Updated policy principal

vivshrivastava · vivshrivastava · commit 734cc78c16af · 2021-12-21T08:34:34.000-05:00
diff --git a/boto3_sample/s3_event_notifications_crawler_setup.py b/boto3_sample/s3_event_notifications_crawler_setup.py
@@ -124,7 +124,7 @@ def set_sns_topic_policy(topic_arn, client, bucket_name):
               "Id": "s3-publish-to-sns",
               "Statement": [{
                   "Effect": "Allow",
-                  "Principal": { "AWS" : "*" },
+                  "Principal": { "AWS": "%s" },
                   "Action": [ "SNS:Publish" ],
                   "Resource": "%s",
                   "Condition": {
@@ -136,7 +136,7 @@ def set_sns_topic_policy(topic_arn, client, bucket_name):
                       }
                   }
               }]
-  }''' % (topic_arn, account_id, bucket_name)
+  }''' % (topic_arn, account_id,account_id,bucket_name)
         )
         return True
     except botocore.exceptions.ClientError as e:
@@ -194,7 +194,7 @@ def set_sqs_policy(queue_url, queue_arn, client, topic_arn):
                     {
                       "Sid": "AllowSNSPublish01",
                       "Effect": "Allow",
-                      "Principal": "*",
+                      "Principal": { "AWS": "%s" },
                       "Action": "SQS:SendMessage",
                       "Resource": "%s",
                       "Condition": {
@@ -204,7 +204,7 @@ def set_sqs_policy(queue_url, queue_arn, client, topic_arn):
                       }
                     }
                   ]
-}''' % (queue_arn, topic_arn)
+}''' % (account_id,queue_arn, topic_arn)
             }
         )
         return True

Original file line number	Diff line number	Diff line change
`@@ -124,7 +124,7 @@ def set_sns_topic_policy(topic_arn, client, bucket_name):`
`124`	`124`	`"Id": "s3-publish-to-sns",`
`125`	`125`	`"Statement": [{`
`126`	`126`	`"Effect": "Allow",`
`127`		`- "Principal": { "AWS" : "*" },`
	`127`	`+ "Principal": { "AWS": "%s" },`
`128`	`128`	`"Action": [ "SNS:Publish" ],`
`129`	`129`	`"Resource": "%s",`
`130`	`130`	`"Condition": {`
`@@ -136,7 +136,7 @@ def set_sns_topic_policy(topic_arn, client, bucket_name):`
`136`	`136`	`}`
`137`	`137`	`}`
`138`	`138`	`}]`
`139`		`- }''' % (topic_arn, account_id, bucket_name)`
	`139`	`+ }''' % (topic_arn, account_id,account_id,bucket_name)`
`140`	`140`	`)`
`141`	`141`	`return True`
`142`	`142`	`except botocore.exceptions.ClientError as e:`
`@@ -194,7 +194,7 @@ def set_sqs_policy(queue_url, queue_arn, client, topic_arn):`
`194`	`194`	`{`
`195`	`195`	`"Sid": "AllowSNSPublish01",`
`196`	`196`	`"Effect": "Allow",`
`197`		`- "Principal": "*",`
	`197`	`+ "Principal": { "AWS": "%s" },`
`198`	`198`	`"Action": "SQS:SendMessage",`
`199`	`199`	`"Resource": "%s",`
`200`	`200`	`"Condition": {`
`@@ -204,7 +204,7 @@ def set_sqs_policy(queue_url, queue_arn, client, topic_arn):`
`204`	`204`	`}`
`205`	`205`	`}`
`206`	`206`	`]`
`207`		`-}''' % (queue_arn, topic_arn)`
	`207`	`+}''' % (account_id,queue_arn, topic_arn)`
`208`	`208`	`}`
`209`	`209`	`)`
`210`	`210`	`return True`