in ecs-provider/ecs_provider/ecs_provider_stack.py [0:0]
def _create_vpce_service(self, allow_arn: str, load_balancer: elb.NetworkLoadBalancer) -> None:
"""Create the VPC Endpoint Service, which will allow the root account to create a VPC
Endpoint.
Note that this is setup so that the acceptence on the root (APIGW) account is not required.
Once the VPC Endpoint is created in the integration account, it's ready to use.
"""
return ec2.VpcEndpointService(
self,
"vpc-endpoint-service",
vpc_endpoint_service_load_balancers=[load_balancer],
acceptance_required=False,
whitelisted_principals=[iam.ArnPrincipal(allow_arn)],
)