AWS chime documentation change
Summary
Simplified explanation of the `Action` element in IAM policies by removing details about exceptions (permission-only actions) and dependent actions.
Security assessment
The change removes explanatory content about policy action exceptions but does not alter security recommendations or introduce/remove security controls. It is a documentation simplification without direct security implications.
Diff
diff --git a/chime/latest/ag/security_iam_service-with-iam.md b/chime/latest/ag/security_iam_service-with-iam.md index 45dd69603..8618abdba 100644 --- a//chime/latest/ag/security_iam_service-with-iam.md +++ b//chime/latest/ag/security_iam_service-with-iam.md @@ -32,3 +32 @@ Administrators can use AWS JSON policies to specify who has access to what. That -The `Action` element of a JSON policy describes the actions that you can use to allow or deny access in a policy. Policy actions usually have the same name as the associated AWS API operation. There are some exceptions, such as _permission-only actions_ that don't have a matching API operation. There are also some operations that require multiple actions in a policy. These additional actions are called _dependent actions_. - -Include actions in a policy to grant permissions to perform the associated operation. +The `Action` element of a JSON policy describes the actions that you can use to allow or deny access in a policy. Include actions in a policy to grant permissions to perform the associated operation.