AWS dcv documentation change
Summary
Added new JWT claim parameters and auth server configuration options for external OAuth providers
Security assessment
New parameters enable secure integration with external OAuth providers but do not directly resolve a disclosed security issue.
Diff
diff --git a/dcv/latest/access-console/handler-config-files.md b/dcv/latest/access-console/handler-config-files.md index 4b5f94b2f..dcccf269b 100644 --- a//dcv/latest/access-console/handler-config-files.md +++ b//dcv/latest/access-console/handler-config-files.md @@ -47,0 +48,5 @@ Parameter name | Required | Default Value | Description +`jwt-login-username-claim-key` | No | | Specifies the key to retrieve login username from the JWT claims of the auth server. +`jwt-display-name-claim-key` | No | | Specifies the key to retrieve display name from the JWT claims of the auth server. +`auth-server-well-known-uri` | No | | Specifies the well known URI of the auth server. +`auth-server-userinfo-endpoint` | No | | Specifies the userInfo endpoint of the auth server. +`auth-server-claims-from-access-token` | No | False | Specifies the userInfo endpoint of the auth server.