AWS AmazonS3 documentation change
Summary
Added trusted identity propagation explanation for OAuth 2.0 applications
Security assessment
Expands documentation for a security feature (attribute-based access control) without addressing a specific security issue.
Diff
diff --git a/AmazonS3/latest/userguide/setup-storagebrowser.md b/AmazonS3/latest/userguide/setup-storagebrowser.md index 8abb4c2c6..477db5699 100644 --- a//AmazonS3/latest/userguide/setup-storagebrowser.md +++ b//AmazonS3/latest/userguide/setup-storagebrowser.md @@ -83,0 +84,2 @@ If you have an application that supports OAuth 2.0 and your users need access fr +[Trusted identity propagation](https://docs.aws.amazon.com/singlesignon/latest/userguide/trustedidentitypropagation-overview.html) is an AWS IAM Identity Center feature that administrators of connected AWS services can use to grant and audit access to service data. Access to this data is based on user attributes such as group associations. Setting up trusted identity propagation requires collaboration between the administrators of connected AWS services and the IAM Identity Center administrators. For more information, see [Prerequisites and considerations](https://docs.aws.amazon.com/singlesignon/latest/userguide/trustedidentitypropagation-overall-prerequisites.html). +