Amazon SNS Connector
Manage topics, subscriptions, and messages in Amazon SNS.
Connections
AWS Role ARN
Connect to AWS using an assumed role
AWS IAM role assumption enables secure, temporary access to Amazon SNS resources without embedding long-term credentials. This authentication method uses an IAM user's access key pair to assume an IAM role with specific SNS permissions.
Prerequisites
- An active AWS account
- IAM permissions to create users, access keys, and roles
Create IAM User and Access Key
- Sign in to the AWS Console and navigate to Identity and Access Management (IAM)
- Select Users from the left sidebar
- Select Create User
- Provide a User name and optionally enable AWS Management Console access
- Complete the user creation process
- From the user list, select the newly created user
- Copy the ARN (Amazon Resource Name) from the summary section - this will be needed for the role trust policy
- Navigate to the Security credentials tab
- Under Access Keys, select Create access key
- Select Third-party service as the access key type
- Select Next, add an optional description tag, then select Create access key
- Copy both the Access Key ID and Secret Access Key for later use
Secure Storage Required
The Secret Access Key is only shown once during creation. Store it securely as it cannot be retrieved later.
Create IAM Role with Trust Policy
- In the IAM console, select Roles from the left sidebar
- Select Create Role
- For Trusted entity type, select Custom trust policy
- Replace the default policy with the following trust policy statement, substituting the actual user ARN copied from the previous section:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::123456789012:user/YourUserName"
},
"Action": "sts:AssumeRole"
}
]
}
- Select Next to proceed to permissions
- Under Permissions policies, search for and attach AmazonSNSFullAccess or create a custom policy with specific SNS permissions
- Select Next and provide a Role name and optional description
- Review the configuration and select Create Role
- From the roles list, select the newly created role
- Copy the Role ARN from the summary section
Configure the Connection
- Enter the Access Key ID from the IAM user into the connection configuration
- Enter the Secret Access Key from the IAM user into the connection configuration
- Enter the Role ARN from the IAM role into the connection configuration
The connection will use the IAM user credentials to assume the specified role when accessing Amazon SNS resources.
Required Permissions
The IAM role must have appropriate Amazon SNS permissions attached via IAM policies.
Common required permissions include:
sns:Publish- Send messages to topicssns:Subscribe- Subscribe endpoints to topicssns:CreateTopic- Create new SNS topicssns:DeleteTopic- Delete SNS topicssns:ListTopics- List available topicssns:GetTopicAttributes- Retrieve topic detailssns:SetTopicAttributes- Modify topic settings
For production use, consider creating a custom IAM policy with least-privilege permissions instead of using AmazonSNSFullAccess.
Refer to the Amazon SNS IAM policy documentation for detailed permission information and policy examples.
| Input | Comments | Default |
|---|---|---|
| Role ARN | An AWS IAM Role ARN | |
| Access Key ID | An AWS IAM Access Key ID | |
| Secret Access Key | An AWS IAM Secret Access Key | |
| External ID | Provides enhanced security measures to the connection. Optional, but recommended. Please check AWS docs for more information. |
AWS SNS Access Key and Secret
Authenticates requests to Amazon SNS using an API Key and API Secret
An AWS IAM access key pair is required to interact with Amazon SNS. Ensure the key pair generated in AWS has proper permissions to the SNS resources to access. Read about Amazon SNS IAM policies in the AWS docs.
Prerequisites
- An active AWS account
- IAM permissions to create access keys
Setup Steps
To create an IAM access key pair:
- Sign in to the AWS Console and navigate to Identity and Access Management (IAM)
- Select Users from the left sidebar
- Choose an existing user or create a new one by selecting Create User
- If creating a new user, provide a username and configure console access if needed
- Navigate to the Security credentials tab for the selected user
- Under Access Keys, select Create access key
- Choose the use case (select Third-party service or Application running outside AWS as appropriate)
- Add an optional description tag for the key
- Select Create access key
- Copy both the Access Key ID and Secret Access Key values
Secure Storage Required
The Secret Access Key is only shown once during creation. Store it securely as it cannot be retrieved later. If lost, a new access key pair must be generated.
Configure the Connection
- Enter the Access Key ID into the corresponding field in the connection configuration
- Enter the Secret Access Key into the corresponding field in the connection configuration
Required Permissions
The IAM user or role associated with the access key pair must have appropriate permissions for Amazon SNS operations.
