AWS glue documentation change
Summary
Updated Amazon S3 policy and SSE-KMS documentation links to userguide paths
Security assessment
Changes involve URL path updates without modifying security recommendations. Existing guidance about encryption and IAM policies remains unchanged.
Diff
diff --git a/glue/latest/dg/create-an-iam-role-notebook.md b/glue/latest/dg/create-an-iam-role-notebook.md index e3f83b8b4..4b0537a0d 100644 --- a//glue/latest/dg/create-an-iam-role-notebook.md +++ b//glue/latest/dg/create-an-iam-role-notebook.md @@ -27 +27 @@ When you create an IAM role using the IAM console, the console creates an instan -Ensure that one of the policies in this role grants permissions to your Amazon S3 sources and targets. Also confirm that your policy allows full access to the location where you store your notebook when you create a notebook server. You might want to provide your own policy for access to specific Amazon S3 resources. For more information about creating an Amazon S3 policy for your resources, see [Specifying Resources in a Policy](https://docs.aws.amazon.com/AmazonS3/latest/dev/s3-arn-format.html). +Ensure that one of the policies in this role grants permissions to your Amazon S3 sources and targets. Also confirm that your policy allows full access to the location where you store your notebook when you create a notebook server. You might want to provide your own policy for access to specific Amazon S3 resources. For more information about creating an Amazon S3 policy for your resources, see [Specifying Resources in a Policy](https://docs.aws.amazon.com/AmazonS3/latest/userguide/s3-arn-format.html). @@ -29 +29 @@ Ensure that one of the policies in this role grants permissions to your Amazon S -If you plan to access Amazon S3 sources and targets that are encrypted with SSE-KMS, attach a policy that allows notebooks to decrypt the data. For more information, see [Protecting Data Using Server-Side Encryption with AWS KMS-Managed Keys (SSE-KMS)](https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingKMSEncryption.html). +If you plan to access Amazon S3 sources and targets that are encrypted with SSE-KMS, attach a policy that allows notebooks to decrypt the data. For more information, see [Protecting Data Using Server-Side Encryption with AWS KMS-Managed Keys (SSE-KMS)](https://docs.aws.amazon.com/AmazonS3/latest/userguide/UsingKMSEncryption.html).