AWS amazonq documentation change
Summary
Removed example IAM policy JSON configuration
Security assessment
Policy removal appears to be content reorganization rather than security-related change
Diff
diff --git a/amazonq/latest/qbusiness-ug/create-application-iam-okta.md b/amazonq/latest/qbusiness-ug/create-application-iam-okta.md index ce01bf02e..d59c3260b 100644 --- a//amazonq/latest/qbusiness-ug/create-application-iam-okta.md +++ b//amazonq/latest/qbusiness-ug/create-application-iam-okta.md @@ -396,41 +395,0 @@ To create a new policy, follow the instructions in [Creating IAM policies](https -JSON - -JSON - - -**** - - - { - "Version": "2012-10-17", - "Statement": [ - { - "Action": "sts:AssumeRoleWithWebIdentity", - "Sid": "OIDCAssumeRoleAccess", - "Effect": "Allow", - "Condition": { - "StringEquals": { - "iss:aud": "clientId" - } - }, - "Principal": { - "Federated": "arn:aws:iam::111122223333:oidc-provider/iss" - } - }, - { - "Action": "sts:TagSession", - "Sid": "OIDCTagSessionAccess", - "Effect": "Allow", - "Condition": { - "StringLike": { - "aws:RequestTag/Email": "*" - } - }, - "Principal": { - "Federated": "arn:aws:iam::111122223333:oidc-provider/iss" - } - } - ] - } - -