SQS Policy to allow an S3 bucket to publish messages

aws-sqs.policy

{
  "Version": "2012-10-17",
  "Id": "arn:aws:sqs:YOUR-AWS-REGION:YOUR-AWS-ACCOUNT-ID:YOUR-QUEUE-NAME/SQSDefaultPolicy",
  "Statement": [
    {
      "Sid": "example-statement-ID",
      "Effect": "Allow",
      "Principal": {
        "AWS": "*"
      },
      "Action": "SQS:SendMessage",
      "Resource": "arn:aws:sqs:YOUR-AWS-REGION:YOUR-AWS-ACCOUNT-ID:YOUR-QUEUE-NAME",
      "Condition": {
        "ArnLike": {
          "aws:SourceArn": "arn:aws:s3:*:*:YOUR-S3-BUCKET"
        }
      }
    }
  ]
}

Thank you very much for sharing this.

Thank you very much for sharing this.

Thank you very much for sharing this.

I'm just wondering if in S3 you also need to add a policy to allow it to notify the SQS? Thanks for sharing it is very helpful.

I'm just wondering if in S3 you also need to add a policy to allow it to notify the SQS? Thanks for sharing it is very helpful.

In S3 bucket properties, you can scroll down to events, add a notification rule. and set it to SQS Queue. SO an operation you do will send a message to sqs queue.

LEGEND

Thanks it helped me to solve my problem.

This Solved the problem.

Thanks!!

Can we do a wildcard "aws:SourceArn": "arn:aws:s3:::bucket-name*" ? I tried and it didn't work for me. Wondering if you guys have any suggestions. I am OK with limiting even to the account level. Thanks!

Thanks Marcelo Gornstein for sharing this information it's really helpful.

Thank you, it's really helpful for me.

hmm. can't get this to work. i created a empty S3 bucket, tried to create sqs notification action. Still getting queue permission error queue. Any ideas?

<3