AWS prescriptive-guidance documentation change
Summary
Removed sample IAM policy JSON for Neptune data access
Security assessment
Removal of policy example doesn't indicate security issue resolution, though it reduces documentation clarity for security configurations
Diff
diff --git a/prescriptive-guidance/latest/multi-tenancy-amazon-neptune/silo-model.md b/prescriptive-guidance/latest/multi-tenancy-amazon-neptune/silo-model.md index 572cbdabf..2e0b48557 100644 --- a//prescriptive-guidance/latest/multi-tenancy-amazon-neptune/silo-model.md +++ b//prescriptive-guidance/latest/multi-tenancy-amazon-neptune/silo-model.md @@ -36,19 +35,0 @@ The following code snippet shows a sample data-based IAM policy: - { - "Version": "2012-10-17", - "Statement": [ - { - "Effect": "Allow", - "Action": [ - "neptune-db:ReadDataViaQuery", - "neptune-db:WriteDataViaQuery" - ], - "Resource": "arn:aws:neptune-db:<region>:<account-id>:tenant-1-cluster/*", - "Condition": { - "ArnEquals": { - "aws:PrincipalArn": "arn:aws:iam::<account-id>:role/tenant-role-1" - } - } - } - ] - } -