AWS Security ChangesHomeSearch

AWS solutions documentation change

Service: solutions · 2025-11-22 · Documentation low

File: solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md

Summary

Removed detailed API reference documentation including authentication requirements, policy/origin/mapping management endpoints, and error responses

Security assessment

The removed content included security-related details about Cognito authentication requirements ('Authorization: Bearer <cognito-jwt-token>'), but this appears to be routine documentation removal rather than addressing a specific security vulnerability. No evidence of security flaw remediation in the diff.

Diff

diff --git a/solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md b/solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md
index 61aad8722..e3278fbc3 100644
--- a//solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md
+++ b//solutions/latest/dynamic-image-transformation-for-amazon-cloudfront/developer-guide.md
@@ -5,2 +4,0 @@
-Source codeAPI reference
-
@@ -11,227 +8,0 @@ This section includes API specifications for Admin APIs, transformation policy s
-## Source code
-
-Visit our [GitHub repository](https://github.com/aws-solutions/dynamic-image-transformation-for-amazon-cloudfront/) to download the source files for this solution and to share your customizations with others. Additionally, if you require an earlier version of the CloudFormation template, you can request from the [GitHub issues](https://github.com/aws-solutions/dynamic-image-transformation-for-amazon-cloudfront/issues) page.
-
-The AWS CDK generates the Dynamic Image Transformation for Amazon CloudFront templates. See the [README.md](https://github.com/aws-solutions/dynamic-image-transformation-for-amazon-cloudfront/blob/main/README.md) file for additional information.
-
-## API reference
-
-The ECS architecture includes Admin APIs for managing origins, transformation policies, and mappings. These APIs are secured with AWS Cognito authentication and provide programmatic access to configuration management.
-
-### Authentication
-
-All Admin API requests require authentication through AWS Cognito:
-    
-    
-    Authorization: Bearer <cognito-jwt-token>
-    Content-Type: application/json
-
-### Transformation Policies API
-
-Manage image transformation policies that define how images are processed.
-
-**List Policies**
-    
-    
-    GET /policies?nextToken={token}
-
-Response:
-    
-    
-    {
-      "items": [
-        {
-          "policyId": "550e8400-e29b-41d4-a716-446655440000",
-          "policyName": "mobile-optimized",
-          "description": "Mobile device optimization policy",
-          "policyJSON": "{\"transformations\":[...]}",
-          "isDefault": false,
-          "createdAt": "2024-01-15T10:30:00Z",
-          "updatedAt": "2024-01-15T10:30:00Z"
-        }
-      ],
-      "nextToken": "optional-token-for-next-page"
-    }
-
-**Create Policy**
-    
-    
-    POST /policies
-    {
-      "policyName": "mobile-optimized",
-      "description": "Mobile device optimization policy",
-      "policyJSON": "{\"transformations\":[{\"condition\":\"width > 800\",\"operations\":[{\"resize\":{\"width\":800,\"height\":600,\"fit\":\"cover\"}},{\"format\":\"webp\"},{\"quality\":85}]}]}",
-      "isDefault": false
-    }
-
-**Get Policy**
-    
-    
-    GET /policies/{policyId}
-
-**Update Policy**
-    
-    
-    PUT /policies/{policyId}
-    {
-      "policyName": "updated-mobile-optimized",
-      "description": "Updated mobile device optimization policy",
-      "policyJSON": "{\"transformations\":[...]}"
-    }
-
-**Delete Policy**
-    
-    
-    DELETE /policies/{policyId}
-
-### Origins API
-
-Manage origin configurations that define source locations for images.
-
-**List Origins**
-    
-    
-    GET /origins?nextToken={token}
-
-Response:
-    
-    
-    {
-      "items": [
-        {
-          "originId": "550e8400-e29b-41d4-a716-446655440001",
-          "originName": "my-s3-origin",
-          "originDomain": "my-images-bucket.s3.amazonaws.com",
-          "originPath": "/images",
-          "originHeaders": {
-            "x-custom-header": "value"
-          },
-          "createdAt": "2024-01-15T10:30:00Z",
-          "updatedAt": "2024-01-15T10:30:00Z"
-        }
-      ],
-      "nextToken": "optional-token-for-next-page"
-    }
-
-**Create Origin**
-    
-    
-    POST /origins
-    {
-      "originName": "my-s3-origin",
-      "originDomain": "my-images-bucket.s3.amazonaws.com",
-      "originPath": "/images",
-      "originHeaders": {
-        "x-custom-header": "value"
-      }
-    }
-
-**Get Origin**
-    
-    
-    GET /origins/{originId}
-
-**Update Origin**
-    
-    
-    PUT /origins/{originId}
-    {
-      "originName": "updated-origin-name",
-      "originDomain": "updated-bucket.s3.amazonaws.com"
-    }
-
-**Delete Origin**
-    
-    
-    DELETE /origins/{originId}
-
-### Mappings API
-
-Manage path-based or host-header based routing to map requests to specific origins and policies.
-
-**List Mappings**
-    
-    
-    GET /mappings?nextToken={token}
-
-Response:
-    
-    
-    {
-      "items": [
-        {
-          "mappingId": "550e8400-e29b-41d4-a716-446655440002",
-          "mappingName": "mobile-path-mapping",
-          "description": "Mobile path routing",
-          "mappingType": "PATH_MAPPING",
-          "pattern": "/mobile/*",
-          "originId": "550e8400-e29b-41d4-a716-446655440001",
-          "policyId": "550e8400-e29b-41d4-a716-446655440000",
-          "priority": 100,
-          "createdAt": "2024-01-15T10:30:00Z",
-          "updatedAt": "2024-01-15T10:30:00Z"
-        }
-      ],
-      "nextToken": "optional-token-for-next-page"
-    }
-
-**Create Path Mapping**
-    
-    
-    POST /mappings
-    {
-      "mappingName": "mobile-path-mapping",
-      "description": "Mobile path routing",
-      "mappingType": "PATH_MAPPING",
-      "pattern": "/mobile/*",
-      "originId": "550e8400-e29b-41d4-a716-446655440001",
-      "policyId": "550e8400-e29b-41d4-a716-446655440000",
-      "priority": 100
-    }
-
-**Create Host Header Mapping**
-    
-    
-    POST /mappings
-    {
-      "mappingName": "subdomain-mapping",
-      "description": "Subdomain routing",
-      "mappingType": "HOST_HEADER_MAPPING",
-      "pattern": "*.example.com",
-      "originId": "550e8400-e29b-41d4-a716-446655440001",
-      "policyId": "550e8400-e29b-41d4-a716-446655440000",