Common required permissions include:
sns:Publish- Send messages to topicssns:Subscribe- Subscribe endpoints to topicssns:CreateTopic- Create new SNS topicssns:DeleteTopic- Delete SNS topicssns:ListTopics- List available topicssns:GetTopicAttributes- Retrieve topic detailssns:SetTopicAttributes- Modify topic settings
Refer to the Amazon SNS IAM policy documentation for detailed permission information and policy examples.
| Input | Comments | Default |
|---|---|---|
| Access Key ID | An AWS IAM Access Key ID for authenticating with Amazon SNS. Learn more | |
| Secret Access Key | An AWS IAM Secret Access Key corresponding to the Access Key ID. Learn more |
Triggers
Manual Subscription
Receive and validate webhook requests from SNS for manually configured webhook subscriptions.
| Input | Comments | Default |
|---|---|---|
| Parse Message | When enabled, the message from SNS will be parsed as JSON and returned. When disabled, it will be passed as received. | false |
Topic Webhook
Receive notifications from an SNS topic. Automatically creates and manages a topic subscription when the instance is deployed, and removes the subscription when the instance is deleted.
| Input | Comments | Default |
|---|---|---|
| Parse Message | When enabled, the message from SNS will be parsed as JSON and returned. When disabled, it will be passed as received. | false |
| Connection | The Amazon SNS connection to use. | |
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Topic ARN | The Amazon Resource Name (ARN) of the SNS topic. Learn more |
Actions
Create Topic
Create an Amazon SNS Topic
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Name | The name of the SNS topic to create. | |
| Connection | The Amazon SNS connection to use. |
Delete Topic
Delete an Amazon SNS Topic
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Topic ARN | The Amazon Resource Name (ARN) of the SNS topic. Learn more | |
| Connection | The Amazon SNS connection to use. |
Get Topic Attributes
Retrieves the attributes of an Amazon SNS Topic.
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Topic ARN | The Amazon Resource Name (ARN) of the SNS topic. Learn more | |
| Connection | The Amazon SNS connection to use. |
List Opt Out Numbers
List all opt out numbers
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Next Token | The pagination token returned by a previous request to retrieve the next page of results. | |
| Connection | The Amazon SNS connection to use. |
List Subscriptions
Retrieve the subscriptions of an Amazon SNS Topic
| Input | Comments | Default |
|---|---|---|
| Connection | The Amazon SNS connection to use. | |
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Topic ARN | The Amazon Resource Name (ARN) of the SNS topic. Learn more | |
| Fetch All | When set to true, fetches all paginated subscriptions. When false, only 100 subscriptions will be returned. | false |
| Next Token | The pagination token returned by a previous request to retrieve the next page of results. |
List Topics
List available Amazon SNS Topics
| Input | Comments | Default |
|---|---|---|
| Connection | The Amazon SNS connection to use. | |
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Fetch All | When set to true, fetches all paginated topics. When false, only 100 topics will be returned. | false |
| Next Token | The pagination token returned by a previous request to retrieve the next page of results. |
Publish Batch Messages
Publishes up to ten messages to the specified Amazon SNS Topic
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Topic ARN | The Amazon Resource Name (ARN) of the SNS topic. Learn more | |
| Message Entries | An array of message entries to publish in batch. Each entry must include an Id and Message. For binary messages, add a Template Field containing a Buffer to the BinaryValue attribute. Learn more | |
| Connection | The Amazon SNS connection to use. |
Publish Message
Publish a message to an Amazon SNS Topic
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Message | The message content to send to the topic or endpoint. Learn more | |
| Topic ARN | The Amazon Resource Name (ARN) of the SNS topic. Learn more | |
| Message Attributes | Optional message attributes as key-value pairs. The value will be automatically typed (String, Number, String.Array, or Binary for Buffer). For binary data, provide a Buffer from a previous step. Learn more | |
| Connection | The Amazon SNS connection to use. |
Publish SMS
Publish an SMS message to an Amazon SNS Topic
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Message | The message content to send to the topic or endpoint. Learn more | |
| Phone Number | The phone number in E.164 format (e.g., +12065551234) to receive SMS messages. Learn more | |
| Connection | The Amazon SNS connection to use. |
Subscribe to Topic
Subscribe to an Amazon SNS Topic
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Topic ARN | The Amazon Resource Name (ARN) of the SNS topic. Learn more | |
| Protocol | The protocol to use for delivering messages to the endpoint (application, email, email-json, firehose, http, https, lambda, sms, or sqs). Learn more | https |
| Endpoint | The endpoint to receive notifications. Format depends on protocol: email address (email@example.com), URL (https://example.com), phone number (+12065551234), or ARN (arn:aws:sqs:us-east-1:123456789012:MyQueue). Learn more | |
| Connection | The Amazon SNS connection to use. |
Unsubscribe from a Topic
Unsubscribe from an Amazon SNS Topic
| Input | Comments | Default |
|---|---|---|
| AWS Region | AWS provides services in multiple regions, like us-west-2 or eu-west-1. | |
| Subscription ARN | The Amazon Resource Name (ARN) of the subscription. Learn more | |
| Connection | The Amazon SNS connection to use. |