AWS AWSMechTurk medium security documentation change
Summary
Removed legacy SQS policy example using specific IAM user ARN
Security assessment
The removed policy example used a hardcoded IAM user principal. This could indicate deprecation of an insecure pattern, but removal without replacement guidance might leave users without proper configuration examples.
Diff
diff --git a/AWSMechTurk/latest/AWSMturkAPI-legacy/ApiReference_NotificationReceptorAPI_SQSTransportArticle.md b/AWSMechTurk/latest/AWSMturkAPI-legacy/ApiReference_NotificationReceptorAPI_SQSTransportArticle.md index 1a103ada7..5105a6fb8 100644 --- a//AWSMechTurk/latest/AWSMturkAPI-legacy/ApiReference_NotificationReceptorAPI_SQSTransportArticle.md +++ b//AWSMechTurk/latest/AWSMturkAPI-legacy/ApiReference_NotificationReceptorAPI_SQSTransportArticle.md @@ -45,17 +44,0 @@ The following example policy document only creates the [SendMessage](http://docs - - { - "Version": "2008-10-17", - "Id": "arn:aws:sqs:us-east-1:<customer_account_id>:<customer_queue_name>/MTurkOnlyPolicy", - "Statement": [ - { - "Sid": "MTurkOnlyPolicy", - "Effect": "Allow", - "Principal": { - "AWS": "arn:aws:iam::755651556756:user/MTurk-SQS" - }, - "Action": "SQS:SendMessage", - "Resource": "arn:aws:sqs:us-east-1:<customer_account_id>:<customer_queue_name>" - } - ] - } -