AWS healthimaging documentation change
Summary
Updated OIDC authentication documentation with expanded technical details, added hyperlinks to security standards, restructured content sections, and changed section headers to focus on implementation workflows
Security assessment
The changes enhance documentation about OIDC authentication integration and Lambda authorizers, which are security features. However, there's no evidence of addressing a specific vulnerability. The updates provide clearer guidance on implementing secure authentication patterns using standards-based approaches.
Diff
diff --git a/healthimaging/latest/devguide/dicomweb-oidc.md b/healthimaging/latest/devguide/dicomweb-oidc.md index 34daecb14..a4ee2d07b 100644 --- a//healthimaging/latest/devguide/dicomweb-oidc.md +++ b//healthimaging/latest/devguide/dicomweb-oidc.md @@ -7 +7 @@ -AWS HealthImaging supports OAuth 2.0-based authentication using OpenID Connect (OIDC) option for all DICOMweb APIs, in addition to the existing AWS Signature Version 4 (SigV4) authentication. OIDC support allows clients to authenticate with standards-based identity providers and call HealthImaging APIs without custom authentication code. Please refer to the sections below for additional details. +AWS HealthImaging supports [OAuth 2.0](https://oauth.net/2/)-based authentication for DICOMweb API requests using [OpenID Connect (OIDC)](https://openid.net/specs/openid-connect-core-1_0.html), in addition to the existing [AWS Signature Version 4 (SigV4)](https://docs.aws.amazon.com/AmazonS3/latest/API/sig-v4-authenticating-requests.html) authentication. OIDC enables you to integrate HealthImaging directly with external identity providers (IdPs) and enables you to provide standards-based applications access to your medical imaging data through HealthImaging DICOMweb endpoints without requiring each application to have AWS credentials. @@ -11 +11 @@ AWS HealthImaging supports OAuth 2.0-based authentication using OpenID Connect ( - * [Getting started with OIDC for AWS HealthImaging](./dicomweb-oidc-getting-started.html) + * [Custom Token Verification with Lambda Authorizers](./dicomweb-oidc-how.html) @@ -13,3 +13 @@ AWS HealthImaging supports OAuth 2.0-based authentication using OpenID Connect ( - * [Requirements for JWT authorization](./dicomweb-oidc-requirements.html) - - * [Using AWS Lambda authorizers](./dicomweb-oidc-lambda.html) + * [Set up an AWS Lambda authorizer for OIDC authentication](./dicomweb-oidc-requirements.html) @@ -28 +26 @@ Search for instances -Getting started +How it works