AWS pinpoint documentation change
Summary
Added JSON code block markers, updated Firehose ARN example with specific account ID (111122223333), and removed role output example.
Security assessment
Consistent use of placeholder account IDs in ARN examples improves documentation hygiene but does not mitigate or document security issues.
Diff
diff --git a/pinpoint/latest/archguide/permissions-stream-email-events-kinesis.md b/pinpoint/latest/archguide/permissions-stream-email-events-kinesis.md index b0014758d..21a8c5bb5 100644 --- a//pinpoint/latest/archguide/permissions-stream-email-events-kinesis.md +++ b//pinpoint/latest/archguide/permissions-stream-email-events-kinesis.md @@ -56,0 +57,6 @@ To allow the Amazon Pinpoint Email API to assume the IAM role and perform the ac +JSON + + +**** + + @@ -82,0 +90,6 @@ To allow the Amazon Pinpoint Email API to send email event data to a Firehose de +JSON + + +**** + + @@ -93 +106 @@ To allow the Amazon Pinpoint Email API to send email event data to a Firehose de - "arn:aws:firehose:region:accountId:deliverystream/deliveryStreamName" + "arn:aws:firehose:us-east-1:111122223333:deliverystream/deliveryStreamName" @@ -117,22 +130,0 @@ After you run this command, the AWS CLI returns the following output: - { - "Role": { - "AssumeRolePolicyDocument": { - "Version": "2012-10-17", - "Statement": [ - { - "Action": "sts:AssumeRole", - "Effect": "Allow", - "Principal": { - "Service": "ses.amazonaws.com" - } - } - ] - }, - "RoleId": "AKIAIOSFODNN7EXAMPLE", - "CreateDate": "2019-04-10T14:20:42.314Z", - "RoleName": "PinpointEventStreamRole", - "Path": "/", - "Arn": "arn:aws:iam::111122223333:role/PinpointEventStreamRole" - } - } -