Channels
pulumi-ai
package-authoring
pulumi-cdk
oracle-cloud-infrastructure
learn-pulumi-events
linen
registry
built-with-pulumi
pulumi-cloud
contribex
testingtesting321
hacktoberfest
cloudengineering
yaml
pulumi-crosscode
content-share
finops
multi-language-hackathon
office-hours
workshops
blog-posts
localstack
welcome
gitlab
pulumi-kubernetes-operator
jobs
aws
pulumi-deployments
dotnet
golang
announcements
java
pulumiverse
python
install
getting-started
cloudengineering-support
testingtesting123
hackathon-03-19-2020
typescript
google-cloud
contribute
azure
kubernetes
docs
automation-api
status
general
Title
r
ripe-shampoo-80285
08/11/2021, 5:14 PMAnybody get an example for setting up cloudwatch logging for SNS success and failure delivery status?
g
great-sunset-355
08/11/2021, 5:48 PMAWS provifrt is based on terraform you can always lookup for terraform examples and convert them
https://github.com/cloudposse/terraform-aws-sns-cloudwatch-sns-alarms
r
ripe-shampoo-80285
08/11/2021, 6:14 PMThanks Jan, will take a look.
I ended up create the IAM role and specified the roles as part of SNS topic creation like this in golang:
topic, err := sns.NewTopic(ctx, snsTopicName, &sns.TopicArgs{
Policy: notificationPolicy,
SqsFailureFeedbackRoleArn: snsFeedbackRole.Arn,
SqsSuccessFeedbackRoleArn: snsFeedbackRole.Arn,
})
The IAM role with this policy:
{
"Version": "2012-10-17",
"Statement": [{
"Effect": "Allow",
"Action": [
"logs:CreateLogGroup",
"logs:CreateLogStream",
"logs:PutLogEvents",
"logs:PutMetricFilter",
"logs:PutRetentionPolicy"
],
"Resource": "*"
}]
}
Once I did that, the SNS delivery status logs shows up in the cloudwatch