AWS Security ChangesHomeSearch

AWS dcv documentation change

Service: dcv · 2025-06-19 · Documentation medium

File: dcv/latest/access-console/handler-config-files.md

Summary

Added new JWT claim parameters and auth server configuration options for external OAuth providers

Security assessment

New parameters enable secure integration with external OAuth providers but do not directly resolve a disclosed security issue.

Diff

diff --git a/dcv/latest/access-console/handler-config-files.md b/dcv/latest/access-console/handler-config-files.md
index 4b5f94b2f..dcccf269b 100644
--- a//dcv/latest/access-console/handler-config-files.md
+++ b//dcv/latest/access-console/handler-config-files.md
@@ -47,0 +48,5 @@ Parameter name | Required | Default Value | Description
+`jwt-login-username-claim-key` |  No |  |  Specifies the key to retrieve login username from the JWT claims of the auth server.  
+`jwt-display-name-claim-key` |  No |  |  Specifies the key to retrieve display name from the JWT claims of the auth server.  
+`auth-server-well-known-uri` |  No |  |  Specifies the well known URI of the auth server.  
+`auth-server-userinfo-endpoint` |  No |  |  Specifies the userInfo endpoint of the auth server.  
+`auth-server-claims-from-access-token` |  No |  False |  Specifies the userInfo endpoint of the auth server.