Forked from isotoma/ses-smtp-credentials-cdk
Generate AWS SES SMTP credentials for sending mail via SES.
On the 10th January 2019 AWS changed how SES SMTP authentication works to restrict access on a per-region basis. This makes providing SES credentials annoyingly hard, if you are automating everything via Cloudformation.
This addresses that.
import { SesSmtpCredentials } from 'ses-smtp-credentials-cdk';
// ...
const smtpCredentials = new SesSmtpCredentials(this, 'Credentials', {
region: 'eu-west-1'
});
- A user is created in IAM with only permissions for ses:SendRawEmail.
- The user is given an access key.
- The secret key is signed for the desired region (see below)
- the access key and signed secret key are set in a secret
The algorithm for signing the key is as specified here:
https://docs.aws.amazon.com/ses/latest/DeveloperGuide/smtp-credentials.html
Run
$ npm version (patch|minor|major)
$ git push origin master [tag you just created]