Date: 2024-10-08
Accepted
Sending form submissions via email is useful for teams who already receive forms in an email inbox. Some users of GOV.UK Forms have asked for an alternative to email delivery of form submissions to allow automated integration with form processing systems.
Initially it was thought this might be acheived via a webhook mechanism similar to GOV.UK Pay, which requires setting up a custom endpoint that is both available and secure, with the associated ongoing support and maintenance. Advice from NCSC encouraged us to explore the use of managed services as alternatives to a self-hosted webhook.
Allow organisations to choose to send form submissions to an Amazon S3 bucket they host, with a policy configured to allow GOV.UK Forms IAM role to write to it. They can then integrate with their form processing systems as required.
---
title: Form submission to Amazon S3
---
graph LR
user((user<br />filling in<br />form))
user --submit form---> forms
subgraph forms_aws [GOV.UK Forms AWS Account]
forms[GOV.UK Forms]
role[/"IAM role"/]
role --> forms
end
subgraph org [Organisation]
subgraph org_aws [Organisation AWS Account]
s3[\Amazon S3/]
policy[/"bucket policy<br />allows IAM role"/]
event[/s3:ObjectCreated event/]
processing{{Form Processing}}
s3 --> event --> processing
s3 --> processing
policy --> s3 ~~~ policy
end
support((Support Team))
end
data[/"structured<br/>form data"/]
file[/"uploaded<br/>file(s)"/]
alert["Alert on S3 error"]
forms --> data --> s3
forms -.-> file -.-> s3
forms -.-> alert -.-> support
classDef default fill:#fff,stroke:#333,stroke-width:2px;
classDef dashed stroke-dasharray: 5 5;
classDef dotted stroke-dasharray: 1 1;
class file dashed
class alert dotted
classDef lightblue fill:#eff,stroke:#333;
classDef lightgreen fill:#efe,stroke:#333;
classDef green fill:#ded,stroke:#333;
class org green
class org_aws lightgreen
class forms_aws lightblue
Writing to S3 is synchronous, so a user filling in a form will only get a success confirmation if the form is written to S3. If there is an error, the user will be notified, and the organisation's support team will be notified.
- The format of the
structured form datathat represents the submitted form can be defined in a separate ADR. - The receiving organisation must be using Amazon Web Services for this option to be suitable. An additional option may be required for organisations that can't use AWS and/or Amazon S3.
- The receiving organisation is responsible for how they process the received file(s). There may be opportunities to share implementation patterns as they are developed.
- When GOV.UK Forms supports file upload, these files can also be sent via Amazon S3.