Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Notifications destinations seem to be region-specific, even though createDestination is a grantless operation #4286

Open
jlevers opened this issue Nov 2, 2024 · 2 comments
Open

Notifications destinations seem to be region-specific, even though createDestination is a grantless operation #4286

jlevers opened this issue Nov 2, 2024 · 2 comments
Assignees
@MeenaAmz

Comments

@jlevers
Copy link

jlevers commented Nov 2, 2024

I've created a notifications destination via createDestination. Since this is a grantless operation (no refresh token involved), I would expect the destination not to be region-specific, since there's no definite geography associated with the LWA client ID and client secret – refresh tokens for any region can be generated using LWA creds from an application in any other region.

However, when I attempt to call createSubscription with a set of credentials from a different region than the app whose LWA creds I used to call createDestination, I get a 400 error with this payload:

{
  "errors": [
    {
      "code": "InvalidInput",
      "message": "Request has missing or invalid parameters and cannot be parsed.",
      "details": "No destination with id xxxx"
    }
  ]
}

So, is this a bug, or are destinations region-specific? If it's not a bug, this should be documented somewhere, as there's nothing indicating one way or another how regions/marketplaces are managed in the context of notifications.
@MeenaAmz
Copy link
Contributor

MeenaAmz commented Nov 7, 2024

@jlevers Can you please explain the issue in detail? Are you saying that you created the destination using one app and then attempting to create a subscription with a different app in a different marketplace or are you referring to different AWS regions or both?

Thanks
Meena

@MeenaAmz MeenaAmz self-assigned this Nov 7, 2024
@jlevers
Copy link
Author

jlevers commented Nov 7, 2024

Sure, here's the step by step:

  • Created a destination using NA credentials
  • Subscribed to a notification type using that destination, using NA credentials
  • Attempted to subscribe to a different notification type using the same destination, with EU credentials

This is all within a single app. The destination was created using the credentials associated with the app, and then the subscription requests were made with a) those same credentials and b) a set of credentials generated via OAuth on the same app. In either case, the credentials were able to successfully create a subscription if the region of the subscribing credentials matched the region of the credentials that created the destination, but could not create a subscription if the region of the credentials was different than the region of the credentials that created the destination.

Let me know if I can make anything clearer, I know that's kinda word salad.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@MeenaAmz MeenaAmz

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jlevers @MeenaAmz