AWS wickr documentation change
Summary
Removed statement about principal specification limitations in identity-based policies
Security assessment
The edit clarifies policy behavior without evidence of correcting a security flaw. The removed text was explanatory rather than security-prescriptive.
Diff
diff --git a/wickr/latest/adminguide-classic/security_iam_service-with-iam-id-based-policies.md b/wickr/latest/adminguide-classic/security_iam_service-with-iam-id-based-policies.md index 90bdd4125..d8d4a5158 100644 --- a//wickr/latest/adminguide-classic/security_iam_service-with-iam-id-based-policies.md +++ b//wickr/latest/adminguide-classic/security_iam_service-with-iam-id-based-policies.md @@ -15 +15 @@ Identity-based policies are JSON permissions policy documents that you can attac -With IAM identity-based policies, you can specify allowed or denied actions and resources as well as the conditions under which actions are allowed or denied. You can't specify the principal in an identity-based policy because it applies to the user or role to which it is attached. To learn about all of the elements that you can use in a JSON policy, see [IAM JSON policy elements reference](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements.html) in the _IAM User Guide_. +With IAM identity-based policies, you can specify allowed or denied actions and resources as well as the conditions under which actions are allowed or denied. To learn about all of the elements that you can use in a JSON policy, see [IAM JSON policy elements reference](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements.html) in the _IAM User Guide_.