Search code examples
amazon-web-servicesamazon-s3amazon-ses

How do i set AWS S3 with AWS SNS for upload event?

I want to use event notification which is one of the basic functions of AWS S3 and AWS SNS. Setting the event in S3 raises the following warning.

“Unable to validate the following destination configurations. Permissions on the destination topic do not allow S3 to publish notifications from this bucket”

So I go to the S3 policy generator.

 {
  "Id": "Policy1571877681758",
  "Version": "2012-10-17",
  "Statement": [
    {
      "Sid": "Stmt1571877676943",
      "Action": "sns:*",
      "Effect": "Allow",
      "Resource": “mysnsarn”,
      "Principal": "*"
    }
  ]
}

but there’s some error like this “Policy has invalid action”

i don’t know what to do..

Solution

  • You have multiple problems in the json:

    1. The quotes in resource value is wrong
    2. Principal filed is not allowed (as this is a role policy)
    3. Leading spaces in json

    A corrected version of your policy, which is reviewd to be good in IAM looks like this:

    { 
   "Id":"Policy1571877681758",
   "Version":"2012-10-17",
   "Statement":[ 
      { 
         "Sid":"Stmt1571877676943",
         "Action":"sns:*",
         "Effect":"Allow",
         "Resource":"yourSNSARNHere"
      }
   ]
}