AWS Security ChangesHomeSearch

AWS AmazonS3 documentation change

Service: AmazonS3 · 2025-05-22 · Documentation low

File: AmazonS3/latest/userguide/setup-storagebrowser.md

Summary

Added trusted identity propagation explanation for OAuth 2.0 applications

Security assessment

Expands documentation for a security feature (attribute-based access control) without addressing a specific security issue.

Diff

diff --git a/AmazonS3/latest/userguide/setup-storagebrowser.md b/AmazonS3/latest/userguide/setup-storagebrowser.md
index 8abb4c2c6..477db5699 100644
--- a//AmazonS3/latest/userguide/setup-storagebrowser.md
+++ b//AmazonS3/latest/userguide/setup-storagebrowser.md
@@ -83,0 +84,2 @@ If you have an application that supports OAuth 2.0 and your users need access fr
+[Trusted identity propagation](https://docs.aws.amazon.com/singlesignon/latest/userguide/trustedidentitypropagation-overview.html) is an AWS IAM Identity Center feature that administrators of connected AWS services can use to grant and audit access to service data. Access to this data is based on user attributes such as group associations. Setting up trusted identity propagation requires collaboration between the administrators of connected AWS services and the IAM Identity Center administrators. For more information, see [Prerequisites and considerations](https://docs.aws.amazon.com/singlesignon/latest/userguide/trustedidentitypropagation-overall-prerequisites.html).
+