AWS kinesisvideostreams documentation change
Summary
Added an example IAM policy JSON document for AWS IoT Core permissions.
Security assessment
Adds concrete example of security policy configuration but does not address any specific vulnerability or security incident. The policy demonstrates standard permission grants for IoT actions.
Diff
diff --git a/kinesisvideostreams/latest/dg/gs-create-policy.md b/kinesisvideostreams/latest/dg/gs-create-policy.md index 9e278f493..facdc414b 100644 --- a//kinesisvideostreams/latest/dg/gs-create-policy.md +++ b//kinesisvideostreams/latest/dg/gs-create-policy.md @@ -31,0 +32,2 @@ For more information, see [AWS IoT Core policies](https://docs.aws.amazon.com//i +###### Example + @@ -41,0 +44,32 @@ For more information about using tags in IAM, see [Tagging your AWS IoT resource +JSON + + +**** + + + { + "Version":"2012-10-17", + "Statement": [ + { + "Effect": "Allow", + "Action": [ + "iot:Connect", + "iot:Publish", + "iot:Subscribe", + "iot:Receive" + ], + "Resource": [ + "*" + ] + }, + { + "Effect": "Allow", + "Action": [ + "sts:AssumeRoleWithWebIdentity" + ], + "Resource": "arn:aws:iot:us-west-2:123456789012:rolealias/your-role-alias" + } + ] + } + +