Overview Initializer Pattern Construct Props Pattern Properties Default settings Architecture GitHub

aws-events-rule-sns

Some of our early constructs don’t meet the naming standards that evolved for the library. We are releasing completely feature compatible versions with corrected names. The underlying implementation code is the same regardless of whether you deploy the construct using the old or new name. We will support both names for all 1.x releases, but in 2.x we will only publish the correctly named constructs.

Note: This construct has been deprecated and is superseded by the aws-eventbridge-sns construct.

Note: To ensure proper functionality, the AWS Solutions Constructs packages and AWS CDK packages in your project must be the same version.

Language	Package
Python	`aws_solutions_constructs.aws_events_rule_sns`
Typescript	`@aws-solutions-constructs/aws-events-rule-sns`
Java	`software.amazon.awsconstructs.services.eventsrulesns`

Overview

This pattern implements an Amazon CloudWatch Events rule connected to an Amazon SNS topic.

Here is a minimal deployable pattern definition:



import { Duration } from '@aws-cdk/core';
import * as events from '@aws-cdk/aws-events';
import * as iam from '@aws-cdk/aws-iam';
import { EventsRuleToSnsProps, EventsRuleToSns } from "@aws-solutions-constructs/aws-events-rule-sns";

const props: EventsRuleToSnsProps = {
    eventRuleProps: {
      schedule: events.Schedule.rate(Duration.minutes(5)),
    }
};

const constructStack = new EventsRuleToSns(this, 'test-construct', props);

// Grant yourself permissions to use the Customer Managed KMS Key
const policyStatement = new iam.PolicyStatement({
    actions: ["kms:Encrypt", "kms:Decrypt"],
    effect: iam.Effect.ALLOW,
    principals: [ new iam.AccountRootPrincipal() ],
    resources: [ "*" ]
});

constructStack.encryptionKey?.addToResourcePolicy(policyStatement);

Initializer



new EventsRuleToSNS(scope: Construct, id: string, props: EventsRuleToSNSProps);

Parameters

scope Construct
id string
props EventsRuleToSnsProps

Pattern Construct Props

Name	Type	Description
eventRuleProps	`events.RuleProps`	User-provided properties to override the default properties for the CloudWatch Events rule.
existingTopicObj?	`sns.Topic`	Existing instance of SNS Topic object, providing both this and `topicProps` will cause an error.
topicProps?	`sns.TopicProps`	Optional user-provided properties to override the default properties for the SNS topic. Ignored if an `existingTopicObj` is provided.
existingEventBusInterface?	`events.IEventBus`	Optional user-provided custom EventBus for construct to use. Providing both this and `eventBusProps` results an error.
eventBusProps?	`events.EventBusProps`	Optional user-provided properties to override the default properties when creating a custom EventBus. Setting this value to `{}` will create a custom EventBus using all default properties. If neither this nor `existingEventBusInterface` is provided the construct will use the `default` EventBus. Providing both this and `existingEventBusInterface` results in an error.
enableEncryptionWithCustomerManagedKey?	`boolean`	Whether to use a customer-managed encryption key, either managed by this CDK app or imported. If importing an encryption key, it must be specified in the `encryptionKey` property for this construct.
encryptionKey?	`kms.Key`	An optional, existing encryption key to be used instead of the default encryption key.
encryptionKeyProps?	`kms.KeyProps`	Optional user-provided properties to override the default properties for the encryption key.

Pattern Properties

Name	Type	Description
eventBus?	`events.IEventBus`	Returns an instance of the Event bus created by the pattern.
eventsRule	`events.Rule`	Returns an instance of the Events rule created by the pattern.
snsTopic	`sns.Topic`	Returns an instance of the SNS topic created by the pattern.
encryptionKey	`kms.Key`	Returns an instance of the encryption key created by the pattern.

Default settings

Out-of-the-box implementation of this pattern without any overrides will set the following defaults:

Amazon CloudWatch Events rule

Grant least privilege permissions to CloudWatch Events to publish to the SNS topic.

Configure least privilege access permissions for SNS topic.
Enable server-side encryption for SNS topic using customer-managed AWS KMS key.
Enforce encryption of data in transit.

Architecture

GitHub

To view the code for this pattern, create/view issues and pull requests, and more:
	@aws-solutions-constructs/aws-events-rule-sns

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

aws-eventbridge-lambda

aws-eventbridge-sns