AWS cli documentation change
Summary
Updated CLI version reference, branding changes from 'QuickSight' to 'Amazon Quick Sight', and added new parameters for S3 Knowledge Base, Web Crawler, Confluence, and Q Business data sources
Security assessment
Added documentation for security-related parameters including S3 Knowledge Base role overrides and Web Crawler authentication configurations (BASIC_AUTH, SAML, etc.). While these describe security features, there is no evidence they address a specific vulnerability.
Diff
diff --git a/cli/latest/reference/quicksight/start-asset-bundle-import-job.md b/cli/latest/reference/quicksight/start-asset-bundle-import-job.md index 08b6bd0ea..87e028ed4 100644 --- a//cli/latest/reference/quicksight/start-asset-bundle-import-job.md +++ b//cli/latest/reference/quicksight/start-asset-bundle-import-job.md @@ -15 +15 @@ - * [AWS CLI 2.31.10 Command Reference](../../index.html) » + * [AWS CLI 2.31.13 Command Reference](../../index.html) » @@ -61 +61 @@ Starts an Asset Bundle import job. -An Asset Bundle import job imports specified QuickSight assets into an QuickSight account. You can also choose to import a naming prefix and specified configuration overrides. The assets that are contained in the bundle file that you provide are used to create or update a new or existing asset in your QuickSight account. Each QuickSight account can run up to 5 import jobs concurrently. +An Asset Bundle import job imports specified Amazon Quick Sight assets into an Amazon Quick Sight account. You can also choose to import a naming prefix and specified configuration overrides. The assets that are contained in the bundle file that you provide are used to create or update a new or existing asset in your Amazon Quick Sight account. Each Amazon Quick Sight account can run up to 5 import jobs concurrently. @@ -352 +352 @@ JSON Syntax: ->>>> The parameters that Amazon QuickSight uses to connect to your underlying data source. This is a variant type structure. For this structure to be valid, only one of the attributes can be non-null. +>>>> The parameters that Quick Sight uses to connect to your underlying data source. This is a variant type structure. For this structure to be valid, only one of the attributes can be non-null. @@ -788 +788 @@ JSON Syntax: ->>>>>>> The user whose permissions and group memberships will be used by QuickSight to access the cluster. If this user already exists in your database, QuickSight is granted the same permissions that the user has. If the user doesn’t exist, set the value of `AutoCreateDatabaseUser` to `True` to create a new user with PUBLIC permissions. +>>>>>>> The user whose permissions and group memberships will be used by Quick Sight to access the cluster. If this user already exists in your database, Amazon Quick Sight is granted the same permissions that the user has. If the user doesn’t exist, set the value of `AutoCreateDatabaseUser` to `True` to create a new user with PUBLIC permissions. @@ -819 +819 @@ JSON Syntax: ->>>>>>> Automatically creates a database user. If your database doesn’t have a `DatabaseUser` , set this parameter to `True` . If there is no `DatabaseUser` , Amazon QuickSight can’t connect to your cluster. The `RoleArn` that you use for this operation must grant access to `redshift:CreateClusterUser` to successfully create the user. +>>>>>>> Automatically creates a database user. If your database doesn’t have a `DatabaseUser` , set this parameter to `True` . If there is no `DatabaseUser` , Quick Sight can’t connect to your cluster. The `RoleArn` that you use for this operation must grant access to `redshift:CreateClusterUser` to successfully create the user. @@ -870,0 +871,37 @@ JSON Syntax: +>>>> +>>>> S3KnowledgeBaseParameters -> (structure) +>>>> +>>>>> The parameters for S3 Knowledge Base. +>>>>> +>>>>> RoleArn -> (string) +>>>>> +>>>>>> Use the `RoleArn` structure to override an account-wide role for a specific S3 Knowledge Base data source. For example, say an account administrator has turned off all S3 access with an account-wide role. The administrator can then use `RoleArn` to bypass the account-wide role and allow S3 access for the single S3 Knowledge Base data source that is specified in the structure, even if the account-wide role forbidding S3 access is still active. