AWS SNS (IAM)

aws messaging

Amazon Simple Notification Service (SNS) coordinates message delivery between publishers and subscribers.

Common permissions

sns:CreateTopicsns:DeleteTopicsns:ListTopicssns:GetTopicAttributessns:TagResourcesns:UntagResourcesns:ListSubscriptionssns:ListSubscriptionsByTopic

Least-privilege example

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "sns:CreateTopic",
        "sns:DeleteTopic",
        "sns:ListTopics",
        "sns:GetTopicAttributes",
        "sns:TagResource",
        "sns:UntagResource",
        "sns:ListSubscriptions",
        "sns:ListSubscriptionsByTopic"
      ],
      "Resource": "*"
    }
  ]
}

Warnings

Avoid sns:* — grants full control including deletion of topics and subscriptions.
Avoid sns:Publish without conditions — can cause unexpected costs from message delivery.

Resources

AWS referenceservicereference.us-east-1.amazonaws.com/v1/sns/sns.json ↗

API

full doc /v1/iam/sns