AWS eks documentation change
Summary
Updated placeholder ARNs to concrete examples in access policy documentation
Security assessment
The changes improve documentation accuracy but don't introduce or modify security-related content. No evidence of security vulnerability being addressed.
Diff
diff --git a/eks/latest/userguide/access-policies.md b/eks/latest/userguide/access-policies.md index 7233e5bb8..0888453dd 100644 --- a//eks/latest/userguide/access-policies.md +++ b//eks/latest/userguide/access-policies.md @@ -95,2 +95,2 @@ An example output is as follows. - "<shared id="region.arn"/>iam::111122223333:role/my-role", - "<shared id="region.arn"/>iam::111122223333:user/my-user" + "arn:aws:iam::111122223333:role/my-role", + "arn:aws:iam::111122223333:user/my-user" @@ -102,2 +102,2 @@ An example output is as follows. - aws eks associate-access-policy --cluster-name my-cluster --principal-arn <shared id="region.arn"/>iam::111122223333:role/my-role \ - --access-scope type=namespace,namespaces=my-namespace1,my-namespace2 --policy-arn <shared id="region.arn"/>eks::aws:cluster-access-policy/AmazonEKSViewPolicy + aws eks associate-access-policy --cluster-name my-cluster --principal-arn arn:aws:iam::111122223333:role/my-role \ + --access-scope type=namespace,namespaces=my-namespace1,my-namespace2 --policy-arn arn:aws:eks::aws:cluster-access-policy/AmazonEKSViewPolicy @@ -113 +113 @@ If you later want to change the scope of an associated access policy, run the pr - aws eks list-associated-access-policies --cluster-name my-cluster --principal-arn <shared id="region.arn"/>iam::111122223333:role/my-role + aws eks list-associated-access-policies --cluster-name my-cluster --principal-arn arn:aws:iam::111122223333:role/my-role @@ -119 +119 @@ An example output is as follows. - "principalArn": "<shared id="region.arn"/>iam::111122223333", + "principalArn": "arn:aws:iam::111122223333", @@ -122 +122 @@ An example output is as follows. - "policyArn": "<shared id="region.arn"/>eks::aws:cluster-access-policy/AmazonEKSViewPolicy", + "policyArn": "arn:aws:eks::aws:cluster-access-policy/AmazonEKSViewPolicy", @@ -131 +131 @@ An example output is as follows. - "policyArn": "<shared id="region.arn"/>eks::aws:cluster-access-policy/AmazonEKSAdminPolicy", + "policyArn": "arn:aws:eks::aws:cluster-access-policy/AmazonEKSAdminPolicy", @@ -149,2 +149,2 @@ In the previous example, the IAM principal for this access entry has view permis - aws eks disassociate-access-policy --cluster-name my-cluster --principal-arn <shared id="region.arn"/>iam::111122223333:role/my-role \ - --policy-arn <shared id="region.arn"/>eks::aws:cluster-access-policy/AmazonEKSAdminPolicy + aws eks disassociate-access-policy --cluster-name my-cluster --principal-arn arn:aws:iam::111122223333:role/my-role \ + --policy-arn arn:aws:eks::aws:cluster-access-policy/AmazonEKSAdminPolicy