AWS singlesignon documentation change
Summary
Changed contractions ('can't' to 'cannot') in security control descriptions
Security assessment
Grammatical changes only. The security controls described (session scope enforcement and approval separation) were already documented; no new security content or vulnerability fixes added.
Diff
diff --git a/singlesignon/latest/userguide/temporary-elevated-access.md b/singlesignon/latest/userguide/temporary-elevated-access.md index 623cb6eb3..defa79691 100644 --- a//singlesignon/latest/userguide/temporary-elevated-access.md +++ b//singlesignon/latest/userguide/temporary-elevated-access.md @@ -53 +53 @@ AWS Identity has validated that the temporary elevated access capabilities offer - * Users can't invoke a session with a given scope, unless there is an approved request with the same scope and they invoke the session during the approved time period. + * Users cannot invoke a session with a given scope, unless there is an approved request with the same scope and they invoke the session during the approved time period. @@ -57 +57 @@ AWS Identity has validated that the temporary elevated access capabilities offer - * Approvers can't approve their own requests. + * Approvers cannot approve their own requests.