When Data Inventory records are updated by any source, notifications are sent to an Amazon AWS
Simple Notification Service (SNS) Topic. This will allow clients to receive notifications when users
make changes via the TrustArc UI. The notifications can happen when any field changes, or only
when certain fields change.
There are multiple ways to listen for these notifications, but the recommended way is to support a
callback HTTPS endpoint in your application. This can be configured by TrustArc staff; you just need
to provide the full URL.
The message that will be sent will look like this:
{
"Type": "Notification",
"MessageId": "2e8333e5-2a6b-5f61-8ef7-6d9af972f16d",
"Token": null,
"TopicArn": "arn:aws:sns:us-west-2:060318674886:queue-name",
"Subject": "subject:TrustArc Entity Update",
"Message":
"{\"accountId\":\"a3b1ea4f-b9c9-48e7-b13a-d3e7dd2cdf44\",\"internalId\":\"a7caf86
c-a15f-4cc2-9409-adce71b1c278\",\"externalId\":null}",
"Timestamp": "2024-03-28T20:19:37.084Z",
"SignatureVersion": "1",
"Signature": "W1Cak/3e0MwuK1bcBhvJ==",
"SigningCertURL":
"https://sns.us-west-2.amazonaws.com/SimpleNotificationService-60eadc530605d63b8e
62a523676ef735.pem",
"UnsubscribeURL":
"https://sns.us-west-2.amazonaws.com/?Action=Unsubscribe&SubscriptionArn=arn:aws:
sns:us-west-2:060318674886:colin-queue:631224f7-0356-4538-9b64-d2f335ff8d87",
"SubscribeURL": null
}Full instructions on how to implement an HTTPS notification endpoint are documented here:
https://docs.aws.amazon.com/sns/latest/dg/sns-subscribe-https-s-endpoints-to-topic.html
Within the full SNS message, is the “Message” field, which contains the details of the Data Inventory
record that was updated. For example:
{
"accountId": "a3b1ea4f-b9c9-48e7-b13a-d3e7dd2cdf44",
"internalId": "a7caf86c-a15f-4cc2-9409-adce71b1c278",
"externalId": "my-identifier"
}