VPC endpoint use

[aerojam95]

Currently the VPC endpoints have been deployed, however, they are not being used by any of the services that deployed in the VPC which should using them. All the services below are used in this deployment and so need to change policies be it IAM, S3 bucket, KMS key policies, etc, to use these deployed endpoints. The following endpoints are deployed and should be used by their respective endpoints:

com.amazonaws.region.ssm                       - Secrets Management
com.amazonaws.region.ssmmessages               - Secrets Monitoring
com.amazonaws.region.ec2                       - EC2 Management
com.amazonaws.region.ec2messages               - EC2 Monitoring
com.amazonaws.region.kms                       - KMS Management
com.amazonaws.region.ecr.api                   - ECR API calls
com.amazonaws.region.ecr.dkr                   - ECR Docker Images
com.amazonaws.region.logs                      - For CloudWatch Logs
com.amazonaws.region.sts                       - If using AWS Fargate or IAM roles for service accounts
com.amazonaws.region.elasticloadbalancing      - If using Application Load Balancers
com.amazonaws.region.autoscaling               - If using Cluster Autoscaler
com.amazonaws.region.s3                        - Creates S3 Gateway