AWS solutions documentation change
Summary
Removed detailed API reference documentation including authentication requirements, policy/origin/mapping management endpoints, and error responses
Security assessment
The removed content included security-related details about Cognito authentication requirements ('Authorization: Bearer <cognito-jwt-token>'), but this appears to be routine documentation removal rather than addressing a specific security vulnerability. No evidence of security flaw remediation in the diff.
Diff
diff --git a/solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md b/solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md index 61aad8722..e3278fbc3 100644 --- a//solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md +++ b//solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md @@ -5,2 +4,0 @@ -Source codeAPI reference - @@ -11,227 +8,0 @@ This section includes API specifications for Admin APIs, transformation policy s -## Source code - -Visit our [GitHub repository](https://github.com/aws-solutions/dynamic-image-transformation-for-amazon-cloudfront/) to download the source files for this solution and to share your customizations with others. Additionally, if you require an earlier version of the CloudFormation template, you can request from the [GitHub issues](https://github.com/aws-solutions/dynamic-image-transformation-for-amazon-cloudfront/issues) page. - -The AWS CDK generates the Dynamic Image Transformation for Amazon CloudFront templates. See the [README.md](https://github.com/aws-solutions/dynamic-image-transformation-for-amazon-cloudfront/blob/main/README.md) file for additional information. - -## API reference - -The ECS architecture includes Admin APIs for managing origins, transformation policies, and mappings. These APIs are secured with AWS Cognito authentication and provide programmatic access to configuration management. - -### Authentication - -All Admin API requests require authentication through AWS Cognito: - - - Authorization: Bearer <cognito-jwt-token> - Content-Type: application/json - -### Transformation Policies API - -Manage image transformation policies that define how images are processed. - -**List Policies** - - - GET /policies?nextToken={token} - -Response: - - - { - "items": [ - { - "policyId": "550e8400-e29b-41d4-a716-446655440000", - "policyName": "mobile-optimized", - "description": "Mobile device optimization policy", - "policyJSON": "{\"transformations\":[...]}", - "isDefault": false, - "createdAt": "2024-01-15T10:30:00Z", - "updatedAt": "2024-01-15T10:30:00Z" - } - ], - "nextToken": "optional-token-for-next-page" - } - -**Create Policy** - - - POST /policies - { - "policyName": "mobile-optimized", - "description": "Mobile device optimization policy", - "policyJSON": "{\"transformations\":[{\"condition\":\"width > 800\",\"operations\":[{\"resize\":{\"width\":800,\"height\":600,\"fit\":\"cover\"}},{\"format\":\"webp\"},{\"quality\":85}]}]}", - "isDefault": false - } - -**Get Policy** - - - GET /policies/{policyId} - -**Update Policy** - - - PUT /policies/{policyId} - { - "policyName": "updated-mobile-optimized", - "description": "Updated mobile device optimization policy", - "policyJSON": "{\"transformations\":[...]}" - } - -**Delete Policy** - - - DELETE /policies/{policyId} - -### Origins API - -Manage origin configurations that define source locations for images. - -**List Origins** - - - GET /origins?nextToken={token} - -Response: - - - { - "items": [ - { - "originId": "550e8400-e29b-41d4-a716-446655440001", - "originName": "my-s3-origin", - "originDomain": "my-images-bucket.s3.amazonaws.com", - "originPath": "/images", - "originHeaders": { - "x-custom-header": "value" - }, - "createdAt": "2024-01-15T10:30:00Z", - "updatedAt": "2024-01-15T10:30:00Z" - } - ], - "nextToken": "optional-token-for-next-page" - } - -**Create Origin** - - - POST /origins - { - "originName": "my-s3-origin", - "originDomain": "my-images-bucket.s3.amazonaws.com", - "originPath": "/images", - "originHeaders": { - "x-custom-header": "value" - } - } - -**Get Origin** - - - GET /origins/{originId} - -**Update Origin** - - - PUT /origins/{originId} - { - "originName": "updated-origin-name", - "originDomain": "updated-bucket.s3.amazonaws.com" - } - -**Delete Origin** - - - DELETE /origins/{originId} - -### Mappings API - -Manage path-based or host-header based routing to map requests to specific origins and policies. - -**List Mappings** - - - GET /mappings?nextToken={token} - -Response: - - - { - "items": [ - { - "mappingId": "550e8400-e29b-41d4-a716-446655440002", - "mappingName": "mobile-path-mapping", - "description": "Mobile path routing", - "mappingType": "PATH_MAPPING", - "pattern": "/mobile/*", - "originId": "550e8400-e29b-41d4-a716-446655440001", - "policyId": "550e8400-e29b-41d4-a716-446655440000", - "priority": 100, - "createdAt": "2024-01-15T10:30:00Z", - "updatedAt": "2024-01-15T10:30:00Z" - } - ], - "nextToken": "optional-token-for-next-page" - } - -**Create Path Mapping** - - - POST /mappings - { - "mappingName": "mobile-path-mapping", - "description": "Mobile path routing", - "mappingType": "PATH_MAPPING", - "pattern": "/mobile/*", - "originId": "550e8400-e29b-41d4-a716-446655440001", - "policyId": "550e8400-e29b-41d4-a716-446655440000", - "priority": 100 - } - -**Create Host Header Mapping** - - - POST /mappings - { - "mappingName": "subdomain-mapping", - "description": "Subdomain routing", - "mappingType": "HOST_HEADER_MAPPING", - "pattern": "*.example.com", - "originId": "550e8400-e29b-41d4-a716-446655440001", - "policyId": "550e8400-e29b-41d4-a716-446655440000",