AWS apprunner documentation change
Summary
Added JSON example of IAM policy for AWS WAF integration with App Runner
Security assessment
Provides a security-related IAM policy template for WAF integration but doesn't address any specific security vulnerability
Diff
diff --git a/apprunner/latest/dg/waf.md b/apprunner/latest/dg/waf.md index c0cd43ef2..c2aeed77a 100644 --- a//apprunner/latest/dg/waf.md +++ b//apprunner/latest/dg/waf.md @@ -120,0 +121,28 @@ The following is an example of the updated IAM policy for AWS WAF. This IAM poli +JSON + + +**** + + + + { + "Version":"2012-10-17", + "Statement":[ + { + "Effect":"Allow", + "Action":[ + "wafv2:ListResourcesForWebACL", + "wafv2:GetWebACLForResource", + "wafv2:AssociateWebACL", + "wafv2:DisassociateWebACL", + "apprunner:ListAssociatedServicesForWebAcl", + "apprunner:DescribeWebAclForService", + "apprunner:AssociateWebAcl", + "apprunner:DisassociateWebAcl" + ], + "Resource":"*" + } + ] + } + +