AWS AWSCloudFormation high security documentation change
Summary
Added detailed descriptions for custom claim validation including field name matching, data types (STRING/STRING_ARRAY), and authentication value matching rules
Security assessment
Documents JWT claim validation configuration which is a security control for authentication. Specifically defines how to validate custom claims in tokens, which prevents unauthorized access.
Diff
diff --git a/AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-runtime-customclaimvalidationtype.md b/AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-runtime-customclaimvalidationtype.md index 0dc0360d7..db8803a6c 100644 --- a//AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-runtime-customclaimvalidationtype.md +++ b//AWSCloudFormation/latest/TemplateReference/aws-properties-bedrockagentcore-runtime-customclaimvalidationtype.md @@ -9 +9 @@ This is the new _CloudFormation Template Reference Guide_. Please update your bo -The `CustomClaimValidationType` property type specifies Property description not available. for an [AWS::BedrockAgentCore::Runtime](./aws-resource-bedrockagentcore-runtime.html). +Defines the name of a custom claim field and rules for finding matches to authenticate its value. @@ -39 +39 @@ To declare this entity in your CloudFormation template, use the following syntax -Property description not available. +Defines the value or values to match for and the relationship of the match. @@ -50 +50 @@ _Required_ : Yes -Property description not available. +The name of the custom claim field to check. @@ -63 +63,8 @@ _Update requires_ : [No interruption](https://docs.aws.amazon.com/AWSCloudFormat -Property description not available. +The data type of the claim value to check for. + + * Use `STRING` if you want to find an exact match to a string you define. + + * Use `STRING_ARRAY` if you want to fnd a match to at least one value in an array you define. + + +