src/components/SNSEventsQueue.ts

import * as aws from '@pulumi/aws'
import * as pulumi from '@pulumi/pulumi'

export interface SNSEventsQueueArgs extends Omit<aws.sqs.QueueArgs, 'name' | 'namePrefix'> {
  topic: aws.sns.Topic

  /**
   * string version of filter policy
   */
  filterPolicy?: string
}

/**
 * A custom SQS resource to subscribe to SNS events.
 */
export class SNSEventsQueue extends pulumi.ComponentResource {
  readonly queue: aws.sqs.Queue
  readonly topicSubscription: aws.sns.TopicSubscription
  readonly queuePolicy: aws.sqs.QueuePolicy

  constructor(name: string, args: SNSEventsQueueArgs, opts?: pulumi.ComponentResourceOptions) {
    super('aws:components:SNSEventsQueue', name, args, opts)
    const defaultParentOptions: pulumi.ResourceOptions = { parent: this }
    const { filterPolicy, topic, ...queueArgs } = args

    // Queue
    const queueName = name
    this.queue = new aws.sqs.Queue(
      queueName,
      {
        ...queueArgs,
        name: queueName
      },
      defaultParentOptions
    )

    // SNS - SQS Subscriptions
    const topicSubscriptionName = `${queueName}-topic-subscription`
    this.topicSubscription = new aws.sns.TopicSubscription(
      topicSubscriptionName,
      {
        endpoint: this.queue.arn,
        protocol: 'sqs',
        topic,
        rawMessageDelivery: true,
        ...(filterPolicy ? { filterPolicy } : {})
      },
      defaultParentOptions
    )

    const queuePermissionName = `${queueName}-topic-permission`
    this.queuePolicy = new aws.sqs.QueuePolicy(
      queuePermissionName,
      {
        queueUrl: this.queue.id,
        policy: pulumi.all([topic.arn, this.queue.arn]).apply(([topicArn, queueArn]) =>
          JSON.stringify({
            Version: '2012-10-17',
            Statement: [
              {
                Effect: 'Allow',
                Principal: '*',
                Action: 'SQS:SendMessage',
                Resource: [queueArn],
                Condition: {
                  ArnEquals: {
                    'aws:SourceArn': topicArn
                  }
                }
              }
            ]
          })
        )
      },
      defaultParentOptions
    )

    this.registerOutputs({ queue: this.queue })
  }
}