AWS bedrock-agentcore medium security documentation change
Summary
Removed preview notice, fixed MCP documentation URL, updated authentication instructions to use inbound credentials instead of Bearer token placeholder, and replaced 'Monitoring gateway usage' with CloudTrail logging guidance.
Security assessment
Authentication change addresses potential insecure practices by replacing placeholder Bearer token instructions with proper inbound authorization credentials, reducing risk of token misuse. CloudTrail logging addition documents security-relevant monitoring. Both changes improve security posture.
Diff
diff --git a/bedrock-agentcore/latest/devguide/gateway-using-inspector.md b/bedrock-agentcore/latest/devguide/gateway-using-inspector.md index 4ee602316..e9e8ec93d 100644 --- a//bedrock-agentcore/latest/devguide/gateway-using-inspector.md +++ b//bedrock-agentcore/latest/devguide/gateway-using-inspector.md @@ -7,2 +6,0 @@ Troubleshooting -Amazon Bedrock AgentCore is in preview release and is subject to change. - @@ -11 +9 @@ Amazon Bedrock AgentCore is in preview release and is subject to change. -The MCP Inspector, available through the [Model Context Protocol (MCP)](https://docs.aws.amazon.com/https://modelcontextprotocol.io/docs/getting-started/intro), is a developer tool that helps you test and debug MCP servers by through an interactive interface. You can connect your AgentCore gateway to the MCP inspector to help you debug your gateway targets. +The MCP Inspector, available through the [Model Context Protocol (MCP)](https://modelcontextprotocol.io/docs/getting-started/intro), is a developer tool that helps you test and debug MCP servers by through an interactive interface. You can connect your AgentCore gateway to the MCP inspector to help you debug your gateway targets. @@ -37 +35 @@ For more information about the MCP Inspector, see the [MCP Inspector documentati - * The value's name should be `Bearer` when you reveal it. Change it to `Bearer: `${AccessToken}``. For more information, see [Obtain an access token to make gateway requests](./gateway-using-mcp-auth.html). + * Replace the value with your gateway's [inbound authorization credentials](./gateway-inbound-auth.html). @@ -73 +71 @@ Turn on debugging messages -Monitoring gateway usage +Logging Gateway API calls with CloudTrail