AWS AmazonS3 documentation change
Summary
Removed an example bucket policy granting CreateSession permissions for S3 Express
Security assessment
The deletion removes an IAM policy example but does not provide evidence of addressing a security vulnerability. While IAM policies are security-related, the removal itself does not indicate a direct security fix.
Diff
diff --git a/AmazonS3/latest/userguide/s3-express-security-iam-example-bucket-policies.md b/AmazonS3/latest/userguide/s3-express-security-iam-example-bucket-policies.md index e7d5e8bbe..0942567b0 100644 --- a//AmazonS3/latest/userguide/s3-express-security-iam-example-bucket-policies.md +++ b//AmazonS3/latest/userguide/s3-express-security-iam-example-bucket-policies.md @@ -13,28 +12,0 @@ The following example bucket policy allows AWS account ID ``111122223333`` to us -JSON - - -**** - - - - { - "Version": "2012-10-17", - "Statement": [ - { - "Sid": "ReadWriteAccess", - "Effect": "Allow", - "Resource": "arn:aws:s3express:us-west-2:account-id:bucket/amzn-s3-demo-bucket--usw2-az1--x-s3", - "Principal": { - "AWS": [ - "111122223333" - ] - }, - "Action": [ - "s3express:CreateSession" - ] - } - ] - } - - -