AWS cli documentation change
Summary
Updated documentation to add new data source types (GOOGLE_DRIVE, CONFLUENCE, etc.), added parameters for S3 Knowledge Base and Web Crawler configurations, updated authentication documentation, and made branding changes from 'QuickSight' to 'Quick Sight'
Security assessment
The changes add documentation for security-related configurations like S3 Knowledge Base role overrides ('RoleArn' structure allowing granular access control) and Web Crawler authentication parameters (BASIC_AUTH/SAML authentication types, credential field handling). However, there is no evidence these changes address a specific security vulnerability.
Diff
diff --git a/cli/latest/reference/quicksight/list-data-sources.md b/cli/latest/reference/quicksight/list-data-sources.md index 8a2754f32..e43d3f448 100644 --- a//cli/latest/reference/quicksight/list-data-sources.md +++ b//cli/latest/reference/quicksight/list-data-sources.md @@ -13 +13 @@ - * [next](list-folder-members.html "list-folder-members") | + * [next](list-flows.html "list-flows") | @@ -15 +15 @@ - * [AWS CLI 2.31.10 Command Reference](../../index.html) » + * [AWS CLI 2.31.13 Command Reference](../../index.html) » @@ -23 +23 @@ - * [list-folder-members →](list-folder-members.html "next chapter \(use the right arrow\)") + * [list-flows →](list-flows.html "next chapter \(use the right arrow\)") @@ -288,0 +289,7 @@ DataSources -> (list) +>>> * `GOOGLE_DRIVE` +>>> * `CONFLUENCE` +>>> * `SHAREPOINT` +>>> * `ONE_DRIVE` +>>> * `WEB_CRAWLER` +>>> * `S3_KNOWLEDGE_BASE` +>>> * `QBUSINESS` @@ -318 +325 @@ DataSources -> (list) ->>> The parameters that Amazon QuickSight uses to connect to your underlying source. This is a variant type structure. For this structure to be valid, only one of the attributes can be non-null. +>>> The parameters that Quick Sight uses to connect to your underlying source. This is a variant type structure. For this structure to be valid, only one of the attributes can be non-null. @@ -754 +761 @@ DataSources -> (list) ->>>>>> The user whose permissions and group memberships will be used by QuickSight to access the cluster. If this user already exists in your database, QuickSight is granted the same permissions that the user has. If the user doesn’t exist, set the value of `AutoCreateDatabaseUser` to `True` to create a new user with PUBLIC permissions. +>>>>>> The user whose permissions and group memberships will be used by Quick Sight to access the cluster. If this user already exists in your database, Amazon Quick Sight is granted the same permissions that the user has. If the user doesn’t exist, set the value of `AutoCreateDatabaseUser` to `True` to create a new user with PUBLIC permissions. @@ -785 +792 @@ DataSources -> (list) ->>>>>> Automatically creates a database user. If your database doesn’t have a `DatabaseUser` , set this parameter to `True` . If there is no `DatabaseUser` , Amazon QuickSight can’t connect to your cluster. The `RoleArn` that you use for this operation must grant access to `redshift:CreateClusterUser` to successfully create the user. +>>>>>> Automatically creates a database user. If your database doesn’t have a `DatabaseUser` , set this parameter to `True` . If there is no `DatabaseUser` , Quick Sight can’t connect to your cluster. The `RoleArn` that you use for this operation must grant access to `redshift:CreateClusterUser` to successfully create the user. @@ -836,0 +844,37 @@ DataSources -> (list) +>>> +>>> S3KnowledgeBaseParameters -> (structure) +>>> +>>>> The parameters for S3 Knowledge Base. +>>>> +>>>> RoleArn -> (string) +>>>> +>>>>> Use the `RoleArn` structure to override an account-wide role for a specific S3 Knowledge Base data source. For example, say an account administrator has turned off all S3 access with an account-wide role. The administrator can then use `RoleArn` to bypass the account-wide role and allow S3 access for the single S3 Knowledge Base data source that is specified in the structure, even if the account-wide role forbidding S3 access is still active. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `20` +>>>>> * max: `2048` +>>>>> + +>>>> +>>>> BucketUrl -> (string) [required] +>>>> +>>>>> The URL of the S3 bucket that contains the knowledge base data. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1024` +>>>>> + +>>>> +>>>> MetadataFilesLocation -> (string) +>>>> +>>>>> The location of metadata files within the S3 bucket that describe the structure and content of the knowledge base. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1024` +>>>>> + @@ -1389,0 +1434,132 @@ DataSources -> (list) +>>> +>>> WebCrawlerParameters -> (structure) +>>> +>>>> The parameters for Web Crawler. +>>>> +>>>> WebCrawlerAuthType -> (string) [required] +>>>> +>>>>> The authentication type for the web crawler. The type can be one of the following: +>>>>> +>>>>> * `NO_AUTH` : No authentication required. +>>>>> * `BASIC_AUTH` : Basic authentication using username and password. +>>>>> * `SAML` : SAML-based authentication. +>>>>> * `FORM` : Form-based authentication. +>>>>> + +>>>>> +>>>>> Possible values: +>>>>> +>>>>> * `NO_AUTH` +>>>>> * `BASIC_AUTH` +>>>>> * `FORM` +>>>>> * `SAML` +>>>>> + +>>>> +>>>> UsernameFieldXpath -> (string) +>>>> +>>>>> The XPath expression for locating the username field on the login page. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1024` +>>>>> + +>>>> +>>>> PasswordFieldXpath -> (string) +>>>> +>>>>> The XPath expression for locating the password field on the login page. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1024` +>>>>> + +>>>> +>>>> UsernameButtonXpath -> (string) +>>>> +>>>>> The XPath expression for locating the username submit button on the login page. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1024` +>>>>> + +>>>> +>>>> PasswordButtonXpath -> (string) +>>>> +>>>>> The XPath expression for locating the password submit button on the login page. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1024` +>>>>> + +>>>> +>>>> LoginPageUrl -> (string) +>>>> +>>>>> The URL of the login page for the web crawler to authenticate. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1024` +>>>>> + +>>>> +>>>> WebProxyHostName -> (string) +>>>> +>>>>> The hostname of the web proxy server for the web crawler. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `256` +>>>>> + +>>>> +>>>> WebProxyPortNumber -> (integer) +>>>> +>>>>> The port number of the web proxy server for the web crawler. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `0` +>>>>> * max: `65535` +>>>>> + +>>> +>>> ConfluenceParameters -> (structure) +>>> +>>>> The parameters for Confluence. +>>>> +>>>> ConfluenceUrl -> (string) [required] +>>>> +>>>>> The URL of the Confluence site to connect to. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1024` +>>>>> + +>>> +>>> QBusinessParameters -> (structure) +>>> +>>>> The parameters for Amazon Q Business. +>>>> +>>>> ApplicationArn -> (string) [required] +>>>> +>>>>> The Amazon Resource Name (ARN) of the Amazon Q Business application. +>>>>> +>>>>> Constraints: +>>>>> +>>>>> * min: `1` +>>>>> * max: `1284` +>>>>> * pattern: `^arn:[-a-z0-9]*:qbusiness:[-a-z0-9]*:[0-9]{12}:application/.+` +>>>>>