AWS emr documentation change
Summary
Expanded IAM policy syntax to use arrays for Actions and Resources in Livy endpoint access policies.
Security assessment
Formatting changes to align with IAM policy best practices (using arrays). No new security features or vulnerabilities addressed.
Diff
diff --git a/emr/latest/EMR-Serverless-UserGuide/interactive-workloads-livy-endpoints.md b/emr/latest/EMR-Serverless-UserGuide/interactive-workloads-livy-endpoints.md index ee5d36dad..710aaa5ed 100644 --- a//emr/latest/EMR-Serverless-UserGuide/interactive-workloads-livy-endpoints.md +++ b//emr/latest/EMR-Serverless-UserGuide/interactive-workloads-livy-endpoints.md @@ -55,2 +55,6 @@ JSON - "Action": "emr-serverless:AccessLivyEndpoints", - "Resource": "arn:aws:emr-serverless:<AWS_REGION>:account:/applications/*" + "Action": [ + "emr-serverless:AccessLivyEndpoints" + ], + "Resource": [ + "arn:aws:emr-serverless:AWS_REGION:account:/applications/*" + ] @@ -61,2 +65,6 @@ JSON - "Action": "iam:PassRole", - "Resource": "execution-role-ARN", + "Action": [ + "iam:PassRole" + ], + "Resource": [ + "execution-role-ARN" + ], @@ -72,2 +80,6 @@ JSON - "Action": "emr-serverless:GetDashboardForJobRun", - "Resource": "arn:aws:emr-serverless:<AWS_REGION>:account:/applications/*" + "Action": [ + "emr-serverless:GetDashboardForJobRun" + ], + "Resource": [ + "arn:aws:emr-serverless:AWS_REGION:account:/applications/*" + ]