Draft: Allow easier AWS authentication when using ECR for the Deploy-ECS template
Problem Context
Currently, the Deploy-ECS template uses the GitLab registry by default. The template allows switching to the ECR registry by setting the CI_TEMPLATE_REGISTRY_HOST
.
Using the ECR registry results in more complex authentication steps:
It requires allowing GitLab to authenticate against AWS and allowing AWS to authenticate against GitLab to pull the image from the registry.
Ideally, we can follow the Authenticate Registry -> Use DOCKER_AUTH_CONFIG and modify the before_script
for simpler authentication. However, changing the before_script
for the Deploy-ECS
template is not so straightforward... (?? we need to verify this ??)