---
constants:
  __name: "{{ name }}_{{ __guid }}"
variables:
  name:
    desc: "Name of the SNS topic."
    required: true
    group: Topic Details
  display_name:
    desc: "Display name for the SNS topic."
    required: false
    group: Topic Details
  kms_master_key_id:
    desc: "ARN of the KMS key for encryption."
    required: false
    group: Encryption
    links_to: resource.aws_kms_key.arn
  policy:
    desc: "The JSON policy for the SNS topic."
    required: false
    group: Policies
  delivery_policy:
    desc: "The JSON delivery policy."
    required: false
    group: Policies
  tags:
    group: Tags
    required: false
groups:
  Topic Details:
    order: 1
    desc: "Basic settings for the SNS topic."
  Encryption:
    order: 2
    desc: "Encryption settings for the SNS topic."
  Policies:
    order: 3
    desc: "Policy settings for the SNS topic."
  Tags:
    order: 4
    desc: "Tags to assign to the SNS topic."
---

resource "aws_sns_topic" "__name" {
  name            = {{ name }}
  display_name    = {{ display_name | required: false }}
  kms_master_key_id = {{ kms_master_key_id | required: false }}
  policy          = {{ policy | required: false }}
  delivery_policy = {{ delivery_policy | required: false }}

  tags = {
    Name = {{ name }}
    {{# tags }}
      {{ tags.key | required: false }} = {{ tags.value | required: false }}
    {{/ tags }}
  }
}

// Encourages the use of KMS encryption for securing messages at rest.
// Allows custom policies for fine-grained access control.
// Tags are included for better resource management and identification.
//