AWS Security ChangesHomeSearch

AWS online-register documentation change

Service: online-register · 2025-11-22 · Documentation low

File: online-register/latest/data-formats/awssignin.md

Summary

Added documentation for two new OAuth 2.0 API actions (AuthorizeOAuth2Access and CreateOAuth2Token) and updated the URL format for ListTrustedIdentityPropagationApplicationsForConsole

Security assessment

The change documents new OAuth 2.0 authentication and token exchange mechanisms, which are security features. However, there's no evidence of a specific security vulnerability being addressed - this appears to be routine documentation of new authentication capabilities.

Diff

diff --git a/online-register/latest/data-formats/awssignin.md b/online-register/latest/data-formats/awssignin.md
index 41a5ecc7a..69d6e018a 100644
--- a//online-register/latest/data-formats/awssignin.md
+++ b//online-register/latest/data-formats/awssignin.md
@@ -9 +9,3 @@ Actions | Description | Access level
-[ListTrustedIdentityPropagationApplicationsForConsole](https://docs.aws.amazon.com/signin/latest/APIReference/list-trusted-identity-propagation-application-for-console.html)| List all Identity Center applications that represent the AWS Management Console| List  
+[AuthorizeOAuth2Access](https://docs.aws.amazon.com/signin/latest/APIReference/API_AuthorizeOAuth2Access.html)| Authenticate through a browser and obtain an OAuth 2.0 authorization code for credential exchange| Read  
+[CreateOAuth2Token](https://docs.aws.amazon.com/signin/latest/APIReference/API_CreateOAuth2Token.html)| Exchange an authorization code for OAuth 2.0 access token and refresh token that can be used to access AWS services from developer tools and applications| Read  
+[ListTrustedIdentityPropagationApplicationsForConsole](https://docs.aws.amazon.com/signin/latest/APIReference/API_ListTrustedIdentityPropagationApplicationsForConsole.html)| List all Identity Center applications that represent the AWS Management Console| List