AWS managed-flink documentation change
Summary
Updated IAM policy examples with specific bucket names and account IDs, added JSON formatting markers
Security assessment
Changes involve updating placeholder values in IAM policy examples but do not address vulnerabilities or security incidents. The updates improve example accuracy but don't introduce new security controls.
Diff
diff --git a/managed-flink/latest/java/gs-table-create.md b/managed-flink/latest/java/gs-table-create.md index 4b5a9291e..bac4133e4 100644 --- a//managed-flink/latest/java/gs-table-create.md +++ b//managed-flink/latest/java/gs-table-create.md @@ -518,0 +519,6 @@ Edit the IAM policy to add permissions to access the Amazon S3 bucket. +JSON + + +**** + + @@ -530 +536 @@ Edit the IAM policy to add permissions to access the Amazon S3 bucket. - "arn:aws:s3:::my-bucket/kinesis-analytics-placeholder-s3-object" + "arn:aws:s3:::amzn-s3-demo-bucket/kinesis-analytics-placeholder-s3-object" @@ -540 +546 @@ Edit the IAM policy to add permissions to access the Amazon S3 bucket. - "arn:aws:logs:us-east-1:012345678901:log-group:*" + "arn:aws:logs:us-east-1:123456789012:*" @@ -550 +556 @@ Edit the IAM policy to add permissions to access the Amazon S3 bucket. - "arn:aws:logs:us-east-1:012345678901:log-group:/aws/kinesis-analytics/MyApplication:log-stream:*" + "arn:aws:logs:us-east-1:123456789012:log-group:/aws/kinesis-analytics/MyApplication:log-stream:*" @@ -560 +566 @@ Edit the IAM policy to add permissions to access the Amazon S3 bucket. - "arn:aws:logs:us-east-1:012345678901:log-group:/aws/kinesis-analytics/MyApplication:log-stream:kinesis-analytics-log-stream" + "arn:aws:logs:us-east-1:123456789012:log-group:/aws/kinesis-analytics/MyApplication:log-stream:kinesis-analytics-log-stream" @@ -567,2 +573,2 @@ Edit the IAM policy to add permissions to access the Amazon S3 bucket. - Resource": [ - "arn:aws:s3:::my-bucket" + "Resource": [ + "arn:aws:s3:::amzn-s3-demo-bucket2"