AWS managedservices documentation change
Summary
Added JSON section headers and adjusted JSON policy formatting (syntax corrections, indentation, and structure)
Security assessment
Identical to the onboarding guide changes - formatting improvements to IAM policy examples without substantive security implications. No new security guidance was introduced.
Diff
diff --git a/managedservices/latest/userguide/defaults-user-role.md b/managedservices/latest/userguide/defaults-user-role.md index 6b811ab80..bf7c273cd 100644 --- a//managedservices/latest/userguide/defaults-user-role.md +++ b//managedservices/latest/userguide/defaults-user-role.md @@ -342,0 +343,6 @@ Permissions to request the Management | Other | Other | Create, and Management | +JSON + + +**** + + @@ -346 +352,2 @@ Permissions to request the Management | Other | Other | Create, and Management | - "Statement": [{ + "Statement": [ + { @@ -355 +362 @@ Permissions to request the Management | Other | Other | Create, and Management | - "amscm:UpdateRestrictedExecutionTimes", + "amscm:UpdateRestrictedExecutionTimes" @@ -359 +366 @@ Permissions to request the Management | Other | Other | Create, and Management | - "arn:aws:amscm:global:*:changetype/ct-0xdawir96cy7k:*", + "arn:aws:amscm:global:*:changetype/ct-0xdawir96cy7k:*" @@ -361 +367,0 @@ Permissions to request the Management | Other | Other | Create, and Management | - }] @@ -362,0 +369,3 @@ Permissions to request the Management | Other | Other | Create, and Management | + ] + } + @@ -477,0 +487,6 @@ These permissions do not grant the ability to create S3 buckets; that must be do +JSON + + +**** + + @@ -481 +496,2 @@ These permissions do not grant the ability to create S3 buckets; that must be do - "Statement": [{ + "Statement": [ + { @@ -486 +502 @@ These permissions do not grant the ability to create S3 buckets; that must be do - "s3:PutObject", + "s3:PutObject" @@ -489 +505,2 @@ These permissions do not grant the ability to create S3 buckets; that must be do - }] + } + ] @@ -609,0 +628,6 @@ If you have an active AWS account, then you can use this link [ReadOnlyAccess](h +JSON + + +**** + + @@ -789,0 +815,6 @@ Managed Services IAM ReadOnly Policy +JSON + + +**** + +