AWS managedservices documentation change
Summary
Changed DocumentDB deletion API access process to use '(managed automation)' instead of '(review required)'
Security assessment
While deletion APIs are sensitive, the change only modifies the approval workflow rather than addressing a security flaw. Existing restrictions on API access remain in place.
Diff
diff --git a/managedservices/latest/onboardingguide/document-db.md b/managedservices/latest/onboardingguide/document-db.md index 7e98f6114..91eabff1b 100644 --- a//managedservices/latest/onboardingguide/document-db.md +++ b//managedservices/latest/onboardingguide/document-db.md @@ -23 +23 @@ Amazon DocumentDB requires Amazon RDS-specific permissions. Because AMS fully ma - * Access to the `DeleteDBInstance` and `DeleteDBCluster` APIs have been restricted. To use those deletion APIs, submit an RFC with the Management | Advanced stack components | Identity and Access Management (IAM) | Update entity or policy (review required) change type (ct-27tuth19k52b4). + * Access to the `DeleteDBInstance` and `DeleteDBCluster` APIs have been restricted. To use those deletion APIs, submit an RFC with the Management | Advanced stack components | Identity and Access Management (IAM) | Update entity or policy (managed automation) change type (ct-27tuth19k52b4).