AWS opensearch-service documentation change
Summary
Changed 'AWS CloudFormation' to 'CloudFormation' in a policy condition example
Security assessment
The change is a minor terminology adjustment (removing 'AWS' prefix from CloudFormation) without altering security guidance. The security recommendation to use SSL and IAM conditions remains unchanged.
Diff
diff --git a/opensearch-service/latest/developerguide/security-iam-serverless.md b/opensearch-service/latest/developerguide/security-iam-serverless.md index 0c184f653..25b81b5fa 100644 --- a//opensearch-service/latest/developerguide/security-iam-serverless.md +++ b//opensearch-service/latest/developerguide/security-iam-serverless.md @@ -214 +214 @@ Identity-based policies determine whether someone can create, access, or delete - * **Use conditions in IAM policies to further restrict access** – You can add a condition to your policies to limit access to actions and resources. For example, you can write a policy condition to specify that all requests must be sent using SSL. You can also use conditions to grant access to service actions if they are used through a specific AWS service, such as AWS CloudFormation. For more information, see [ IAM JSON policy elements: Condition](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition.html) in the _IAM User Guide_. + * **Use conditions in IAM policies to further restrict access** – You can add a condition to your policies to limit access to actions and resources. For example, you can write a policy condition to specify that all requests must be sent using SSL. You can also use conditions to grant access to service actions if they are used through a specific AWS service, such as CloudFormation. For more information, see [ IAM JSON policy elements: Condition](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_condition.html) in the _IAM User Guide_.