Add rack instance security group param

[william-richard]

We would like to start using convox, but would like to have tight control over the security groups of the ecs instances. This change allows you to override the default security group, with one managed outside of convox's stack.

I have tested it with one of our internal apps - the only issue I ran into is you need to explicitly allow traffic from the convox app within the security group. As long as you have those rules, it works well.

[codecov]

Codecov Report

Merging #2271 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##           master    #2271   +/-   ##
=======================================
  Coverage   29.19%   29.19%           
=======================================
  Files         144      144           
  Lines       18765    18765           
=======================================
  Hits         5478     5478           
  Misses      12810    12810           
  Partials      477      477

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update b688ad8...91e292e. Read the comment docs.

[mattmanning]

Security Group customization

[MiguelMoll]

@william-richard Could you rebase on master so we could move this PR forward. Thanks!

[william-richard]

Hi @MiguelMoll - I just rebased. Let me know if there's anything else I can do 😄