Queuing services (SQS, Kafka)

AWS SQS (Simple Queue Service)

AWS SQS is a managed queuing system that lets Terra deliver events straight into your existing queue, minimising disruptions when ingesting data into your server.

Authentication

Create an IAM user with permissions to send messages to your queue. Attach a policy granting at minimum:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": [
        "sqs:SendMessage",
        "sqs:GetQueueUrl"
      ],
      "Resource": "arn:aws:sqs:your-region:your-account-id:your-queue-name"
    }
  ]
}

Enter the queue URL, Access Key ID, Secret Access Key, and region in the Terra Dashboard when adding the SQS destination.

Message format

Each SQS message is a JSON payload containing a pre-signed download URL:

• url — A pre-signed link to the full data payload, hosted on Terra's infrastructure. Download it with a GET request.

• expires_in — URL validity in seconds (600 = 10 minutes).

This approach keeps message sizes small. The actual data payload must be fetched from the URL.

Kafka

Apache Kafka lets Terra publish events to a topic in your Kafka cluster.

Authentication

Terra connects to Kafka using SASL PLAIN authentication over TLS. You'll need to provide:

• Broker host and port

• Username and password (SASL credentials)

• Topic name — Terra will auto-create the topic if it doesn't exist (requires auto.create.topics.enable=true on the broker; if disabled, create the topic manually first)

Enter these details in the Terra Dashboard when adding the Kafka destination.

Message format

Kafka messages use the same format as SQS:

Messages are published without a partition key (distributed across partitions by least-bytes balancing). The url field contains a pre-signed link (10 minute expiry) to the full data payload.