s3-notification-relay

Example

module "lacework_s3_notification_relay" {
  source = "github.com/alannix-lw/s3-notification-relay"

  s3_bucket_arn = "arn:aws:s3:::cloudtrail-bucket-1234567890"
  sns_topic_arn = "arn:aws:sns:us-east-1:132456789012:lacework-ct-sns-12345678"
}

Providers

Name Version
archive n/a
aws n/a
random n/a

Resources

Name Type
aws_cloudwatch_log_group.s3_notification_relay_lambda resource
aws_iam_role.s3_notification_relay resource
aws_lambda_function.s3_notification_relay resource
aws_lambda_permission.s3_notification_relay_notify resource
aws_s3_bucket_notification.s3_notification_relay resource
random_id.uniq resource
archive_file.s3_notification_relay_lambda data source
aws_iam_policy_document.s3_notification_relay_assume data source
aws_iam_policy_document.s3_notification_relay_sns data source

Inputs

Name Description Type Default Required
prefix The prefix that will be use at the beginning of every generated resource string "lacework" no
s3_bucket_arn The S3 bucket ARN is required when setting use_existing_cloudtrail to true string n/a yes
s3_notification_lambda_log_retention The number of days in which to retain logs for the s3 notification lambda number 30 no
s3_notification_lambda_name The name for the Lambda function used for the S3 notification relay string "" no
s3_notification_lambda_timeout The execution timeout for the Lambda function used for the S3 notification relay number 3 no
s3_notification_log_prefix The object prefix for which to create S3 notifications string "AWSLogs/" no
s3_notification_role_name The name for the IAM Role used for the S3 notification relay Lambda function string "" no
sns_topic_arn The SNS topic ARN string n/a yes