AWS braket documentation change
Summary
Added a JSON IAM policy example for creating Braket notebook roles and policies.
Security assessment
The change provides an IAM policy template for access management, which is a security feature. No indication of fixing a security vulnerability.
Diff
diff --git a/braket/latest/developerguide/braket-manage-access.md b/braket/latest/developerguide/braket-manage-access.md index fba5898c0..50b9aa7f1 100644 --- a//braket/latest/developerguide/braket-manage-access.md +++ b//braket/latest/developerguide/braket-manage-access.md @@ -46,0 +47,45 @@ To create a notebook, you must use a role with admin permissions or that has the +JSON + + +**** + + + + { + "Version":"2012-10-17", + "Statement": [ + { + "Sid": "CreateTheRole", + "Effect": "Allow", + "Action": "iam:CreateRole", + "Resource": "arn:aws:iam::*:role/service-role/AmazonBraketServiceSageMakerNotebookRole*" + }, + { + "Sid": "CreateThePolicy", + "Effect": "Allow", + "Action": "iam:CreatePolicy", + "Resource": [ + "arn:aws:iam::*:policy/service-role/AmazonBraketServiceSageMakerNotebookAccess*", + "arn:aws:iam::*:policy/service-role/AmazonBraketServiceSageMakerNotebookRole*" + ] + }, + { + "Sid": "AttachTheRolePolicy", + "Effect": "Allow", + "Action": "iam:AttachRolePolicy", + "Resource": "arn:aws:iam::*:role/service-role/AmazonBraketServiceSageMakerNotebookRole*", + "Condition": { + "ArnLike": { + "iam:PolicyARN": [ + "arn:aws:iam::aws:policy/AmazonBraketFullAccess", + "arn:aws:iam::*:policy/service-role/AmazonBraketServiceSageMakerNotebookAccess*", + "arn:aws:iam::*:policy/service-role/AmazonBraketServiceSageMakerNotebookRole*" + ] + } + } + } + ] + } + + +