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `20` +>>>>>> * max: `2048` +>>>>>> + +>>>>> +>>>>> BucketUrl -> (string) [required] +>>>>> +>>>>>> The URL of the S3 bucket that contains the knowledge base data. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1024` +>>>>>> + +>>>>> +>>>>> MetadataFilesLocation -> (string) +>>>>> +>>>>>> The location of metadata files within the S3 bucket that describe the structure and content of the knowledge base. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1024` +>>>>>> + @@ -1423,0 +1461,132 @@ JSON Syntax: +>>>> +>>>> WebCrawlerParameters -> (structure) +>>>> +>>>>> The parameters for Web Crawler. +>>>>> +>>>>> WebCrawlerAuthType -> (string) [required] +>>>>> +>>>>>> The authentication type for the web crawler. The type can be one of the following: +>>>>>> +>>>>>> * `NO_AUTH` : No authentication required. +>>>>>> * `BASIC_AUTH` : Basic authentication using username and password. +>>>>>> * `SAML` : SAML-based authentication. +>>>>>> * `FORM` : Form-based authentication. +>>>>>> + +>>>>>> +>>>>>> Possible values: +>>>>>> +>>>>>> * `NO_AUTH` +>>>>>> * `BASIC_AUTH` +>>>>>> * `FORM` +>>>>>> * `SAML` +>>>>>> + +>>>>> +>>>>> UsernameFieldXpath -> (string) +>>>>> +>>>>>> The XPath expression for locating the username field on the login page. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1024` +>>>>>> + +>>>>> +>>>>> PasswordFieldXpath -> (string) +>>>>> +>>>>>> The XPath expression for locating the password field on the login page. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1024` +>>>>>> + +>>>>> +>>>>> UsernameButtonXpath -> (string) +>>>>> +>>>>>> The XPath expression for locating the username submit button on the login page. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1024` +>>>>>> + +>>>>> +>>>>> PasswordButtonXpath -> (string) +>>>>> +>>>>>> The XPath expression for locating the password submit button on the login page. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1024` +>>>>>> + +>>>>> +>>>>> LoginPageUrl -> (string) +>>>>> +>>>>>> The URL of the login page for the web crawler to authenticate. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1024` +>>>>>> + +>>>>> +>>>>> WebProxyHostName -> (string) +>>>>> +>>>>>> The hostname of the web proxy server for the web crawler. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `256` +>>>>>> + +>>>>> +>>>>> WebProxyPortNumber -> (integer) +>>>>> +>>>>>> The port number of the web proxy server for the web crawler. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `0` +>>>>>> * max: `65535` +>>>>>> + +>>>> +>>>> ConfluenceParameters -> (structure) +>>>> +>>>>> The parameters for Confluence. +>>>>> +>>>>> ConfluenceUrl -> (string) [required] +>>>>> +>>>>>> The URL of the Confluence site to connect to. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1024` +>>>>>> + +>>>> +>>>> QBusinessParameters -> (structure) +>>>> +>>>>> The parameters for Amazon Q Business. +>>>>> +>>>>> ApplicationArn -> (string) [required] +>>>>> +>>>>>> The Amazon Resource Name (ARN) of the Amazon Q Business application. +>>>>>> +>>>>>> Constraints: +>>>>>> +>>>>>> * min: `1` +>>>>>> * max: `1284` +>>>>>> * pattern: `^arn:[-a-z0-9]*:qbusiness:[-a-z0-9]*:[0-9]{12}:application/.+` +>>>>>> + @@ -1806,0 +1976,5 @@ JSON Syntax: + "S3KnowledgeBaseParameters": { + "RoleArn": "string", + "BucketUrl": "string", + "MetadataFilesLocation": "string" + }, @@ -1887,0 +2062,16 @@ JSON Syntax: + }, + "WebCrawlerParameters": { + "WebCrawlerAuthType": "NO_AUTH"|"BASIC_AUTH"|"FORM"|"SAML",