AWS opensearch-service documentation change
Summary
Fixed IAM policy examples by replacing {account-id} placeholders in ARNs
Security assessment
Standardized ARN syntax without security context changes. No indication of security issue remediation or new security documentation.
Diff
diff --git a/opensearch-service/latest/developerguide/configure-client.md b/opensearch-service/latest/developerguide/configure-client.md index 4e1a76f59..5c17ffeed 100644 --- a/opensearch-service/latest/developerguide/configure-client.md +++ b/opensearch-service/latest/developerguide/configure-client.md @@ -46 +46 @@ For example, the following AWS Identity and Access Management (IAM) policy allow - "Resource": "arn:aws:osis:us-east-1:{account-id}:pipeline/pipeline-name" + "Resource": "arn:aws:osis:us-east-1:account-id:pipeline/pipeline-name" @@ -74 +74 @@ You might need to ingest data into a pipeline from a different AWS account, such - "AWS": "arn:aws:iam::{external-account-id}:root" + "AWS": "arn:aws:iam::external-account-id:root" @@ -90 +90 @@ The following example identity-based policy allows the attached principal to ass - "Resource": "arn:aws:iam::{account-id}:role/ingestion-role" + "Resource": "arn:aws:iam::account-id:role/ingestion-role"