AWS Security ChangesHomeSearch

AWS appsync medium security documentation change

Service: appsync · 2025-04-25 · Security-related medium

File: appsync/latest/eventapi/channel-namespaces.md

Summary

Added authorization configuration details and updated content focus

Security assessment

Explicitly documents authorization configuration overrides at namespace level, which is critical for implementing least-privilege access controls in Event APIs

Diff

diff --git a/appsync/latest/eventapi/channel-namespaces.md b/appsync/latest/eventapi/channel-namespaces.md
index 22ce71bdf..96aab5f4a 100644
--- a//appsync/latest/eventapi/channel-namespaces.md
+++ b//appsync/latest/eventapi/channel-namespaces.md
@@ -14,0 +15,2 @@ You can only publish and subscribe to channels that belong to a defined namespac
+When you define your Event API, you must configure the default authorization for connecting, publishing and subscribing to an Event API. The publishing and subscribing authorization configuration is automatically applied to all namespaces. You can override this configuration at the namespace. To learn more about authorization, see [Configuring authorization and authentication to secure Event APIs](./configure-event-api-auth.html).
+
@@ -21 +23 @@ To use the Amazon Web Services Documentation, Javascript must be enabled. Please
-Using the Amplify client
+Persist user messages with a DynamoDB table integration
@@ -23 +25 @@ Using the Amplify client
-Channel namespace authorization
+Event processing overview