Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

testing dlq and dlq as source to lambda #17

Merged
merged 8 commits into from
Apr 4, 2021
Merged

testing dlq and dlq as source to lambda #17

merged 8 commits into from
Apr 4, 2021

Conversation

thakurrishabh
Copy link
Owner

No description provided.

@thakurrishabh
Copy link
Owner Author 

  "Type": "AWS::SQS::Queue",
  "Type": "AWS::SQS::QueuePolicy",
  "Type": "AWS::IAM::Role",
  "Type": "AWS::IAM::Policy",
  "Type": "AWS::Lambda::Function",
  "Type": "AWS::Lambda::EventSourceMapping",
  "Type": "AWS::Events::Rule",
  "Type": "AWS::Lambda::Permission",
  "Type": "AWS::Logs::LogGroup",
  "Type": "AWS::IAM::Policy",
  "Type": "Custom::CloudwatchLogResourcePolicy",
  "Type": "AWS::IAM::Role",
  "Type": "AWS::Lambda::Function",
  "Type": "AWS::CDK::Metadata",
  "Type": "String",
  "Type": "String",
  "Type": "String",
  "Type": "String",
  "Type": "String",
  "Type": "String",

@thakurrishabh
Copy link
Owner Author

Stack EventBridgeAwsCdkStack
IAM Statement Changes
┌───┬────────────────────────────────────────────────────────┬────────┬─────────────────────────────┬────────────────────────────────────────────────────────┬───────────┐
│ │ Resource │ Effect │ Action │ Principal │ Condition │
├───┼────────────────────────────────────────────────────────┼────────┼─────────────────────────────┼────────────────────────────────────────────────────────┼───────────┤
│ + │ ${AWS679f53fac002430cb0da5b7982bd2287/ServiceRole.Arn} │ Allow │ sts:AssumeRole │ Service:lambda.amazonaws.com │ │
├───┼────────────────────────────────────────────────────────┼────────┼─────────────────────────────┼────────────────────────────────────────────────────────┼───────────┤
│ + │ ${Queue.Arn} │ Allow │ sqs:SendMessage │ AWS:${ETL_job_func/ServiceRole} │ │
│ + │ ${Queue.Arn} │ Allow │ sqs:ChangeMessageVisibility │ AWS:${ETL_job_func/ServiceRole} │ │
│ │ │ │ sqs:DeleteMessage │ │ │
│ │ │ │ sqs:GetQueueAttributes │ │ │
│ │ │ │ sqs:GetQueueUrl │ │ │
│ │ │ │ sqs:ReceiveMessage │ │ │
├───┼────────────────────────────────────────────────────────┼────────┼─────────────────────────────┼────────────────────────────────────────────────────────┼───────────┤
│ + │ * │ Allow │ logs:PutResourcePolicy │ AWS:${AWS679f53fac002430cb0da5b7982bd2287/ServiceRole} │ │
│ + │ * │ Allow │ logs:DeleteResourcePolicy │ AWS:${AWS679f53fac002430cb0da5b7982bd2287/ServiceRole} │ │
└───┴────────────────────────────────────────────────────────┴────────┴─────────────────────────────┴────────────────────────────────────────────────────────┴───────────┘
IAM Policy Changes
┌───┬────────────────────────────────────────────────────┬────────────────────────────────────────────────────────────────────────────────┐
│ │ Resource │ Managed Policy ARN │
├───┼────────────────────────────────────────────────────┼────────────────────────────────────────────────────────────────────────────────┤
│ + │ ${AWS679f53fac002430cb0da5b7982bd2287/ServiceRole} │ arn:${AWS::Partition}:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole │
└───┴────────────────────────────────────────────────────┴────────────────────────────────────────────────────────────────────────────────┘
(NOTE: There may be security-related changes not in this list. See aws/aws-cdk#1299)

Parameters
[+] Parameter AssetParameters/a5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04d/S3Bucket AssetParametersa5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04dS3BucketDDD15B67: {"Type":"String","Description":"S3 bucket for asset "a5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04d""}
[+] Parameter AssetParameters/a5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04d/S3VersionKey AssetParametersa5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04dS3VersionKey76284988: {"Type":"String","Description":"S3 key for asset version "a5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04d""}
[+] Parameter AssetParameters/a5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04d/ArtifactHash AssetParametersa5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04dArtifactHashBC261AD6: {"Type":"String","Description":"Artifact hash for asset "a5a55f40f05c1031f30cc935c76b58b0b7dbc81e70845edf4ef615d6580ae04d""}

Resources
[+] AWS::IAM::Policy ETL_job_func/ServiceRole/DefaultPolicy ETLjobfuncServiceRoleDefaultPolicyCE38A619
[+] AWS::Lambda::EventSourceMapping ETL_job_func/SqsEventSource:EventBridgeAwsCdkStackQueue8F1E2D70 ETLjobfuncSqsEventSourceEventBridgeAwsCdkStackQueue8F1E2D709310E1ED
[+] AWS::Logs::LogGroup EventsLogGroup EventsLogGroupEB594EE7
[+] AWS::IAM::Policy EventsLogGroupPolicyEventBridgeAwsCdkStackRule3E55EE2D/CustomResourcePolicy EventsLogGroupPolicyEventBridgeAwsCdkStackRule3E55EE2DCustomResourcePolicy76B747D0
[+] Custom::CloudwatchLogResourcePolicy EventsLogGroupPolicyEventBridgeAwsCdkStackRule3E55EE2D/Resource EventsLogGroupPolicyEventBridgeAwsCdkStackRule3E55EE2D04DEF2BF
[+] AWS::IAM::Role AWS679f53fac002430cb0da5b7982bd2287/ServiceRole AWS679f53fac002430cb0da5b7982bd2287ServiceRoleC1EA0FF2
[+] AWS::Lambda::Function AWS679f53fac002430cb0da5b7982bd2287 AWS679f53fac002430cb0da5b7982bd22872D164C4C
[] AWS::Lambda::Function ETL_job_func ETLjobfunc185AD7F3
├─ [+] DeadLetterConfig
│ └─ {"TargetArn":{"Fn::GetAtt":["Queue4A7E3555","Arn"]}}
└─ [] DependsOn
└─ @@ -1,3 +1,4 @@
[ ] [
[+] "ETLjobfuncServiceRoleDefaultPolicyCE38A619",
[ ] "ETLjobfuncServiceRole52D1F558"
[ ] ]
[] AWS::Events::Rule Rule Rule4C995B7F
└─ [] Targets
└─ @@ -19,5 +19,23 @@
[ ] "MaximumEventAgeInSeconds": 7200,
[ ] "MaximumRetryAttempts": 2
[ ] }
[+] },
[+] {
[+] "Arn": {
[+] "Fn::Join": [
[+] "",
[+] [
[+] "arn:",
[+] {
[+] "Ref": "AWS::Partition"
[+] },
[+] ":logs:us-east-1:515184503796:log-group:",
[+] {
[+] "Ref": "EventsLogGroupEB594EE7"
[+] }
[+] ]
[+] ]
[+] },
[+] "Id": "Target1"
[ ] }
[ ] ]

@thakurrishabh thakurrishabh merged commit ead822d into master Apr 4, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@thakurrishabh