string |
null |
no |
pull_through_cache_policies | (Optional) A list of ECR Registry Policies for Pull Through Cache. Each value of pull_through_cache_policies as defined below.(Required) iam_entities - Specify one or more IAM principals to grant permission. Support the ARN of IAM entities, or AWS account ID.(Required) allow_create_repository - Need to create target repositories if allow_create_repository is false.(Required) repositories - A list of target repositories. Support glob expressions for repositories like * . |
list(object({ |
[] |
no |
pull_through_cache_rules | (Optional) A list of Pull Through Cache Rules for ECR registry. A pull_through_cache_rules block as defined below.(Required) upstream_url - The registry URL of the upstream public registry to use as the source.(Optional) namespace - The repository name prefix to use when caching images from the source registry. Default value is used if not provided. |
list(any) |
[] |
no |
replication_destinations | (Optional) A list of destinations for ECR registry replication. registry_id is the account ID of the destination registry to replicate to. region is required to replicate to. |
list(object({ |
[] |
no |
replication_policies | (Optional) A list of ECR Registry Policies for replication. account_id is source AWS account for replication. If allow_create_repository is false, you need to create repositories with the same name whithin your registry. repositories is a list of target repositories. Support glob expressions for repositories like * . |
list(object({ |
[] |
no |
scanning_continuous_filters | (Optional) A list of repository filter to scan continuous. Wildcard character is allowed. | list(string) |
[] |
no |
scanning_on_push_filters | (Optional) A list of repository filter to scan on push. Wildcard character is allowed. | list(string) |
[] |
no |
scanning_type | (Optional) The scanning type to set for the registry. Can be either ENHANCED or BASIC . |
string |
"BASIC" |
no |
Name | Description |
---|---|
id | The ID of the registry. |
name | The name of the registry. |
policy | The registry policy. |
pull_through_cache_rules | A list of Pull Through Cache Rules for ECR registry. |
replication_destinations | A list of destinations for ECR registry replication. |
scanning_continuous_filters | A list of repository filter to scan continuous. |
scanning_on_push_filters | A list of repository filter to scan on push. |
scanning_type | The scanning type for the registry. |