Prashanna
Reputation: 1001
SNS published messages not reaching SQS
I've a encrypted SQS queue and SNS topic by custom managed KMS key. Currently I'm using a similar kind of SQS policy stated in the below link where it is working fine SQS Policy
But if i use the below SQS policy it's not working. I don't want to have Principal as '*' due to security reasons. Can someone explain me why is this happening
{
"Version":"2012-10-17",
"Statement":[
{
"Sid":"MySQSPolicy001",
"Effect":"Allow",
"Principal":{
"AWS": "arn:aws:iam::123456789012:root"
},
"Action":"sqs:SendMessage",
"Resource":"arn:aws:sqs:us-east-1:123456789012:MyQueue"
}
]
}
Upvotes: 1
Views: 1478
Answers (1)
Prashanna
Reputation: 1001
So if you've a condition with SNS arn in your queue policy when more than one topic needs to publish to same queue you might need to add the ARN again & again.
So the workaround will be the below policy.
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "Queue1_SendMessage",
"Effect": "Allow",
"Principal": {
"Service": "sns.amazonaws.com",
"AWS": "arn:aws:iam::1234567890:root"
},
"Action": [
"sqs:SendMessage",
"sqs:ReceiveMessage",
"sqs:DeleteMessage"
],
"Resource": "arn:aws:sqs:eu-central-1:1234567890:test-queue",
"Condition": {
"StringEquals": {
"aws:SourceAccount": "1234567890"
}
}
}
]
}
Upvotes: 1
Related Questions
- SNS topic not publishing to SQS
- SNS SQS - Not receiving messages that were pushed to queue from SNS topic
- AWS SQS not receiving SNS messages
- AWS SQS messages getting lost and not processed
- SNS and SQS access problem, no messages received
- Can't see/receive all messages from AWS SQS
- Wrong SQS AWS message when I'm subscribed from a SNS Topic
- Publishing messages from AWS SNS to SQS
- SQS does not receive messages posted through SNS
- Amazon SES -> SNS SQS notifications not working