AWS ses documentation change
Summary
Removed JSON policy example for SES sending authorization
Security assessment
Policy example removal doesn't address a specific security vulnerability, though it reduces documentation about secure email policies.
Diff
diff --git a/ses/latest/dg/sending-authorization-policy-examples.md b/ses/latest/dg/sending-authorization-policy-examples.md index 6df3ef360..cb86f2ba5 100644 --- a//ses/latest/dg/sending-authorization-policy-examples.md +++ b//ses/latest/dg/sending-authorization-policy-examples.md @@ -365,52 +364,0 @@ Your sending authorization policy can include multiple statements. The following -JSON - - -**** - - - - { - "Version":"2012-10-17", - "Statement":[ - { - "Sid":"AuthorizeAWS", - "Effect":"Allow", - "Resource":"arn:aws:ses:us-east-1:999999999999:identity/[email protected]", - "Principal":{ - "AWS":[ - "111111111111", - "222222222222" - ] - }, - "Action":[ - "ses:SendEmail", - "ses:SendRawEmail" - ], - "Condition":{ - "StringLike":{ - "ses:FromAddress":"*@example.com", - "ses:FeedbackAddress":"*@example.com" - } - } - }, - { - "Sid":"AuthorizeInternal", - "Effect":"Allow", - "Resource":"arn:aws:ses:us-east-1:999999999999:identity/[email protected]", - "Principal":{ - "AWS":"arn:aws:iam::333333333333:user/Jane" - }, - "Action":[ - "ses:SendEmail", - "ses:SendRawEmail" - ], - "Condition":{ - "ForAllValues:StringLike":{ - "ses:Recipients":"*@example.com" - } - } - } - ] - } - -