AWS::ECR::RegistryPolicy

ECR RegistryPolicy

The AWS::ECR::RegistryPolicy resource creates or updates the permissions policy for a private registry. A private registry policy is used to specify permissions for another AWS-account and is used when configuring cross-account replication. For more information, see [Registry permissions](https://docs.aws.amazon.com/AmazonECR/latest/userguide/registry-permissions.html) in the *Amazon Elastic Container Registry User Guide*.

Properties

1 configurable property. 1 required. Click a row to see details.

Filter:

Property	Type	Flags
`PolicyText`	`object`	Required

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

Attribute	Type	Description
`RegistryId`	`string`	-

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml

AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::ECR::RegistryPolicy

Resources:
  MyResource:
    Type: AWS::ECR::RegistryPolicy
    Properties:
      PolicyText: {}

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

ecr:GetRegistryPolicyecr:PutRegistryPolicy

read

ecr:GetRegistryPolicy

list

ecr:GetRegistryPolicy

update

ecr:GetRegistryPolicyecr:PutRegistryPolicy

delete

ecr:DeleteRegistryPolicy

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServiceECR

Properties2

Required1

TaggingNot supported

Primary IDRegistryId

Supported Operations

CreateReadListUpdateDelete

Related Resources

External Links

AWS Documentation