Terraform-provider-aws: Aws_inspector_assessment_template ability to send findings to SNS topic.

Created on 13 Jun 2017  ·  8Comments  ·  Source: hashicorp/terraform-provider-aws

_This issue was originally opened by @reliam as hashicorp/terraform#15238. It was migrated here as part of the provider split. The original body of the issue is below._

Hello!

When configuring AWS Inspector with Terraform, I noticed the feature to send findings to SNS is unavailable. Has this yet to make its way into terraform?

Thank you for any insight into this issue!

Terraform Version

➜ terraform --version
Terraform v0.9.8

Affected Resource(s)

  • aws_inspector_assessment_template

Terraform Configuration Files

Debug Output

Panic Output

Expected Behavior

Ability to configure Inspector to send findings to a SNS topic

Actual Behavior

Feature currently unavailable

Steps to Reproduce

Login to AWS Console > Inspector > Assessment Templates
Select an assessment template > SNS Topics

Per https://www.terraform.io/docs/providers/aws/r/inspector_resource_group.html, the argument to set an SNS topic is unavailable.

Important Factoids

The use case is to have Inspector send its findings to SNS, which is subscribed to by a Lambda function that parses, normalizes and sends data to a log aggregator.

References

enhancement servicinspector
Source
picture hashibot
👍27

Most helpful comment

submitted PR terraform-providers/terraform-provider-aws#12261 . I'd appreciate if you thumb'd it up for visibility 👍

picture fedecz on 5 Mar 2020
👍11

All 8 comments

I believe this functionality is lacking as well.

thomasbiddle picture thomasbiddle on 7 Sep 2017

Any tentative date to enhance "inspector_assessment_template" to support SNS ?

rajholla picture rajholla on 2 Nov 2017

Are there any plans to address this one ?

Constantin07 picture Constantin07 on 13 Sep 2019

Can't believe this has been open since June 2017...

e-moshaya picture e-moshaya on 14 Oct 2019
👍5

The corresponding CLI calls for template creation don't actually expose a way to do this.
The way it's handled is by a call to subscribe-to-event which would turn this issue into one requiring the creation of a new resource instead of just modifying an existing one.

FnTm picture FnTm on 22 Jan 2020

Just to add a bit more to this - it looks like unsubscribe-from-event is the opposite of subscribe-to-event. This should be a fairly straightforward thing to implement. I don't think I'll have the time to do it myself in the next 2-3 months, but I might try to find some afterwards if no-one else starts addressing this.

FnTm picture FnTm on 27 Jan 2020

I think I've got it working, submitting a PR shortly

fedecz picture fedecz on 4 Mar 2020
👍1

submitted PR terraform-providers/terraform-provider-aws#12261 . I'd appreciate if you thumb'd it up for visibility 👍

fedecz picture fedecz on 5 Mar 2020
👍11
Was this page helpful?
0 / 5 - 0 ratings

Related issues

hashibot picture hashibot  ·  3Comments
andywirv picture andywirv  ·  3Comments
ghost picture ghost  ·  3Comments
reedloden picture reedloden  ·  3Comments
hashibot picture hashibot  ·  3Comments