AWS wickr documentation change
Summary
Shortened Resource element explanation by removing NotResource mention and rephrasing resource-level permissions guidance
Security assessment
The change maintains security best practices (ARN usage) while removing redundant information. No security controls or vulnerability mitigations were modified.
Diff
diff --git a/wickr/latest/adminguide-classic/security_iam_service-with-iam-id-based-policies-resources.md b/wickr/latest/adminguide-classic/security_iam_service-with-iam-id-based-policies-resources.md index 864f5f42e..2e719a527 100644 --- a//wickr/latest/adminguide-classic/security_iam_service-with-iam-id-based-policies-resources.md +++ b//wickr/latest/adminguide-classic/security_iam_service-with-iam-id-based-policies-resources.md @@ -13,3 +13 @@ Administrators can use AWS JSON policies to specify who has access to what. That -The `Resource` JSON policy element specifies the object or objects to which the action applies. Statements must include either a `Resource` or a `NotResource` element. As a best practice, specify a resource using its [Amazon Resource Name (ARN)](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference-arns.html). You can do this for actions that support a specific resource type, known as _resource-level permissions_. - -For actions that don't support resource-level permissions, such as listing operations, use a wildcard (*) to indicate that the statement applies to all resources. +The `Resource` JSON policy element specifies the object or objects to which the action applies. As a best practice, specify a resource using its [Amazon Resource Name (ARN)](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference-arns.html). For actions that don't support resource-level permissions, use a wildcard (*) to indicate that the statement applies to all resources.