bruceharrison1984/ecs-prometheus-task-role.json

## ecs-prometheus-task-role.json
{
    "Statement": [
        {
            "Action": [
                "ecs:List*",
                "ecs:Describe*"
            ],
            "Effect": "Allow",
            "Resource": [
                "arn:aws:ecs:<region>:<account-id>:cluster/<ecs-cluster-name>",
                "arn:aws:ecs:<region>:<account-id>:task/<ecs-cluster-name>/*"
            ]
        },
        {
            "Action": [
                "ecs:ListTasks",
                "ecs:DescribeTaskDefinition"
            ],
            "Effect": "Allow",
            "Resource": "*"
        },
        {
            "Action": [
                "s3:GetObject",
                "s3:ListBucket"
            ],
            "Effect": "Allow",
            "Resource": [
                "arn:aws:s3:::<s3-bucket-name>",
                "arn:aws:s3:::<s3-bucket-name>/*"
            ]
        },
        {
            "Action": [
                "aps:RemoteWrite"
            ],
            "Effect": "Allow",
            "Resource": "<AMP-resource-arn>"
        }
    ],
    "Version": "2012-10-17"
}
	{
	"Statement": [
	{
	"Action": [
	"ecs:List*",
	"ecs:Describe*"
	],
	"Effect": "Allow",
	"Resource": [
	"arn:aws:ecs:<region>:<account-id>:cluster/<ecs-cluster-name>",
	"arn:aws:ecs:<region>:<account-id>:task/<ecs-cluster-name>/*"
	]
	},
	{
	"Action": [
	"ecs:ListTasks",
	"ecs:DescribeTaskDefinition"
	],
	"Effect": "Allow",
	"Resource": "*"
	},
	{
	"Action": [
	"s3:GetObject",
	"s3:ListBucket"
	],
	"Effect": "Allow",
	"Resource": [
	"arn:aws:s3:::<s3-bucket-name>",
	"arn:aws:s3:::<s3-bucket-name>/*"
	]
	},
	{
	"Action": [
	"aps:RemoteWrite"
	],
	"Effect": "Allow",
	"Resource": "<AMP-resource-arn>"
	}
	],
	"Version": "2012-10-17"
	}