EcrRepository

---

Resource Icon

Resource Overview

Amazon Elastic Container Registry (Amazon ECR) is a secure, scalable, and reliable AWS-managed container image registry service. Amazon ECR supports private repositories with resource-based permissions using AWS IAM, allowing designated users or Amazon EC2 instances to access container repositories and images. You can push, pull, and manage Docker images, Open Container Initiative (OCI) images, and OCI-compatible artifacts using your preferred CLI.

Associated Resources

Parent Resources

• Region

Resource Setting Values

Basic Settings

• image_tag_mutability : Repository tag mutability setting - IMMUTABLE, MUTABLE
• scan_on_push : Whether images are scanned after being pushed to the repository - true, false
• encryption_type : Encryption type used for the repository - KMS, AES256
• kms_key_name : ARN name of the KMS key to use

Policy (policy)

• policy.effect : Whether the policy statement allows or denies access - Allow, Deny
• policy.principal_arn : ARN of the principal to which the policy is applied
• policy.enabled_not_actions : Whether to exclude the specified actions - true, false
• policy.actions : List of actions to specify - ecr:BatchCheckLayerAvailability, ecr:BatchDeleteImage, ecr:BatchGetImage, ecr:CompleteLayerUpload, ecr:DeleteLifecyclePolicy, ecr:DeleteRepository, ecr:DeleteRepositoryPolicy, ecr:DescribeImages, ecr:DescribeRepositories, ecr:GetDownloadUrlForLayer, ecr:GetLifecyclePolicy, ecr:GetLifecyclePolicyPreview, ecr:GetRepositoryPolicy, ecr:InitiateLayerUpload, ecr:ListImages, ecr:PutImage, ecr:PutLifecyclePolicy, ecr:SetRepositoryPolicy, ecr:StartLifecyclePolicyPreview, ecr:UploadLayerPart

Tags

• tag : Tags used to categorize the resource

---

References

• Amazon Elastic Container Registry(AWS)
• Amazon Elastic Container Registry Pricing(AWS)
• aws_ecr_repository(Terraform)