AWS connect documentation change
Summary
Added IAM policy requirements for instances migrated to Service Linked Roles to access Polly's SynthesizeSpeech API
Security assessment
The change documents required IAM permissions for proper feature functionality, which is security-related configuration guidance. However, there's no evidence this addresses an existing security vulnerability - it appears to be proactive documentation of required permissions for a feature.
Diff
diff --git a/connect/latest/adminguide/set-voice.md b/connect/latest/adminguide/set-voice.md index 52c15535c..03d044904 100644 --- a//connect/latest/adminguide/set-voice.md +++ b//connect/latest/adminguide/set-voice.md @@ -37,0 +38,17 @@ This topic defines the flow block for setting the text-to-speech (TTS) language +###### Note + +If your instance was created before October 2018 and you have since migrated to a Service Linked Role (SLR), you need to add the following custom permissions to your Service Role (SR) to access the Generative engines. + + + { + "Sid": "AllowPollyActions", + "Effect": "Allow", + "Action": [ + "polly:SynthesizeSpeech" + ], + "Resource": [ + "*" + ] + } + +