Invalid ARN: arn: invalid prefix

omar-cloud · February 11, 2023, 4:11am

Hello All, i receive this error when running terraform apply

Error: creating ECS Task Definition (project_task): ClientException: Invalid arn syntax.
│
│   with module.ecs.aws_ecs_task_definition.project_task,
│   on modules/ecs/main.tf line 37, in resource "aws_ecs_task_definition" "project_task":
│   37: resource "aws_ecs_task_definition" "project_task" {
│

as seen from the main.tf i declared the execution rule

data "aws_ecr_repository" "project_ecr_repo" {
  name = "project-ecr-repo"
}

resource "aws_ecs_cluster" "project_cluster" {
  name = "project-cluster"
}

data "aws_iam_policy_document" "ecs_task_execution_role" {
  version = "2012-10-17"
  statement {
    sid = ""
    effect = "Allow"
    actions = ["sts:AssumeRole"]

    principals {
      type        = "Service"
      identifiers = ["ecs-tasks.amazonaws.com"]
    }
  }
}

# ECS task execution role
resource "aws_iam_role" "ecs_task_execution_role" {
  name               = "ecs_task_execution_role"
  assume_role_policy = "${data.aws_iam_policy_document.ecs_task_execution_role.json}"
}

# ECS task execution role policy attachment
resource "aws_iam_role_policy_attachment" "ecs_task_execution_role" {
  role       = "${aws_iam_role.ecs_task_execution_role.name}"
  policy_arn = "arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy"
}



resource "aws_ecs_task_definition" "project_task" {
  family = "project_task"
  container_definitions = file("container_def.json")
  requires_compatibilities = ["FARGATE"]
  network_mode             = "awsvpc"
  memory                   = 512
  cpu                      = 256
  execution_role_arn       = aws_iam_role.ecs_task_execution_role.arn
}

resource "aws_ecs_service" "project_service" {
  name            = "project-service"
  cluster         = aws_ecs_cluster.project_cluster.id
  task_definition = aws_ecs_task_definition.project_task.arn
  launch_type     = "FARGATE"
  desired_count   = 2

  network_configuration {
    subnets          = var.vpc.public_subnets
    assign_public_ip = true
  }
}

and here is my container definition file if needed

[
        {
            "name": "backend_feed",
            "image": "639483503131.dkr.ecr.us-east-1.amazonaws.com/backend-feed:latest",
            "cpu": 256,
            "memory": 512,
            "portMappings": [
                {
                    "containerPort": 8080,
                    "hostPort": 8080,
                    "protocol": "tcp"
                }
            ],
            "environmentFiles": [
                {
                    "value": "https://myawsbucket-639483503131.s3.amazonaws.com/env_vars.json",
                    "type": "s3"
                }
            ]
        }
]

appreciate your help

Thank you

Topic		Replies	Views
Unable to assume role and validate the specified targetGroupArn AWS	0	820	September 5, 2022
Invalid IAM Instance Profile name AWS	0	2226	July 19, 2020
Invalid IAM Instance Profile AWS	7	5867	July 22, 2020
Ecs ec2 server based - error target type instance, which is incompatible with the awsvpc Terraform	1	1355	March 24, 2023
AWS ECS scheduled task module Terraform	0	2625	March 23, 2020

Invalid ARN: arn: invalid prefix

Related topics