AWS cli medium security documentation change
Summary
Updated CLI version reference from 2.28.11 to 2.28.12 and added warning about URL encoding signed header values with spaces
Security assessment
Added warning about URL encoding headers with spaces addresses potential security issues related to signature validation failures or header injection attacks
Diff
diff --git a/cli/latest/reference/s3control/get-access-grants-location.md b/cli/latest/reference/s3control/get-access-grants-location.md index c4f964e64..b0ea265fe 100644 --- a//cli/latest/reference/s3control/get-access-grants-location.md +++ b//cli/latest/reference/s3control/get-access-grants-location.md @@ -15 +15 @@ - * [AWS CLI 2.28.11 Command Reference](../../index.html) » + * [AWS CLI 2.28.12 Command Reference](../../index.html) » @@ -64,0 +65,4 @@ You must have the `s3:GetAccessGrantsLocation` permission to use this operation. +### Warning + +You must URL encode any signed header values that contain spaces. For example, if your header value is `my file.txt` , containing two spaces after `my` , you must URL encode this value to `my%20%20file.txt` . + @@ -234 +238 @@ IAMRoleArn -> (string) - * [AWS CLI 2.28.11 Command Reference](../../index.html) » + * [AWS CLI 2.28.12 Command Reference](../../index.html) »