AWS neptune documentation change
Summary
Added JSON IAM policy example for notebook permissions
Security assessment
Documents required security policies for notebook access but doesn't fix security issues
Diff
diff --git a/neptune/latest/userguide/graph-notebooks.md b/neptune/latest/userguide/graph-notebooks.md index 6814eb36d..371ef6f5b 100644 --- a//neptune/latest/userguide/graph-notebooks.md +++ b//neptune/latest/userguide/graph-notebooks.md @@ -77,0 +78,37 @@ The console can create an AWS Identity and Access Management (IAM) role for your +JSON + + +**** + + + + { + "Version":"2012-10-17", + "Statement": [ + { + "Sid": "AllowS3GetObjectS3ListBucket", + "Effect": "Allow", + "Action": [ + "s3:GetObject", + "s3:ListBucket" + ], + "Resource": [ + "arn:aws:s3:::aws-neptune-notebook", + "arn:aws:s3:::aws-neptune-notebook/*", + "arn:aws:s3:::aws-neptune-notebook-us-east-1", + "arn:aws:s3:::aws-neptune-notebook-us-east-1/*" + ] + }, + { + "Sid": "AllowAccessNeptuneDB", + "Effect": "Allow", + "Action": "neptune-db:*", + "Resource": [ + "arn:aws:neptune-db:us-east-1:111122223333:cluster-resource-id/*" + ] + } + ] + } + + +