AWS cognito documentation change
Summary
Removed sentence about request signing requirements using access keys or STS temporary credentials
Security assessment
Deleted content described standard AWS authentication mechanisms rather than addressing a specific security issue. The removal simplifies documentation but doesn't eliminate critical security guidance - authentication requirements remain implied through other context.
Diff
diff --git a/cognito/latest/developerguide/data-protection.md b/cognito/latest/developerguide/data-protection.md index f405d6191..ab328257b 100644 --- a//cognito/latest/developerguide/data-protection.md +++ b//cognito/latest/developerguide/data-protection.md @@ -49,2 +48,0 @@ You use AWS published API calls to access Amazon Cognito through the network. Cl -Additionally, requests must be signed by using an access key ID and a secret access key that is associated with an IAM principal. Or you can use the [AWS Security Token Service](https://docs.aws.amazon.com/STS/latest/APIReference/welcome.html) (AWS STS) to generate temporary security credentials to sign requests. -