AWS workmail documentation change
Summary
Removed Firehose IAM policy JSON example for audit logging
Security assessment
Removal of a policy example might indicate deprecated practices, but there's no explicit evidence of security issues being addressed. This appears to be documentation cleanup.
Diff
diff --git a/workmail/latest/adminguide/audit-logging.md b/workmail/latest/adminguide/audit-logging.md index 912eeaecb..a10ace490 100644 --- a//workmail/latest/adminguide/audit-logging.md +++ b//workmail/latest/adminguide/audit-logging.md @@ -462,28 +461,0 @@ Because Firehose doesn't use resource policies, AWS uses IAM roles when setting -JSON - - -**** - - - - { - "Version": "2012-10-17", - "Statement": [ - { - "Action": [ - "firehose:PutRecord", - "firehose:PutRecordBatch", - "firehose:ListTagsForDeliveryStream" - ], - "Resource": "arn:aws:firehose:aws-region:111122223333:deliverystream/workmail-*", - "Condition": { - "StringEquals": { - "aws:ResourceTag/LogDeliveryEnabled": "true" - } - }, - "Effect": "Allow" - } - ] - } - -