AWS vpc-lattice documentation change
Summary
Added documentation for x-amzn-lattice-identity-tags header showing principal ID and tag propagation format
Security assessment
Documents how identity tags are passed to targets, which supports security auditing and access control use cases but does not address a specific vulnerability. The tag propagation helps implement security policies but isn't itself a security fix.
Diff
diff --git a/vpc-lattice/latest/ug/http-targets.md b/vpc-lattice/latest/ug/http-targets.md index a722058a8..80b4e8d5e 100644 --- a//vpc-lattice/latest/ug/http-targets.md +++ b//vpc-lattice/latest/ug/http-targets.md @@ -62,0 +63,10 @@ The following fields are present if Roles Anywhere credentials are used and auth +`x-amzn-lattice-identity-tags` + + +The principal ID and any principal tags. The format is as follows. + + + principal=principal;principalorgid=orgid;principal-tag1=value1; ...;principal-tag99=value99 + +VPC Lattice escapes any semicolons (;) in a value with backslashes (\\). +