Update CodeBuild Role

Update CodeBuild Role

1. Access the IAM service:

• On the left menu, choose Roles.
• Search for codebuild.
• Select the codebuild role corresponding to your project.

2. Choose Add permissions, then Create inline policy.

3. Copy and paste the policy below into the Policy editor. Then scroll down and choose Next.

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "ecr-public:GetAuthorizationToken",
        "sts:GetServiceBearerToken",
        "ecr-public:BatchCheckLayerAvailability",
        "ecr-public:GetRepositoryPolicy",
        "ecr-public:DescribeRepositories",
        "ecr-public:DescribeRegistries",
        "ecr-public:DescribeImages",
        "ecr-public:DescribeImageTags",
        "ecr-public:GetRepositoryCatalogData",
        "ecr-public:GetRegistryCatalogData"
      ],
      "Resource": "*"
    }
  ]
}

4. In the Policy name field, enter FCJ_ECR_Public_Access. Then press Create policy.

5. Confirm that the policy has been added successfully.

6. Continue to choose Add permissions, then Attach policies.

7. Search for AmazonEC2ContainerRegistryFullAccess. Select and press Add permissions.

8. Confirm that the policy has been added successfully.