AWS lexv2 documentation change
Summary
Formatting changes to remove underscores from 'Yes'/'No' values in IAM feature table and section headers. Minor text edits to remove redundant service name references in policy documentation.
Security assessment
Changes are primarily formatting improvements and text cleanup without altering security semantics. No evidence of addressing vulnerabilities or changing security controls. The documentation maintains existing security information about IAM policies without introducing new security features or mitigations.
Diff
diff --git a/lexv2/latest/dg/security_iam_service-with-iam.md b/lexv2/latest/dg/security_iam_service-with-iam.md index dbba862d9..5213d7a68 100644 --- a//lexv2/latest/dg/security_iam_service-with-iam.md +++ b//lexv2/latest/dg/security_iam_service-with-iam.md @@ -13,11 +13,11 @@ IAM features you can use with Amazon Lex V2 IAM feature | Amazon Lex V2 support -Identity-based policies | _Yes_ -Resource-based policies | _Yes_ -Policy actions | _Yes_ -Policy resources | _Yes_ -Policy condition keys | _No_ -ACLs | _No_ -ABAC (tags in policies) | _Yes_ -Temporary credentials | _No_ -Principal permissions | _Yes_ -Service roles | _Yes_ -Service-linked roles | _Partial_ +Identity-based policies | Yes +Resource-based policies | Yes +Policy actions | Yes +Policy resources | Yes +Policy condition keys | No +ACLs | No +ABAC (tags in policies) | Yes +Temporary credentials | No +Principal permissions | Yes +Service roles | Yes +Service-linked roles | Partial @@ -29 +29 @@ To get a high-level view of how Amazon Lex V2 and other AWS services work with m -**Supports identity-based policies:** _Yes_ +**Supports identity-based policies:** Yes @@ -41 +41 @@ To view examples of Amazon Lex V2 identity-based policies, see [Identity-based p -**Supports resource-based policies:** _Yes_ +**Supports resource-based policies:** Yes @@ -45 +45 @@ Resource-based policies are JSON policy documents that you attach to a resource. -You can't use cross-account or cross-region policies with Amazon Lex V2. If you create a policy for a resource with a cross-account or cross-region ARN, Amazon Lex V2 returns an error. +You can't use cross-account or cross-region policies with . If you create a policy for a resource with a cross-account or cross-region ARN, returns an error. @@ -47 +47 @@ You can't use cross-account or cross-region policies with Amazon Lex V2. If you -The Amazon Lex V2 service supports resource-based policies called a _bot policy_ and a _bot alias_ policy, which are attached to a bot or a bot alias. These policies define which principals can perform actions on the bot or bot alias. +The service supports resource-based policies called a _bot policy_ and a _bot alias_ policy, which are attached to a bot or a bot alias. These policies define which principals can perform actions on the bot or bot alias. @@ -49 +49 @@ The Amazon Lex V2 service supports resource-based policies called a _bot policy_ -Actions can only be used on specific resources. For example, the `UpdateBot` action can only be used on bot resources, the `UpdateBotAlias` action can only be used on bot alias resources. If you specify an action in a policy that can't be used on the resource specified in the policy, Amazon Lex V2 returns an error. For the list of actions and the resources that they can be used with, see the following table. +Actions can only be used on specific resources. For example, the `UpdateBot` action can only be used on bot resources, the `UpdateBotAlias` action can only be used on bot alias resources. If you specify an action in a policy that can't be used on the resource specified in the policy, returns an error. For the list of actions and the resources that they can be used with, see the following table. @@ -126 +126 @@ To view examples of Amazon Lex V2 resource-based policies, see [Resource-based p -**Supports policy actions:** _Yes_ +**Supports policy actions:** Yes @@ -151 +151 @@ To view examples of Amazon Lex V2 identity-based policies, see [Identity-based p -**Supports policy resources:** _Yes_ +**Supports policy resources:** Yes @@ -166 +166 @@ To view examples of Amazon Lex V2 identity-based policies, see [Identity-based p -**Supports service-specific policy condition keys:** _No_ +**Supports service-specific policy condition keys:** No @@ -178 +178 @@ To view examples of Amazon Lex V2 identity-based policies, see [Identity-based p -**Supports ACLs:** _No_ +**Supports ACLs:** No @@ -184 +184 @@ Access control lists (ACLs) control which principals (account members, users, or -**Supports ABAC (tags in policies):** _Yes_ +**Supports ABAC (tags in policies):** Yes @@ -196 +196 @@ For more information about ABAC, see [Define permissions with ABAC authorization -**Supports temporary credentials:** _No_ +**Supports temporary credentials:** No @@ -202 +202 @@ Temporary credentials provide short-term access to AWS resources and are automat -**Supports forward access sessions (FAS):** _Yes_ +**Supports forward access sessions (FAS):** Yes @@ -208 +208 @@ Forward access sessions (FAS) use the permissions of the principal calling an AW -**Supports service roles:** _Yes_ +**Supports service roles:** Yes @@ -218 +218 @@ Changing the permissions for a service role might break Amazon Lex V2 functional -**Supports service-linked roles:** _Partial_ +**Supports service-linked roles:** Partial