AWS eks documentation change
Summary
Replaced hardcoded 'arn:aws:' prefixes with '<shared id="region.arn"/>' placeholder in IAM ARN examples throughout the document
Security assessment
The change replaces static ARN strings with a placeholder for documentation consistency. There's no evidence of addressing security vulnerabilities or introducing security features. This is a routine documentation formatting update.
Diff
diff --git a/eks/latest/userguide/view-kubernetes-resources.md b/eks/latest/userguide/view-kubernetes-resources.md index a72d713b3..119e054b7 100644 --- a//eks/latest/userguide/view-kubernetes-resources.md +++ b//eks/latest/userguide/view-kubernetes-resources.md @@ -128 +128 @@ An example output is as follows. - arn:aws:iam::111122223333:role/eksctl-my-cluster-my-nodegroup-NodeInstanceRole-1XLS7754U3ZPA system:node:{{EC2PrivateDNSName}} system:bootstrappers,system:nodes + <shared id="region.arn"/>iam::111122223333:role/eksctl-my-cluster-my-nodegroup-NodeInstanceRole-1XLS7754U3ZPA system:node:{{EC2PrivateDNSName}} system:bootstrappers,system:nodes @@ -135 +135 @@ An example output is as follows. - --arn arn:aws:iam::111122223333:role/my-console-viewer-role \ + --arn <shared id="region.arn"/>iam::111122223333:role/my-console-viewer-role \ @@ -146 +146 @@ An example output is as follows. - 2022-05-09 14:51:20 [ℹ] adding identity "arn:aws:iam::111122223333:role/my-console-viewer-role" to auth ConfigMap + 2022-05-09 14:51:20 [ℹ] adding identity "<shared id="region.arn"/>iam::111122223333:role/my-console-viewer-role" to auth ConfigMap @@ -153 +153 @@ An example output is as follows. - --arn arn:aws:iam::111122223333:user/my-user \ + --arn <shared id="region.arn"/>iam::111122223333:user/my-user \ @@ -160 +160 @@ An example output is as follows. - 2022-05-09 14:53:48 [ℹ] adding identity "arn:aws:iam::111122223333:user/my-user" to auth ConfigMap + 2022-05-09 14:53:48 [ℹ] adding identity "<shared id="region.arn"/>iam::111122223333:user/my-user" to auth ConfigMap @@ -169,3 +169,3 @@ An example output is as follows. - arn:aws:iam::111122223333:role/eksctl-my-cluster-my-nodegroup-NodeInstanceRole-1XLS7754U3ZPA system:node:{{EC2PrivateDNSName}} system:bootstrappers,system:nodes - arn:aws:iam::111122223333:role/my-console-viewer-role eks-console-dashboard-full-access-group - arn:aws:iam::111122223333:user/my-user eks-console-dashboard-restricted-access-group + <shared id="region.arn"/>iam::111122223333:role/eksctl-my-cluster-my-nodegroup-NodeInstanceRole-1XLS7754U3ZPA system:node:{{EC2PrivateDNSName}} system:bootstrappers,system:nodes + <shared id="region.arn"/>iam::111122223333:role/my-console-viewer-role eks-console-dashboard-full-access-group + <shared id="region.arn"/>iam::111122223333:user/my-user eks-console-dashboard-restricted-access-group @@ -197 +197 @@ These examples assume that you attached the IAM permissions in the first step to - rolearn: arn:aws:iam::111122223333:role/my-console-viewer-role + rolearn: <shared id="region.arn"/>iam::111122223333:role/my-console-viewer-role @@ -202 +202 @@ These examples assume that you attached the IAM permissions in the first step to - userarn: arn:aws:iam::111122223333:user/my-user + userarn: <shared id="region.arn"/>iam::111122223333:user/my-user