AWS lookoutmetrics documentation change
Summary
Added JSON section markers and removed detailed IAM policy examples
Security assessment
Structural changes with JSON markers and removal of granular policy examples. No security implications stated, appears to be content reorganization rather than security update.
Diff
diff --git a/lookoutmetrics/latest/dev/permissions-user.md b/lookoutmetrics/latest/dev/permissions-user.md index f347cbfeb..524e28f2a 100644 --- a//lookoutmetrics/latest/dev/permissions-user.md +++ b//lookoutmetrics/latest/dev/permissions-user.md @@ -14,0 +15,6 @@ The following IAM policy allows a user to access all Lookout for Metrics API act +JSON + + +**** + + @@ -47,41 +53,0 @@ You can grant full access to each service or limit the scope of permissions by r - - { - "Version": "2012-10-17", - "Statement": [ - { - "Sid": "readonly-0", - "Effect": "Allow", - "Action": [ - "lookoutmetrics:List*", - "lookoutmetrics:Get*", - "lookoutmetrics:Describe*" - ], - "Resource": [ - "arn:aws:lookoutmetrics:us-east-2:123456789012:MetricSet/intern-*/intern-*", - "arn:aws:lookoutmetrics:us-east-2:123456789012:Alert:intern-*", - "arn:aws:lookoutmetrics:us-east-2:123456789012:AnomalyDetector:intern-*" - ] - }, - { - "Sid": "readonly-1", - "Effect": "Allow", - "Action": [ - "lookoutmetrics:ListAnomalyDetectors", - "lookoutmetrics:GetSampleData" - ], - "Resource": "*" - }, - { - "Sid": "readonly-2", - "Effect": "Allow", - "Action": "iam:PassRole", - "Resource": "*", - "Condition": { - "StringEquals": { - "iam:PassedToService": "lookoutmetrics.amazonaws.com" - } - } - } - ] - } -