AWS AmazonS3 documentation change
Summary
Removed resource-based policy example granting table access with namespace condition
Security assessment
Policy example removal affects access control documentation but doesn't indicate resolution of a security weakness. No evidence of patched vulnerability.
Diff
diff --git a/AmazonS3/latest/userguide/s3-tables-resource-based-policies.md b/AmazonS3/latest/userguide/s3-tables-resource-based-policies.md index d74fcbcaf..24ee74d40 100644 --- a//AmazonS3/latest/userguide/s3-tables-resource-based-policies.md +++ b//AmazonS3/latest/userguide/s3-tables-resource-based-policies.md @@ -69,30 +68,0 @@ The following an example table bucket policy allows Jane, a user from AWS accoun -JSON - - -**** - - - - { - "Version": "2012-10-17", - "Statement": [ - { - "Effect": "Allow", - "Principal": { - "AWS": "arn:aws:iam::123456789012:user/Jane" - }, - "Action": [ - "s3tables:GetTableData", - "s3tables:GetTableMetadataLocation" - ], - "Resource": "arn:aws:s3tables:us-east-1:account_id:bucket/amzn-s3-demo-table-bucket/table/*", - "Condition": { - "StringLike": { - "s3tables:namespace": "hr" - } - } - } - ] - } - -