[aws-sns] SNS encryption should support KMS keys cross acount #10055
Labels
@aws-cdk/aws-sns
Related to Amazon Simple Notification Service
bug
This issue is a bug.
in-progress
This issue is being actively worked on.
needs-triage
This issue or PR still needs to be triaged.
The current
aws-sns
module supports enabling encryption with KMS CMKs but only works when the key and the topic reside in the same account because CDK is using the KMSKeyId
link instead of the KMSKeyArn
Reproduction Steps
What did you expect to happen?
The topic should be configured with the KMS
keyArn
so the account information is retained correctlyWhat actually happened?
This topic will be unusable because SNS/KMS cannot locate the specified key it in account
222222222222
Environment
Other
AWS Docs
This is 🐛 Bug Report
The text was updated successfully, but these errors were encountered: