AWS AmazonS3 documentation change
Summary
Added documentation for new AccessPointScope-related IAM actions (List/Get/Put/DeleteAccessPointScope)
Security assessment
Documents new IAM permissions for access point scope management, enhancing security documentation but not addressing a specific vulnerability
Diff
diff --git a/AmazonS3/latest/userguide/s3-express-authenticating-authorizing.md b/AmazonS3/latest/userguide/s3-express-authenticating-authorizing.md index 5f22c59fd..4dd450819 100644 --- a//AmazonS3/latest/userguide/s3-express-authenticating-authorizing.md +++ b//AmazonS3/latest/userguide/s3-express-authenticating-authorizing.md @@ -53,0 +54,4 @@ API | Endpoint type | IAM action | Cross-account access +`ListAccessPointsForDirectoryBuckets` | Zonal | `s3express:ListAccessPointsForDirectoryBuckets` | Yes +`GetAccessPointScope` | Zonal | `s3express:GetAccessPointScope` | Yes +`PutAccessPointScope` | Zonal | `s3express:PutAccessPointScope` | Yes +`DeleteAccessPointScope` | Zonal | `s3express:DeleteAccessPointScope` | Yes