Support to cloudwatcheventRule have eventBus in another account as target

[ndesai15]

Hello,

I am very much excited to use AWS CDK to set up my infrastructure. As a part of my infrastructure set up, I need to set a cloudwatch event rule which trigger target as sending event to eventbus in another account. I carefully looked at existing documentation but I didn't find this feature as being added in current released version. Can we get support for this cloudwatch event target?

[made2591]

Hi @ndesai15, looking at the documentation (link) it seems to propagate event bus you have to provide the right permissions in the involved accounts. The resource that has to be provisioned is AWS::Events::EventBusPolicy: this creates an event bus policy for Amazon CloudWatch Events, that enables your account to receive events from other AWS accounts. These events can trigger CloudWatch Events rules created in your account.

Now, I was looking for a Resource Type to provision the target, like the Event bus in another AWS account mentioned, but there is not: otoh, it seems, you can specify a precise arn (like the one specified in the doc arn:aws:events:region:$ReceiverAccountID:event-bus/default for setup with no organization or "arn:aws:events:region:$ReceiverAccountID:event-bus/default","RoleArn"="arn:aws:iam:${sender_account_id}:role/event-delivery-role" with a specified Role)... What I don't know yet is this is something that can be managed by Cloudformation. If it is not supported, I don't think it can be done: otherwise yes, and I would be happy to start work on in ^^

[SomayaB]

Hi @ndesai15, is this what you were looking for?

[ndesai15]

Yes, I can see that cross account events deliver could be possible with this. I had use case to throw all of consolidated accounts events to master account event bus.

[SomayaB]

Great, I'm glad that did it!

Closing this issue, feel free to reopen.

[nickwhalen06]

Hello @SomayaB ,
I am attempting to do the exact same thing @ndesai15 mentions:

"...set a cloudwatch event rule which trigger target as sending event to eventbus in another account."

It is still not clear to me how this can be accomplished without EventBus being supported in Targets. Am I missing something?

[rix0rrr]

We're happy to help you out, but GitHub issues is not a support forum. There are
websites much better suited for that, such as StackOverflow.

Please ask that same question again on StackOverflow under the
aws-cdk. If you can't get
a response to your question, please bring it to our attention again and we will
do our best to answer it.

[nickwhalen06]

Thanks, @rix0rrr. Understood. I guess what I am really asking for is a feature request: EventBus would implement IRuleTarget to take advantage of AWS EventBridge for cross-account workflows. I can do the same today by using the 'escape hatch' technique listed here: https://docs.aws.amazon.com/cdk/latest/guide/cfn_layer.html. Ideally, this should be supported without an escape hatch mechanism.

[SomayaB]

Hi @nickwhalen06, please open a new issue using the feature request template to flesh out what you would like to see more.