AWS AmazonS3 documentation change
Summary
Updated condition key type specification from String to ARN for s3tables:KMSKeyArn.
Security assessment
The change clarifies documentation formatting but doesn't introduce new security controls or address vulnerabilities.
Diff
diff --git a/AmazonS3/latest/userguide/s3-tables-setting-up.md b/AmazonS3/latest/userguide/s3-tables-setting-up.md index c3fe06b4c..670404097 100644 --- a//AmazonS3/latest/userguide/s3-tables-setting-up.md +++ b//AmazonS3/latest/userguide/s3-tables-setting-up.md @@ -117 +117 @@ Condition key | Description | Type -` s3tables:KMSKeyArn` | Filters access by the AWS KMS key ARN for the key used to encrypt a table You can use the `s3tables:KMSKeyArn` condition key to write IAM, table, or table bucket policies that restrict user or application access to tables that are encrypted with a specific KMS key. It's important to note that if you use the `s3tables:KMSKeyArn` condition key to control access, then changing your KMS key could impact these policies. | `String` +` s3tables:KMSKeyArn` | Filters access by the AWS KMS key ARN for the key used to encrypt a table You can use the `s3tables:KMSKeyArn` condition key to write IAM, table, or table bucket policies that restrict user or application access to tables that are encrypted with a specific KMS key. It's important to note that if you use the `s3tables:KMSKeyArn` condition key to control access, then changing your KMS key could impact these policies. | `ARN`