AWS AmazonS3 documentation change
Summary
Removed example Multi-Region Access Point policy with conditional access
Security assessment
Policy removal doesn't indicate security remediation. Example showed conditional access but deletion isn't security-focused.
Diff
diff --git a/AmazonS3/latest/userguide/MrapOperations.md b/AmazonS3/latest/userguide/MrapOperations.md index cb00e36b4..8ed3e834f 100644 --- a//AmazonS3/latest/userguide/MrapOperations.md +++ b//AmazonS3/latest/userguide/MrapOperations.md @@ -204,23 +203,0 @@ Here's an example bucket policy that delegates access control to the Multi-Regio -JSON - - -**** - - - - { - "Version": "2012-10-17", - "Statement": { - "Principal": { "AWS": "*" }, - "Effect": "Allow", - "Action": ["s3:*"], - "Resource": ["arn:aws:s3:::111122223333/*", "arn:aws:s3:::example-s3-bucket;"], - "Condition": { - "StringEquals": { - "s3:DataAccessPointAccount": "444455556666" - } - } - } - } - -