miguelmota/codebuild_notes.txt

## codebuild_notes.txt
- Need to add pull/push action permissions in ECR repo and use principal `codebuild.amazonaws.com` "SidCodeBuildAccess".
- Need to add policy with `ecr:GetAuthorizationToken` to code build role (AmazonECSTaskExecutionRolePolicy)
- Move "AWS-CodePipeline-Service" and "AWSServiceRoleForECS" entities to selected IAM entities.
- Need to have a `buildspec.yml` in repo root and set env vars in code build project settings.
- Need to use env docker image managed by CodeBuild.
- Need to allow CodeBuild to modify default role.
	- Need to add pull/push action permissions in ECR repo and use principal `codebuild.amazonaws.com` "SidCodeBuildAccess".
	- Need to add policy with `ecr:GetAuthorizationToken` to code build role (AmazonECSTaskExecutionRolePolicy)
	- Move "AWS-CodePipeline-Service" and "AWSServiceRoleForECS" entities to selected IAM entities.
	- Need to have a `buildspec.yml` in repo root and set env vars in code build project settings.
	- Need to use env docker image managed by CodeBuild.
	- Need to allow CodeBuild to modify default role.