Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Missing argument in Iot Core Rule s3 action #19099

Closed
Miguel-KD opened this issue Apr 24, 2021 · 2 comments · Fixed by #24395
Closed

Missing argument in Iot Core Rule s3 action #19099

Miguel-KD opened this issue Apr 24, 2021 · 2 comments · Fixed by #24395
Labels
enhancement Requests to existing resources that expand the functionality or scope. service/iot Issues and PRs that pertain to the iot service.

Comments

@Miguel-KD
Copy link

Miguel-KD commented Apr 24, 2021
edited by ewbankkit
Loading

Hi Everyone,
There is a missing argument available in the AWS client that is not available in the AWS console and neither in the terraform s3 Action and it is needed for things like IoT core s3 action cross accounts.
I refer to the section "cannedAcl" with possible values:

  • private
  • public-read
  • public-read-write
  • aws-exec-read
  • authenticated-read
  • bucket-owner-read
  • bucket-owner-full-control
  • log-delivery-write

https://awscli.amazonaws.com/v2/documentation/api/latest/reference/iot/create-topic-rule.html
https://docs.aws.amazon.com/AmazonS3/latest/userguide/acl-overview.html#canned-acl
Example of Iot core rule payload

{
        "sql": "SELECT * FROM 'foo/#'",
        "actions": [
            {
                "s3": {
                    "roleArn": "arn:aws:iam::113683948677:role/RoleFooS3Staging",
                    "bucketName": "staging-foo-test-metrics",
                    "key": "${topic()}/${timestamp()}.json",
                    "cannedAcl": "bucket-owner-full-control"
                }
            }
        ]
    }
}
@github-actions github-actions bot added the needs-triage Waiting for first response or review from a maintainer. label Apr 24, 2021
@Miguel-KD
Copy link
Author

Also checked that the aws-sdk-go allows it https://raw.githubusercontent.com/aws/aws-sdk-go/main/service/iot/api.go look for cannedAcl

@ewbankkit ewbankkit added service/iot Issues and PRs that pertain to the iot service. enhancement Requests to existing resources that expand the functionality or scope. and removed needs-triage Waiting for first response or review from a maintainer. labels Apr 25, 2021
@nikhil-goenka nikhil-goenka mentioned this issue Apr 30, 2021
Closed
@ewbankkit ewbankkit mentioned this issue May 5, 2022
Merged
@github-actions
Copy link

github-actions bot commented Jun 5, 2022

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.
If you have found a problem that seems similar to this, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Jun 5, 2022
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
enhancement Requests to existing resources that expand the functionality or scope. service/iot Issues and PRs that pertain to the iot service.
Projects
None yet
Milestone
No milestone
2 participants
@ewbankkit @Miguel-KD