Default topic / queue access policy #1756
codrinandronic
started this conversation in
General
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hello,
I noticed that AWS resources created automatically by JustSaying (like topics or queues) have public access. Here is an example of a default policy:
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "aa21e7f79762474297ad3305eca9994f",
"Effect": "Allow",
"Principal": {
"AWS": ""
},
"Action": "sqs:SendMessage",
"Resource": "arn:aws:sqs:eu-west-1:123:queue-name",
"Condition": {
"ArnLike": {
"aws:SourceArn": "arn:aws:sns:eu-west-1:123:"
}
}
}
I would like JustSaying to still create resources automatically but to somehow set a more restrictive access policy (the principal to be a specific service or AWS account and add more conditions). Is there a way to do this?
Thank you.
Beta Was this translation helpful? Give feedback.
All reactions