AWS partner-central documentation change
Summary
Added documentation for UseSession IAM permission with resource requirements
Security assessment
The change documents a new IAM permission (UseSession) and its resource requirements, which relates to access control - a security feature. However, there is no indication this addresses an existing security vulnerability.
Diff
diff --git a/partner-central/latest/getting-started/controlling-access-in-aws-partner-central.md b/partner-central/latest/getting-started/controlling-access-in-aws-partner-central.md index 226ee4243..c42a7c912 100644 --- a//partner-central/latest/getting-started/controlling-access-in-aws-partner-central.md +++ b//partner-central/latest/getting-started/controlling-access-in-aws-partner-central.md @@ -306,0 +307,13 @@ You can use the following permissions in IAM policies for AWS Partner Central. Y + + * **Condition keys:** `partnercentral:Catalog` + + + + +### UseSession + +`UseSession` provides access to use Partner Central agents sessions in AWS Partner Central. + + * **Action groups:** `ReadWrite` + + * **Required resources:** Does not support specifying a resource Amazon Resource Number (ARN) in the `Resource` element of an IAM policy statement. To allow access, specify `"Resource": "*"` in your policy.