Resource dynamoDB-table wrong cloudtrail event source #1751

cpollard0 · 2017-11-07T15:18:02Z

Following policy:

name: ddb-auto-tag-user
resource: dynamodb-table
mode:
type: cloudtrail
role: arn:aws:iam::{account_id}:role/service-role/custodianrole
events:
- CreateTable
filters:
- tag:creator: absent
  actions:
- type: auto-tag-user
  tag: creator

results in a cloudtrail event pattern that looks like:
{ "detail": { "eventName": [ "CreateTable" ], "eventSource": [ "dynamodb.amazonaws.com\"" ] }, "detail-type": [ "AWS API Call via CloudTrail" ] }
The extra quote in EventSource causes the Lambda not to fire.

The text was updated successfully, but these errors were encountered:

kapilt · 2017-11-18T14:53:15Z

thanks for the bug report.

cpollard0 · 2017-12-08T00:02:32Z

Fixed it in this PR: #1879

kapilt added the kind/bug label Nov 18, 2017

cpollard0 closed this as completed Dec 8, 2017

cpollard0 reopened this Dec 8, 2017

cpollard0 closed this as completed Apr 2, 2018

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Resource dynamoDB-table wrong cloudtrail event source #1751

Resource dynamoDB-table wrong cloudtrail event source #1751

cpollard0 commented Nov 7, 2017 •

edited

kapilt commented Nov 18, 2017

cpollard0 commented Dec 8, 2017

Resource dynamoDB-table wrong cloudtrail event source #1751

Resource dynamoDB-table wrong cloudtrail event source #1751

Comments

cpollard0 commented Nov 7, 2017 • edited

kapilt commented Nov 18, 2017

cpollard0 commented Dec 8, 2017

cpollard0 commented Nov 7, 2017 •

edited